You are here

Home » API reference » Group 8 » GroupContentCreateAnyAccessCheck.php » GroupContentCreateAnyAccessCheck

public function GroupContentCreateAnyAccessCheck::access in Group 8

Same name and namespace in other branches
  1. 2.0.x src/Access/GroupContentCreateAnyAccessCheck.php \Drupal\group\Access\GroupContentCreateAnyAccessCheck::access()

Checks access for group content creation routes.

All routes using this access check should have a group parameter and have the _group_content_create_any_access requirement set to 'TRUE' or 'FALSE'.

Parameters

\Symfony\Component\Routing\Route $route: The route to check against.

\Drupal\Core\Session\AccountInterface $account: The currently logged in account.

\Drupal\group\Entity\GroupInterface $group: The group in which the content should be created.

Return value

\Drupal\Core\Access\AccessResultInterface The access result.

File

src/Access/GroupContentCreateAnyAccessCheck.php, line 50

Class

GroupContentCreateAnyAccessCheck
Determines access for group content creation.

Namespace

Drupal\group\Access

Code

public function access(Route $route, AccountInterface $account, GroupInterface $group) {
  $needs_access = $route
    ->getRequirement('_group_content_create_any_access') === 'TRUE';

  // Get the group content access control handler.
  $access_control_handler = $this->entityTypeManager
    ->getAccessControlHandler('group_content');

  // Retrieve all of the group content type IDs for the group.
  $storage = $this->entityTypeManager
    ->getStorage('group_content_type');
  $entity_query = $storage
    ->getQuery();
  $entity_query
    ->condition('group_type', $group
    ->bundle());
  $group_content_type_ids = $entity_query
    ->execute();

  // Find out which ones the user has access to create.
  foreach ($group_content_type_ids as $group_content_type_id) {
    if ($access_control_handler
      ->createAccess($group_content_type_id, $account, [
      'group' => $group,
    ])) {

      // Allow access if the route flag was set to 'TRUE'.
      return AccessResult::allowedIf($needs_access);
    }
  }

  // If we got this far, it means the user could not create any content in the
  // group. So only allow access if the route flag was set to 'FALSE'.
  return AccessResult::allowedIf(!$needs_access);
}