public function GroupOwnsContentAccessCheck::access in Group 8
Same name and namespace in other branches
- 2.0.x src/Access/GroupOwnsContentAccessCheck.php \Drupal\group\Access\GroupOwnsContentAccessCheck::access()
Checks access.
Parameters
\Symfony\Component\Routing\Route $route: The route to check against.
\Drupal\Core\Routing\RouteMatchInterface $route_match: The parametrized route.
\Drupal\Core\Session\AccountInterface $account: The account to check access for.
Return value
\Drupal\Core\Access\AccessResultInterface The access result.
File
- src/
Access/ GroupOwnsContentAccessCheck.php, line 32
Class
- GroupOwnsContentAccessCheck
- Determines access to routes based on whether a piece of group content belongs to the group that was also specified in the route.
Namespace
Drupal\group\AccessCode
public function access(Route $route, RouteMatchInterface $route_match, AccountInterface $account) {
$must_own_content = $route
->getRequirement('_group_owns_content') === 'TRUE';
// Don't interfere if no group or group content was specified.
$parameters = $route_match
->getParameters();
if (!$parameters
->has('group') || !$parameters
->has('group_content')) {
return AccessResult::neutral();
}
// Don't interfere if the group isn't a real group.
$group = $parameters
->get('group');
if (!$group instanceof GroupInterface) {
return AccessResult::neutral();
}
// Don't interfere if the group content isn't a real group content entity.
$group_content = $parameters
->get('group_content');
if (!$group_content instanceof GroupContentInterface) {
return AccessResult::neutral();
}
// If we have a group and group content, see if the owner matches.
$group_owns_content = $group_content
->getGroup()
->id() == $group
->id();
// Only allow access if the group content is owned by the group and
// _group_owns_content is set to TRUE or the other way around.
return AccessResult::allowedIf($group_owns_content xor !$must_own_content);
}