protected function LogAccessControlHandler::checkFieldAccess in Log entity 8
Default field access as determined by this access control handler.
Parameters
string $operation: The operation access should be checked for. Usually one of "view" or "edit".
\Drupal\Core\Field\FieldDefinitionInterface $field_definition: The field definition.
\Drupal\Core\Session\AccountInterface $account: The user session for which to check access.
\Drupal\Core\Field\FieldItemListInterface $items: (optional) The field values for which to check access, or NULL if access is checked for the field definition, without any specific value available. Defaults to NULL.
Return value
\Drupal\Core\Access\AccessResultInterface The access result.
Overrides EntityAccessControlHandler::checkFieldAccess
File
- src/
LogAccessControlHandler.php, line 26 - Contains \Drupal\log\LogAccessControlHandler.
Class
- LogAccessControlHandler
- Defines the access control handler for the log log entity type.
Namespace
Drupal\logCode
protected function checkFieldAccess($operation, FieldDefinitionInterface $field_definition, AccountInterface $account, FieldItemListInterface $items = NULL) {
// Only users with the administer logs permission can edit administrative
// fields.
$administrative_fields = array(
'user_id',
'created',
);
if ($operation == 'edit' && in_array($field_definition
->getName(), $administrative_fields, TRUE)) {
return AccessResult::allowedIfHasPermission($account, 'administer logs');
}
// No user can change read only fields.
$read_only_fields = array(
'revision_timestamp',
'revision_uid',
);
if ($operation == 'edit' && in_array($field_definition
->getName(), $read_only_fields, TRUE)) {
return AccessResult::forbidden();
}
return parent::checkFieldAccess($operation, $field_definition, $account, $items);
}