protected function MediaGalleryEntityAccessControlHandler::checkAccess in Media Gallery 8
Performs access checks.
This method is supposed to be overwritten by extending classes that do their own custom access checking.
Parameters
\Drupal\Core\Entity\EntityInterface $entity: The entity for which to check access.
string $operation: The entity operation. Usually one of 'view', 'view label', 'update' or 'delete'.
\Drupal\Core\Session\AccountInterface $account: The user for which to check access.
Return value
\Drupal\Core\Access\AccessResultInterface The access result.
Overrides EntityAccessControlHandler::checkAccess
File
- src/
Access/ MediaGalleryEntityAccessControlHandler.php, line 20
Class
- MediaGalleryEntityAccessControlHandler
- Access controller for the Blank entity.
Namespace
Drupal\media_gallery\AccessCode
protected function checkAccess(EntityInterface $entity, $operation, AccountInterface $account) {
/** @var \Drupal\media_gallery\MediaGalleryInterface $entity */
switch ($operation) {
case 'view':
if (!$entity
->isPublished()) {
return AccessResult::allowedIfHasPermission($account, 'view unpublished media gallery entities');
}
return AccessResult::allowedIfHasPermission($account, 'view published media gallery entities');
case 'update':
if ($account
->hasPermission('edit any media gallery entities')) {
return AccessResult::allowed();
}
return AccessResult::allowedIf($entity
->getOwnerId() == $account
->id() && $account
->hasPermission('edit own media gallery entities'));
case 'delete':
if ($account
->hasPermission('delete any media gallery entities')) {
return AccessResult::allowed();
}
return AccessResult::allowedIf($entity
->getOwnerId() == $account
->id() && $account
->hasPermission('delete own media gallery entities'));
}
// Unknown operation, no opinion.
return AccessResult::neutral();
}