You are here

Home » API reference » Organic groups 8 » ChangeOgMembershipStateBase.php » ChangeOgMembershipStateBase

public function ChangeOgMembershipStateBase::access in Organic groups 8

Checks object access.

Parameters

mixed $object: The object to execute the action on.

\Drupal\Core\Session\AccountInterface $account: (optional) The user for which to check access, or NULL to check access for the current user. Defaults to NULL.

bool $return_as_object: (optional) Defaults to FALSE.

Return value

bool|\Drupal\Core\Access\AccessResultInterface The access result. Returns a boolean if $return_as_object is FALSE (this is the default) and otherwise an AccessResultInterface object. When a boolean is returned, the result of AccessInterface::isAllowed() is returned, i.e. TRUE means access is explicitly allowed, FALSE means access is either explicitly forbidden or "no opinion".

Overrides ActionInterface::access

File

src/Plugin/Action/ChangeOgMembershipStateBase.php, line 69

Class

ChangeOgMembershipStateBase
Base class for actions that change the state of a membership.

Namespace

Drupal\og\Plugin\Action

Code

public function access($object, ?AccountInterface $account = NULL, $return_as_object = FALSE) {

  /** @var \Drupal\og\Entity\OgMembership $object */

  // Deny access if the membership is not in the required state.
  $original_state = $this
    ->getOriginalState();
  if ($original_state && $object
    ->getState() !== $original_state) {
    $access = AccessResult::forbidden();
  }
  elseif ($object
    ->getState() === $this
    ->getTargetState()) {
    $access = AccessResult::forbidden();
  }
  elseif ($object
    ->isOwner()) {
    $access = AccessResult::forbidden();
  }
  else {
    $access = $this->ogAccess
      ->userAccess($object
      ->getGroup(), 'manage members', $account);
  }
  return $return_as_object ? $access : $access
    ->isAllowed();
}