You are here

Home » API reference » Protected Pages 8

protected_pages.module in Protected Pages 8

Same filename and directory in other branches
  1. 7.2 protected_pages.module
  2. 7 protected_pages.module

This module allows you to protect any page of the website by secure password.

You can enter urls of pages to protect and set password per page.

Admin (uid = 1) or user with bypass protection permission can view page.

File

protected_pages.module
View source 
<?php

/**
 * @file
 * This module allows you to protect any page of the website by secure password.
 *
 * You can enter urls of pages to protect and set password per page.
 *
 * Admin (uid = 1) or user with bypass protection permission can view page.
 */
use Drupal\Component\Utility\Html;
use Drupal\Core\StreamWrapper\StreamWrapperManager;
use Drupal\Core\Url;
use Symfony\Component\HttpFoundation\RedirectResponse;

/**
 * Implements hook_mail().
 */
function protected_pages_mail($key, &$message, $params) {
  switch ($key) {

    // Send a simple message from the contact form.
    case 'protected_pages_details_mail':
      $tokens = [
        '[protected-page-url]',
        '[site-name]',
      ];
      $replacements = [
        $params['protected_page_url'],
        \Drupal::config('system.site')
          ->get('name'),
      ];
      $body = str_replace($tokens, $replacements, $params['body']);
      $subject = $params['subject'];
      $message['subject'] = Html::escape($subject);
      $message['body'][] = Html::escape($body);
      break;
  }
}

/**
 * Implements hook_file_download().
 */
function protected_pages_file_download($uri) {
  $account = \Drupal::currentUser();
  if ($account
    ->hasPermission('bypass pages password protection')) {
    return;
  }
  $target = StreamWrapperManager::getTarget($uri);
  $file_path = '/system/files/' . $target;
  $fields = [
    'pid',
  ];
  $conditions = [];
  $conditions['general'][] = [
    'field' => 'path',
    'value' => $file_path,
    'operator' => '=',
  ];
  $protected_pages_storage = \Drupal::service('protected_pages.storage');
  $pid = $protected_pages_storage
    ->loadProtectedPage($fields, $conditions, TRUE);
  if (isset($_SESSION['_protected_page']['passwords'][$pid]['expire_time'])) {
    if (time() >= $_SESSION['_protected_page']['passwords'][$pid]['expire_time']) {
      unset($_SESSION['_protected_page']['passwords'][$pid]['request_time']);
      unset($_SESSION['_protected_page']['passwords'][$pid]['expire_time']);
    }
  }
  if (isset($_SESSION['_protected_page']['passwords'][$pid]['request_time'])) {
    return NULL;
  }
  if ($pid) {
    $destination_path_array = \Drupal::destination()
      ->getAsArray();
    $destination_path_array['destination'] = $destination_path_array['destination'] . '/' . $target;
    $destination_path_array['protected_page'] = $pid;
    $response = new RedirectResponse(Url::fromUri('internal:/protected-page', [
      'query' => $destination_path_array,
    ])
      ->toString());
    $response
      ->send();
    return;
  }
  else {
    return NULL;
  }
}

Functions

Namesort descending Description
protected_pages_file_download Implements hook_file_download().
protected_pages_mail Implements hook_mail().