You are here

Home » API reference » Simple OAuth (OAuth2) & OpenID Connect 8

AccessTokenAccessControlHandler.php in Simple OAuth (OAuth2) & OpenID Connect 8

Same filename and directory in other branches
  1. 8.4 src/AccessTokenAccessControlHandler.php
  2. 8.2 src/AccessTokenAccessControlHandler.php
  3. 8.3 src/AccessTokenAccessControlHandler.php
  4. 5.x src/AccessTokenAccessControlHandler.php

Namespace

Drupal\simple_oauth

File

src/AccessTokenAccessControlHandler.php
View source 
<?php

namespace Drupal\simple_oauth;

use Drupal\Core\Entity\EntityAccessControlHandler;
use Drupal\Core\Entity\EntityInterface;
use Drupal\Core\Session\AccountInterface;
use Drupal\Core\Access\AccessResult;

/**
 * Access controller for the Access Token entity.
 *
 * @see \Drupal\simple_oauth\Entity\AccessToken.
 */
class AccessTokenAccessControlHandler extends EntityAccessControlHandler {

  /**
   * {@inheritdoc}
   */
  protected function checkAccess(EntityInterface $entity, $operation, AccountInterface $account) {

    // Permissions only apply to own entities.
    if ($account
      ->id() != $entity
      ->get('auth_user_id')->target_id) {
      return AccessResult::forbidden();
    }
    switch ($operation) {
      case 'view':
        return AccessResult::allowedIfHasPermission($account, 'view own access token entities');
      case 'update':
        return AccessResult::allowedIfHasPermission($account, 'edit own access token entities');
      case 'delete':
        return AccessResult::allowedIfHasPermission($account, 'delete own access token entities');
    }
    return AccessResult::allowed();
  }

  /**
   * {@inheritdoc}
   */
  protected function checkCreateAccess(AccountInterface $account, array $context, $entity_bundle = NULL) {
    return AccessResult::allowedIfHasPermission($account, 'add access token entities');
  }

}

Classes

Namesort descending Description
AccessTokenAccessControlHandler Access controller for the Access Token entity.