public function EntityAccessCheck::access

Implements \Drupal\Core\Access\AccessCheckInterface::access().

The value of the '_entity_access' key must be in the pattern 'entity_type.operation.' The entity type must match the {entity_type} parameter in the route pattern. This will check a node for 'update' access:


pattern: '/foo/{node}/bar'
requirements:
  _entity_access: 'node.update'

Available operations are 'view', 'update', 'create', and 'delete'.

Overrides AccessCheckInterface::access

File

drupal/core/lib/Drupal/Core/Entity/EntityAccessCheck.php, line 40: Contains \Drupal\Core\Entity\EntityAccessCheck.

Class

EntityAccessCheck: Provides a generic access checker for entities.

Namespace

Drupal\Core\Entity

Code

public function access(Route $route, Request $request) {

  // Split the entity type and the operation.
  $requirement = $route
    ->getRequirement('_entity_access');
  list($entity_type, $operation) = explode('.', $requirement);

  // If there is valid entity of the given entity type, check its access.
  if ($request->attributes
    ->has($entity_type)) {
    $entity = $request->attributes
      ->get($entity_type);
    if ($entity instanceof EntityInterface) {
      return $entity
        ->access($operation);
    }
  }

  // No opinion, so other access checks should decide if access should be
  // allowed or not.
  return NULL;
}

Main menu

Search Drupal 8.x

API Navigation

public function EntityAccessCheck::access

File

Class

Namespace

Code

Main menu

You are here

Search Drupal 8.x

API Navigation

public function EntityAccessCheck::access

File

Class

Namespace

Code