ParagraphAccessControlHandler.php

Namespace

Drupal\paragraphs

File

paragraphs/src/ParagraphAccessControlHandler.php
View source
<?php

namespace Drupal\paragraphs;

use Drupal\Core\Config\ConfigFactoryInterface;
use Drupal\Core\Entity\EntityAccessControlHandler;
use Drupal\Core\Entity\EntityHandlerInterface;
use Drupal\Core\Entity\EntityInterface;
use Drupal\Core\Entity\EntityTypeInterface;
use Drupal\Core\Session\AccountInterface;
use Drupal\Core\Access\AccessResult;
use Symfony\Component\DependencyInjection\ContainerInterface;

/**
 * Access controller for the paragraphs entity.
 *
 * @see \Drupal\paragraphs\Entity\Paragraph.
 */
class ParagraphAccessControlHandler extends EntityAccessControlHandler implements EntityHandlerInterface {

  /**
   * Contains the configuration object factory.
   *
   * @var \Drupal\Core\Config\ConfigFactoryInterface
   */
  protected $configFactory;

  /**
   * Constructs a TranslatorAccessControlHandler object.
   *
   * @param \Drupal\Core\Entity\EntityTypeInterface $entity_type
   *   The entity type definition.
   * @param \Drupal\Core\Config\ConfigFactoryInterface $config_factory
   *   The config object factory.
   */
  public function __construct(EntityTypeInterface $entity_type, ConfigFactoryInterface $config_factory) {
    parent::__construct($entity_type);
    $this->configFactory = $config_factory;
  }

  /**
   * {@inheritdoc}
   */
  public static function createInstance(ContainerInterface $container, EntityTypeInterface $entity_type) {
    return new static($entity_type, $container
      ->get('config.factory'));
  }

  /**
   * {@inheritdoc}
   */
  protected function checkAccess(EntityInterface $paragraph, $operation, AccountInterface $account) {

    // Allowed when the operation is not view or the status is true.

    /** @var \Drupal\paragraphs\Entity\Paragraph $paragraph */
    $config = $this->configFactory
      ->get('paragraphs.settings');
    if ($operation === 'view') {
      $access_result = AccessResult::allowedIf($paragraph
        ->isPublished() || $account
        ->hasPermission('view unpublished paragraphs') && $config
        ->get('show_unpublished'))
        ->addCacheableDependency($config);
    }
    else {
      $access_result = AccessResult::allowed();
    }
    if ($paragraph
      ->getParentEntity() != NULL) {

      // Delete permission on the paragraph, should just depend on 'update'
      // access permissions on the parent.
      $operation = $operation == 'delete' ? 'update' : $operation;

      // Library items have no support for parent entity access checking.
      if ($paragraph
        ->getParentEntity()
        ->getEntityTypeId() != 'paragraphs_library_item') {
        $parent_access = $paragraph
          ->getParentEntity()
          ->access($operation, $account, TRUE);
        $access_result = $access_result
          ->andIf($parent_access);
      }
    }
    return $access_result;
  }

  /**
   * {@inheritdoc}
   */
  protected function checkCreateAccess(AccountInterface $account, array $context, $entity_bundle = NULL) {

    // Allow paragraph entities to be created in the context of entity forms.
    if (\Drupal::requestStack()
      ->getCurrentRequest()
      ->getRequestFormat() === 'html') {
      return AccessResult::allowed()
        ->addCacheContexts([
        'request_format',
      ]);
    }
    return AccessResult::neutral()
      ->addCacheContexts([
      'request_format',
    ]);
  }

}

Classes

Namesort descending Description
ParagraphAccessControlHandler Access controller for the paragraphs entity.