function ContentTranslationManageAccessCheck::access

Same name and namespace in other branches
  1. 9 core/modules/content_translation/src/Access/ContentTranslationManageAccessCheck.php \Drupal\content_translation\Access\ContentTranslationManageAccessCheck::access()
  2. 8.9.x core/modules/content_translation/src/Access/ContentTranslationManageAccessCheck.php \Drupal\content_translation\Access\ContentTranslationManageAccessCheck::access()
  3. 11.x core/modules/content_translation/src/Access/ContentTranslationManageAccessCheck.php \Drupal\content_translation\Access\ContentTranslationManageAccessCheck::access()

Checks translation access for the entity and operation on the given route.

Parameters

\Symfony\Component\Routing\Route $route: The route to check against.

\Drupal\Core\Routing\RouteMatchInterface $route_match: The parametrized route.

\Drupal\Core\Session\AccountInterface $account: The currently logged in account.

string $source: (optional) For a create operation, the language code of the source.

string $target: (optional) For a create operation, the language code of the translation.

string $language: (optional) For an update or delete operation, the language code of the translation being updated or deleted.

string $entity_type_id: (optional) The entity type ID.

Return value

\Drupal\Core\Access\AccessResultInterface The access result.

File

core/modules/content_translation/src/Access/ContentTranslationManageAccessCheck.php, line 69

Class

ContentTranslationManageAccessCheck
Access check for entity translation CRUD operation.

Namespace

Drupal\content_translation\Access

Code

public function access(Route $route, RouteMatchInterface $route_match, AccountInterface $account, $source = NULL, $target = NULL, $language = NULL, $entity_type_id = NULL) {
  /** @var \Drupal\Core\Entity\ContentEntityInterface $entity */
  if ($entity = $route_match->getParameter($entity_type_id)) {
    $operation = $route->getRequirement('_access_content_translation_manage');
    $language = $this->languageManager
      ->getLanguage($language) ?: $this->languageManager
      ->getCurrentLanguage(LanguageInterface::TYPE_CONTENT);
    $entity_type = $this->entityTypeManager
      ->getDefinition($entity_type_id);
    if (in_array($operation, [
      'update',
      'delete',
    ])) {
      // Translation operations cannot be performed on the default
      // translation.
      if ($language->getId() == $entity->getUntranslated()
        ->language()
        ->getId()) {
        return AccessResult::forbidden()->addCacheableDependency($entity);
      }
      // Editors have no access to the translation operations, as entity
      // access already grants them an equal or greater access level.
      $templates = [
        'update' => 'edit-form',
        'delete' => 'delete-form',
      ];
      if ($entity->access($operation) && $entity_type->hasLinkTemplate($templates[$operation])) {
        return AccessResult::forbidden()->cachePerPermissions();
      }
    }
    if ($account->hasPermission('translate any entity')) {
      return AccessResult::allowed()->cachePerPermissions();
    }
    switch ($operation) {
      case 'create':
        /** @var \Drupal\content_translation\ContentTranslationHandlerInterface $handler */
        $handler = $this->entityTypeManager
          ->getHandler($entity->getEntityTypeId(), 'translation');
        $translations = $entity->getTranslationLanguages();
        $languages = $this->languageManager
          ->getLanguages();
        $source_language = $this->languageManager
          ->getLanguage($source) ?: $entity->language();
        $target_language = $this->languageManager
          ->getLanguage($target) ?: $this->languageManager
          ->getCurrentLanguage(LanguageInterface::TYPE_CONTENT);
        $is_new_translation = $source_language->getId() != $target_language->getId() && isset($languages[$source_language->getId()]) && isset($languages[$target_language->getId()]) && !isset($translations[$target_language->getId()]);
        return AccessResult::allowedIf($is_new_translation)->cachePerPermissions()
          ->addCacheableDependency($entity)
          ->andIf($handler->getTranslationAccess($entity, $operation));
      case 'delete':
        // @todo Remove this in https://www.drupal.org/node/2945956.
        /** @var \Drupal\Core\Access\AccessResultInterface $delete_access */
        $delete_access = \Drupal::service('content_translation.delete_access')->checkAccess($entity);
        $access = $this->checkAccess($entity, $language, $operation);
        return $delete_access->andIf($access);
      case 'update':
        return $this->checkAccess($entity, $language, $operation);
    }
  }
  // No opinion.
  return AccessResult::neutral();
}

Buggy or inaccurate documentation? Please file an issue. Need support? Need help programming? Connect with the Drupal community.