2015-08-17 17:00:26 -07:00
< ? php
namespace Drupal\block ;
use Drupal\Component\Plugin\Exception\ContextException ;
2018-11-23 12:29:20 +00:00
use Drupal\Component\Plugin\Exception\MissingValueContextException ;
2015-08-17 17:00:26 -07:00
use Drupal\Core\Access\AccessResult ;
2015-08-27 12:03:05 -07:00
use Drupal\Core\Cache\Cache ;
use Drupal\Core\Cache\CacheableDependencyInterface ;
2015-08-17 17:00:26 -07:00
use Drupal\Core\Condition\ConditionAccessResolverTrait ;
use Drupal\Core\Entity\EntityAccessControlHandler ;
use Drupal\Core\Entity\EntityHandlerInterface ;
use Drupal\Core\Entity\EntityInterface ;
use Drupal\Core\Entity\EntityTypeInterface ;
use Drupal\Core\Plugin\Context\ContextHandlerInterface ;
2015-08-27 12:03:05 -07:00
use Drupal\Core\Plugin\Context\ContextRepositoryInterface ;
2015-08-17 17:00:26 -07:00
use Drupal\Core\Plugin\ContextAwarePluginInterface ;
use Drupal\Core\Session\AccountInterface ;
use Symfony\Component\DependencyInjection\ContainerInterface ;
/**
* Defines the access control handler for the block entity type .
*
* @ see \Drupal\block\Entity\Block
*/
class BlockAccessControlHandler extends EntityAccessControlHandler implements EntityHandlerInterface {
use ConditionAccessResolverTrait ;
/**
* The plugin context handler .
*
* @ var \Drupal\Core\Plugin\Context\ContextHandlerInterface
*/
protected $contextHandler ;
2015-08-27 12:03:05 -07:00
/**
* The context manager service .
*
* @ var \Drupal\Core\Plugin\Context\ContextRepositoryInterface
*/
protected $contextRepository ;
2015-08-17 17:00:26 -07:00
/**
* { @ inheritdoc }
*/
public static function createInstance ( ContainerInterface $container , EntityTypeInterface $entity_type ) {
return new static (
$entity_type ,
2015-08-27 12:03:05 -07:00
$container -> get ( 'context.handler' ),
$container -> get ( 'context.repository' )
2015-08-17 17:00:26 -07:00
);
}
/**
* Constructs the block access control handler instance
*
* @ param \Drupal\Core\Entity\EntityTypeInterface $entity_type
* The entity type definition .
* @ param \Drupal\Core\Plugin\Context\ContextHandlerInterface $context_handler
* The ContextHandler for applying contexts to conditions properly .
2015-08-27 12:03:05 -07:00
* @ param \Drupal\Core\Plugin\Context\ContextRepositoryInterface $context_repository
* The lazy context repository service .
2015-08-17 17:00:26 -07:00
*/
2018-11-23 12:29:20 +00:00
public function __construct ( EntityTypeInterface $entity_type , ContextHandlerInterface $context_handler , ContextRepositoryInterface $context_repository ) {
2015-08-17 17:00:26 -07:00
parent :: __construct ( $entity_type );
$this -> contextHandler = $context_handler ;
2015-08-27 12:03:05 -07:00
$this -> contextRepository = $context_repository ;
2015-08-17 17:00:26 -07:00
}
/**
* { @ inheritdoc }
*/
2015-10-08 11:40:12 -07:00
protected function checkAccess ( EntityInterface $entity , $operation , AccountInterface $account ) {
2015-08-17 17:00:26 -07:00
/** @var \Drupal\block\BlockInterface $entity */
if ( $operation != 'view' ) {
2015-10-08 11:40:12 -07:00
return parent :: checkAccess ( $entity , $operation , $account );
2015-08-17 17:00:26 -07:00
}
// Don't grant access to disabled blocks.
if ( ! $entity -> status ()) {
2016-04-20 09:56:34 -07:00
return AccessResult :: forbidden () -> addCacheableDependency ( $entity );
2015-08-17 17:00:26 -07:00
}
else {
$conditions = [];
2015-08-27 12:03:05 -07:00
$missing_context = FALSE ;
2018-11-23 12:29:20 +00:00
$missing_value = FALSE ;
2015-08-17 17:00:26 -07:00
foreach ( $entity -> getVisibilityConditions () as $condition_id => $condition ) {
if ( $condition instanceof ContextAwarePluginInterface ) {
try {
2015-08-27 12:03:05 -07:00
$contexts = $this -> contextRepository -> getRuntimeContexts ( array_values ( $condition -> getContextMapping ()));
2015-08-17 17:00:26 -07:00
$this -> contextHandler -> applyContextMapping ( $condition , $contexts );
}
2018-11-23 12:29:20 +00:00
catch ( MissingValueContextException $e ) {
$missing_value = TRUE ;
}
2015-08-17 17:00:26 -07:00
catch ( ContextException $e ) {
2015-08-27 12:03:05 -07:00
$missing_context = TRUE ;
2015-08-17 17:00:26 -07:00
}
}
$conditions [ $condition_id ] = $condition ;
}
2015-08-27 12:03:05 -07:00
if ( $missing_context ) {
// If any context is missing then we might be missing cacheable
// metadata, and don't know based on what conditions the block is
2018-11-23 12:29:20 +00:00
// accessible or not. Make sure the result cannot be cached.
2015-08-27 12:03:05 -07:00
$access = AccessResult :: forbidden () -> setCacheMaxAge ( 0 );
}
2018-11-23 12:29:20 +00:00
elseif ( $missing_value ) {
// The contexts exist but have no value. Deny access without
// disabling caching. For example the node type condition will have a
// missing context on any non-node route like the frontpage.
$access = AccessResult :: forbidden ();
}
2015-08-27 12:03:05 -07:00
elseif ( $this -> resolveConditions ( $conditions , 'and' ) !== FALSE ) {
2015-08-17 17:00:26 -07:00
// Delegate to the plugin.
2016-01-06 16:31:26 -08:00
$block_plugin = $entity -> getPlugin ();
try {
if ( $block_plugin instanceof ContextAwarePluginInterface ) {
$contexts = $this -> contextRepository -> getRuntimeContexts ( array_values ( $block_plugin -> getContextMapping ()));
$this -> contextHandler -> applyContextMapping ( $block_plugin , $contexts );
}
$access = $block_plugin -> access ( $account , TRUE );
}
2018-11-23 12:29:20 +00:00
catch ( MissingValueContextException $e ) {
// The contexts exist but have no value. Deny access without
// disabling caching.
$access = AccessResult :: forbidden ();
}
2016-01-06 16:31:26 -08:00
catch ( ContextException $e ) {
2018-11-23 12:29:20 +00:00
// If any context is missing then we might be missing cacheable
// metadata, and don't know based on what conditions the block is
// accessible or not. Make sure the result cannot be cached.
2016-01-06 16:31:26 -08:00
$access = AccessResult :: forbidden () -> setCacheMaxAge ( 0 );
}
2015-08-17 17:00:26 -07:00
}
else {
$access = AccessResult :: forbidden ();
}
2015-08-27 12:03:05 -07:00
$this -> mergeCacheabilityFromConditions ( $access , $conditions );
// Ensure that access is evaluated again when the block changes.
2016-04-20 09:56:34 -07:00
return $access -> addCacheableDependency ( $entity );
2015-08-27 12:03:05 -07:00
}
}
/**
* Merges cacheable metadata from conditions onto the access result object .
*
* @ param \Drupal\Core\Access\AccessResult $access
* The access result object .
* @ param \Drupal\Core\Condition\ConditionInterface [] $conditions
* List of visibility conditions .
*/
protected function mergeCacheabilityFromConditions ( AccessResult $access , array $conditions ) {
foreach ( $conditions as $condition ) {
if ( $condition instanceof CacheableDependencyInterface ) {
$access -> addCacheTags ( $condition -> getCacheTags ());
$access -> addCacheContexts ( $condition -> getCacheContexts ());
$access -> setCacheMaxAge ( Cache :: mergeMaxAges ( $access -> getCacheMaxAge (), $condition -> getCacheMaxAge ()));
}
2015-08-17 17:00:26 -07:00
}
}
}
