drupal/core/modules/file/file.api.php

<?php

/**
 * @file
 * Hooks for file module.
 */

/**
 * Control download access to files.
 *
 * The hook is typically implemented to limit access based on the entity that
 * references the file; for example, only users with access to a node should be
 * allowed to download files attached to that node.
 *
 * @param $field
 *   The field to which the file belongs.
 * @param Drupal\entity\EntityInterface $entity
 *   The entity which references the file.
 * @param Drupal\Core\File\File $file
 *   The file entity that is being requested.
 *
 * @return
 *   TRUE is access should be allowed by this entity or FALSE if denied. Note
 *   that denial may be overridden by another entity controller, making this
 *   grant permissive rather than restrictive.
 *
 * @see hook_field_access().
 */
function hook_file_download_access($field, Drupal\entity\EntityInterface $entity, Drupal\Core\File\File $file) {
  if ($entity->entityType() == 'node') {
    return node_access('view', $entity);
  }
}

/**
 * Alter the access rules applied to a file download.
 *
 * Entities that implement file management set the access rules for their
 * individual files. Module may use this hook to create custom access rules
 * for file downloads.
 *
 * @see hook_file_download_access().
 *
 * @param $grants
 *   An array of grants gathered by hook_file_download_access(). The array is
 *   keyed by the module that defines the entity type's access control; the
 *   values are Boolean grant responses for each module.
 * @param array $context
 *   An associative array containing the following key-value pairs:
 *   - field: The field to which the file belongs.
 *   - entity: The entity which references the file.
 *   - file: The file entity that is being requested.
 *
 * @see hook_file_download_access().
 */
function hook_file_download_access_alter(&$grants, $context) {
  // For our example module, we always enforce the rules set by node module.
  if (isset($grants['node'])) {
    $grants = array('node' => $grants['node']);
  }
}
#846296 by Berdir, ridgerunner, agentrickard: Fixed file_file_download() only implements access checks for nodes and users. 2010-08-23 14:53:50 +00:00			`<?php`

			`/**`
			`* @file`
			`* Hooks for file module.`
			`*/`

			`/**`
			`* Control download access to files.`
			`*`
Issue #1245220 by Berdir, plach, David_Rothstein, dpolant, xjm, WorldFallz, bfroehle, effulgentsia, corvus_ch \| seddonym: Fixed HEAD BROKEN (and change notification/followup): file_file_download() passed bogus to field_access(). 2012-08-21 19:40:43 +00:00			`* The hook is typically implemented to limit access based on the entity that`
			`* references the file; for example, only users with access to a node should be`
			`* allowed to download files attached to that node.`
#846296 by Berdir, ridgerunner, agentrickard: Fixed file_file_download() only implements access checks for nodes and users. 2010-08-23 14:53:50 +00:00			`*`
Revert "Issue #1425330 by swentel, grendzy, davereid, wojtha, c960657: Fixed Apply Aggregator and OpenID fixes from DRUPAL-SA-CORE-2012-001." This reverts commit c3fa160dca988c221d7a34c327fd8c81a4df2483. 2012-02-28 18:32:20 +00:00			`* @param $field`
			`* The field to which the file belongs.`
Issue #1245220 by Berdir, plach, dpolant, xjm, WorldFallz, bfroehle, David_Rothstein, effulgentsia, corvus_ch: Fixed file_file_download() passed bogus $field to field_access(). 2012-08-21 15:19:09 +00:00			`* @param Drupal\entity\EntityInterface $entity`
Issue #1245220 by Berdir, plach, David_Rothstein, dpolant, xjm, WorldFallz, bfroehle, effulgentsia, corvus_ch \| seddonym: Fixed HEAD BROKEN (and change notification/followup): file_file_download() passed bogus to field_access(). 2012-08-21 19:40:43 +00:00			`* The entity which references the file.`
Issue #1245220 by Berdir, plach, dpolant, xjm, WorldFallz, bfroehle, David_Rothstein, effulgentsia, corvus_ch: Fixed file_file_download() passed bogus $field to field_access(). 2012-08-21 15:19:09 +00:00			`* @param Drupal\Core\File\File $file`
			`* The file entity that is being requested.`
#846296 by Berdir, ridgerunner, agentrickard: Fixed file_file_download() only implements access checks for nodes and users. 2010-08-23 14:53:50 +00:00			`*`
			`* @return`
			`* TRUE is access should be allowed by this entity or FALSE if denied. Note`
			`* that denial may be overridden by another entity controller, making this`
			`* grant permissive rather than restrictive.`
			`*`
			`* @see hook_field_access().`
			`*/`
Issue #1245220 by Berdir, plach, dpolant, xjm, WorldFallz, bfroehle, David_Rothstein, effulgentsia, corvus_ch: Fixed file_file_download() passed bogus $field to field_access(). 2012-08-21 15:19:09 +00:00			`function hook_file_download_access($field, Drupal\entity\EntityInterface $entity, Drupal\Core\File\File $file) {`
			`if ($entity->entityType() == 'node') {`
#846296 by Berdir, ridgerunner, agentrickard: Fixed file_file_download() only implements access checks for nodes and users. 2010-08-23 14:53:50 +00:00			`return node_access('view', $entity);`
			`}`
			`}`

			`/**`
			`* Alter the access rules applied to a file download.`
			`*`
			`* Entities that implement file management set the access rules for their`
			`* individual files. Module may use this hook to create custom access rules`
			`* for file downloads.`
			`*`
			`* @see hook_file_download_access().`
			`*`
- Patch #1024684 by linclark: omit & in @param statements. 2011-05-08 19:50:38 +00:00			`* @param $grants`
#846296 by Berdir, ridgerunner, agentrickard: Fixed file_file_download() only implements access checks for nodes and users. 2010-08-23 14:53:50 +00:00			`* An array of grants gathered by hook_file_download_access(). The array is`
			`* keyed by the module that defines the entity type's access control; the`
			`* values are Boolean grant responses for each module.`
Issue #1245220 by Berdir, plach, dpolant, xjm, WorldFallz, bfroehle, David_Rothstein, effulgentsia, corvus_ch: Fixed file_file_download() passed bogus $field to field_access(). 2012-08-21 15:19:09 +00:00			`* @param array $context`
			`* An associative array containing the following key-value pairs:`
Issue #1245220 by Berdir, plach, David_Rothstein, dpolant, xjm, WorldFallz, bfroehle, effulgentsia, corvus_ch \| seddonym: Fixed HEAD BROKEN (and change notification/followup): file_file_download() passed bogus to field_access(). 2012-08-21 19:40:43 +00:00			`* - field: The field to which the file belongs.`
			`* - entity: The entity which references the file.`
Issue #1245220 by Berdir, plach, dpolant, xjm, WorldFallz, bfroehle, David_Rothstein, effulgentsia, corvus_ch: Fixed file_file_download() passed bogus $field to field_access(). 2012-08-21 15:19:09 +00:00			`* - file: The file entity that is being requested.`
#846296 by Berdir, ridgerunner, agentrickard: Fixed file_file_download() only implements access checks for nodes and users. 2010-08-23 14:53:50 +00:00			`*`
Issue #1245220 by Berdir, plach, dpolant, xjm, WorldFallz, bfroehle, David_Rothstein, effulgentsia, corvus_ch: Fixed file_file_download() passed bogus $field to field_access(). 2012-08-21 15:19:09 +00:00			`* @see hook_file_download_access().`
#846296 by Berdir, ridgerunner, agentrickard: Fixed file_file_download() only implements access checks for nodes and users. 2010-08-23 14:53:50 +00:00			`*/`
Issue #1245220 by Berdir, plach, dpolant, xjm, WorldFallz, bfroehle, David_Rothstein, effulgentsia, corvus_ch: Fixed file_file_download() passed bogus $field to field_access(). 2012-08-21 15:19:09 +00:00			`function hook_file_download_access_alter(&$grants, $context) {`
#846296 by Berdir, ridgerunner, agentrickard: Fixed file_file_download() only implements access checks for nodes and users. 2010-08-23 14:53:50 +00:00			`// For our example module, we always enforce the rules set by node module.`
			`if (isset($grants['node'])) {`
			`$grants = array('node' => $grants['node']);`
			`}`
			`}`