Issue #1658814 by Gábor Hojtsy: Make node_access() language-aware.
webchick
parent
a56a6badd0
commit
4cc4103e03
|
|
@ -596,6 +596,8 @@ function hook_node_load($nodes, $types) {
|
||||||
* - "view"
|
* - "view"
|
||||||
* @param object $account
|
* @param object $account
|
||||||
* The user object to perform the access check operation on.
|
* The user object to perform the access check operation on.
|
||||||
|
* @param object $langcode
|
||||||
|
* The language code to perform the access check operation on.
|
||||||
*
|
*
|
||||||
* @return integer
|
* @return integer
|
||||||
* - NODE_ACCESS_ALLOW: if the operation is to be allowed.
|
* - NODE_ACCESS_ALLOW: if the operation is to be allowed.
|
||||||
|
|
@ -604,7 +606,7 @@ function hook_node_load($nodes, $types) {
|
||||||
*
|
*
|
||||||
* @ingroup node_access
|
* @ingroup node_access
|
||||||
*/
|
*/
|
||||||
function hook_node_access($node, $op, $account) {
|
function hook_node_access($node, $op, $account, $langcode) {
|
||||||
$type = is_string($node) ? $node : $node->type;
|
$type = is_string($node) ? $node : $node->type;
|
||||||
|
|
||||||
$configured_types = node_permissions_get_configured_types();
|
$configured_types = node_permissions_get_configured_types();
|
||||||
|
|
|
||||||
|
|
@ -2879,13 +2879,21 @@ function node_form_system_themes_admin_form_submit($form, &$form_state) {
|
||||||
* @param $account
|
* @param $account
|
||||||
* (optional) A user object representing the user for whom the operation is to
|
* (optional) A user object representing the user for whom the operation is to
|
||||||
* be performed. Determines access for a user other than the current user.
|
* be performed. Determines access for a user other than the current user.
|
||||||
|
* @param $langcode
|
||||||
|
* (optional) Language code for the variant of the node. Different language
|
||||||
|
* variants might have different permissions associated. If NULL, the
|
||||||
|
* original langcode of the node is used.
|
||||||
*
|
*
|
||||||
* @return
|
* @return
|
||||||
* TRUE if the operation may be performed, FALSE otherwise.
|
* TRUE if the operation may be performed, FALSE otherwise.
|
||||||
*
|
*
|
||||||
* @see node_menu()
|
* @see node_menu()
|
||||||
|
*
|
||||||
|
* @todo
|
||||||
|
* Add langcode support to node_access schema / queries.
|
||||||
|
* http://drupal.org/node/1658846
|
||||||
*/
|
*/
|
||||||
function node_access($op, $node, $account = NULL) {
|
function node_access($op, $node, $account = NULL, $langcode = NULL) {
|
||||||
$rights = &drupal_static(__FUNCTION__, array());
|
$rights = &drupal_static(__FUNCTION__, array());
|
||||||
|
|
||||||
if (!$node || !in_array($op, array('view', 'update', 'delete', 'create'), TRUE)) {
|
if (!$node || !in_array($op, array('view', 'update', 'delete', 'create'), TRUE)) {
|
||||||
|
|
@ -2903,18 +2911,25 @@ function node_access($op, $node, $account = NULL) {
|
||||||
|
|
||||||
$cid = is_object($node) ? $node->nid : $node;
|
$cid = is_object($node) ? $node->nid : $node;
|
||||||
|
|
||||||
|
// If no language code was provided, default to the node's langcode or
|
||||||
|
// to an empty langcode if a node type was requested. The latter is purely
|
||||||
|
// for caching purposes.
|
||||||
|
if (empty($langcode)) {
|
||||||
|
$langcode = is_object($node) ? $node->langcode : '';
|
||||||
|
}
|
||||||
|
|
||||||
// If we've already checked access for this node, user and op, return from
|
// If we've already checked access for this node, user and op, return from
|
||||||
// cache.
|
// cache.
|
||||||
if (isset($rights[$account->uid][$cid][$op])) {
|
if (isset($rights[$account->uid][$cid][$langcode][$op])) {
|
||||||
return $rights[$account->uid][$cid][$op];
|
return $rights[$account->uid][$cid][$langcode][$op];
|
||||||
}
|
}
|
||||||
|
|
||||||
if (user_access('bypass node access', $account)) {
|
if (user_access('bypass node access', $account)) {
|
||||||
$rights[$account->uid][$cid][$op] = TRUE;
|
$rights[$account->uid][$cid][$langcode][$op] = TRUE;
|
||||||
return TRUE;
|
return TRUE;
|
||||||
}
|
}
|
||||||
if (!user_access('access content', $account)) {
|
if (!user_access('access content', $account)) {
|
||||||
$rights[$account->uid][$cid][$op] = FALSE;
|
$rights[$account->uid][$cid][$langcode][$op] = FALSE;
|
||||||
return FALSE;
|
return FALSE;
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|
@ -2923,19 +2938,19 @@ function node_access($op, $node, $account = NULL) {
|
||||||
// - At least one module says to grant access.
|
// - At least one module says to grant access.
|
||||||
// If no module specified either allow or deny, we fall back to the
|
// If no module specified either allow or deny, we fall back to the
|
||||||
// node_access table.
|
// node_access table.
|
||||||
$access = module_invoke_all('node_access', $node, $op, $account);
|
$access = module_invoke_all('node_access', $node, $op, $account, $langcode);
|
||||||
if (in_array(NODE_ACCESS_DENY, $access, TRUE)) {
|
if (in_array(NODE_ACCESS_DENY, $access, TRUE)) {
|
||||||
$rights[$account->uid][$cid][$op] = FALSE;
|
$rights[$account->uid][$cid][$langcode][$op] = FALSE;
|
||||||
return FALSE;
|
return FALSE;
|
||||||
}
|
}
|
||||||
elseif (in_array(NODE_ACCESS_ALLOW, $access, TRUE)) {
|
elseif (in_array(NODE_ACCESS_ALLOW, $access, TRUE)) {
|
||||||
$rights[$account->uid][$cid][$op] = TRUE;
|
$rights[$account->uid][$cid][$langcode][$op] = TRUE;
|
||||||
return TRUE;
|
return TRUE;
|
||||||
}
|
}
|
||||||
|
|
||||||
// Check if authors can view their own unpublished nodes.
|
// Check if authors can view their own unpublished nodes.
|
||||||
if ($op == 'view' && !$node->status && user_access('view own unpublished content', $account) && $account->uid == $node->uid && $account->uid != 0) {
|
if ($op == 'view' && !$node->get('status', $langcode) && user_access('view own unpublished content', $account) && $account->uid == $node->get('uid', $langcode) && $account->uid != 0) {
|
||||||
$rights[$account->uid][$cid][$op] = TRUE;
|
$rights[$account->uid][$cid][$langcode][$op] = TRUE;
|
||||||
return TRUE;
|
return TRUE;
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|
@ -2968,13 +2983,13 @@ function node_access($op, $node, $account = NULL) {
|
||||||
$result = (bool) $query
|
$result = (bool) $query
|
||||||
->execute()
|
->execute()
|
||||||
->fetchField();
|
->fetchField();
|
||||||
$rights[$account->uid][$cid][$op] = $result;
|
$rights[$account->uid][$cid][$langcode][$op] = $result;
|
||||||
return $result;
|
return $result;
|
||||||
}
|
}
|
||||||
elseif (is_object($node) && $op == 'view' && $node->status) {
|
elseif (is_object($node) && $op == 'view' && $node->get('status', $langcode)) {
|
||||||
// If no modules implement hook_node_grants(), the default behavior is to
|
// If no modules implement hook_node_grants(), the default behavior is to
|
||||||
// allow all users to view published nodes, so reflect that here.
|
// allow all users to view published nodes, so reflect that here.
|
||||||
$rights[$account->uid][$cid][$op] = TRUE;
|
$rights[$account->uid][$cid][$langcode][$op] = TRUE;
|
||||||
return TRUE;
|
return TRUE;
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
|
||||||
|
|
@ -231,3 +231,14 @@ function _node_access_test_node_write(Node $node) {
|
||||||
->execute();
|
->execute();
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
|
/**
|
||||||
|
* Implements hook_node_access().
|
||||||
|
*/
|
||||||
|
function node_access_test_node_access($node, $op, $account, $langcode) {
|
||||||
|
if (variable_get('node_access_test_secret_catalan', 0) && $langcode == 'ca') {
|
||||||
|
// Make all Catalan content secret.
|
||||||
|
return NODE_ACCESS_DENY;
|
||||||
|
}
|
||||||
|
return NODE_ACCESS_IGNORE;
|
||||||
|
}
|
||||||
|
|
|
||||||
Loading…
Reference in New Issue