Issue #3192292 by amateescu, daffie: Users with the 'administer workspaces' permission can not create a workspace

core/modules/workspaces/src/WorkspaceAccessControlHandler.php

@@ -50,7 +50,7 @@ class WorkspaceAccessControlHandler extends EntityAccessControlHandler {
    * {@inheritdoc}
    */
   protected function checkCreateAccess(AccountInterface $account, array $context, $entity_bundle = NULL) {
-    return AccessResult::allowedIfHasPermission($account, 'create workspace');
+    return AccessResult::allowedIfHasPermissions($account, ['administer workspaces', 'create workspace'], 'OR');
   }
 
 }

core/modules/workspaces/tests/src/Functional/EntityResource/WorkspaceResourceTestBase.php

@@ -181,7 +181,7 @@ abstract class WorkspaceResourceTestBase extends EntityResourceTestBase {
         return "The 'view any workspace' permission is required.";
 
       case 'POST':
-        return "The 'create workspace' permission is required.";
+        return "The following permissions are required: 'administer workspaces' OR 'create workspace'.";
 
       case 'PATCH':
         return "The 'edit any workspace' permission is required.";

core/modules/workspaces/tests/src/Kernel/WorkspaceAccessTest.php

@@ -52,11 +52,15 @@ class WorkspaceAccessTest extends KernelTestBase {
    */
   public function operationCases() {
     return [
+      ['create', 'administer workspaces'],
       ['create', 'create workspace'],
+      ['view', 'administer workspaces'],
       ['view', 'view any workspace'],
       ['view', 'view own workspace'],
+      ['update', 'administer workspaces'],
       ['update', 'edit any workspace'],
       ['update', 'edit own workspace'],
+      ['delete', 'administer workspaces'],
       ['delete', 'delete any workspace'],
       ['delete', 'delete own workspace'],
     ];