diff --git a/core/modules/user/lib/Drupal/user/Form/UserAdminPermissionsForm.php b/core/modules/user/lib/Drupal/user/Form/UserAdminPermissionsForm.php
new file mode 100644
index 0000000..83f59b5
--- /dev/null
+++ b/core/modules/user/lib/Drupal/user/Form/UserAdminPermissionsForm.php
@@ -0,0 +1,129 @@
+<?php
+namespace Drupal\user\Form;
+
+use Drupal\Core\ControllerInterface;
+use Drupal\Core\Form\FormInterface;
+use Symfony\Component\DependencyInjection\ContainerInterface;
+use Drupal\Core\Database\Connection;
+
+class UserAdminPermissionsForm implements ControllerInterface, FormInterface {
+
+  protected $database;
+
+  /**
+   * This method lets us inject the services this class needs.
+   *
+   * Only inject services that are actually needed. Which services
+   * are needed will vary by the controller.
+   */
+  public static function create(ContainerInterface $container) {
+    return new static($container->get('database'));
+  }
+
+  public function __construct(Connection $database) {
+    $this->database = $database;
+  }
+
+  public function getFormID() {
+    return 'user_admin_permissions';
+  }
+
+  /**
+   * {@inheritdoc}
+   */
+  function buildForm(array $form, array &$form_state, Node $node = NULL) {
+
+    // Retrieve role names for columns.
+    $role_names = user_role_names();
+    if (isset($rid)) {
+      $role_names = array($rid => $role_names[$rid]);
+    }
+    // Fetch permissions for all roles or the one selected role.
+    $role_permissions = user_role_permissions($role_names);
+
+    // Store $role_names for use when saving the data.
+    $form['role_names'] = array(
+      '#type' => 'value',
+      '#value' => $role_names,
+    );
+    // Render role/permission overview:
+    $options = array();
+    $module_info = system_get_info('module');
+    $hide_descriptions = system_admin_compact_mode();
+
+    // Get a list of all the modules implementing a hook_permission() and sort by
+    // display name.
+    $modules = array();
+    foreach (module_implements('permission') as $module) {
+      $modules[$module] = $module_info[$module]['name'];
+    }
+    asort($modules);
+
+    foreach ($modules as $module => $display_name) {
+      if ($permissions = module_invoke($module, 'permission')) {
+        $form['permission'][] = array(
+          '#markup' => $module_info[$module]['name'],
+          '#id' => $module,
+        );
+        foreach ($permissions as $perm => $perm_item) {
+          // Fill in default values for the permission.
+          $perm_item += array(
+            'description' => '',
+            'restrict access' => FALSE,
+            'warning' => !empty($perm_item['restrict access']) ? t('Warning: Give to trusted roles only; this permission has security implications.') : '',
+          );
+          $options[$perm] = '';
+          $form['permission'][$perm] = array(
+            '#type' => 'item',
+            '#markup' => $perm_item['title'],
+            '#description' => theme('user_permission_description', array('permission_item' => $perm_item, 'hide' => $hide_descriptions)),
+          );
+          foreach ($role_names as $rid => $name) {
+            // Builds arrays for checked boxes for each role
+            if (isset($role_permissions[$rid][$perm])) {
+              $status[$rid][] = $perm;
+            }
+          }
+        }
+      }
+    }
+
+    // Have to build checkboxes here after checkbox arrays are built
+    foreach ($role_names as $rid => $name) {
+      $form['checkboxes'][$rid] = array(
+        '#type' => 'checkboxes',
+        '#options' => $options,
+        '#default_value' => isset($status[$rid]) ? $status[$rid] : array(),
+        '#attributes' => array('class' => array('rid-' . $rid)),
+      );
+      $form['role_names'][$rid] = array('#markup' => check_plain($name), '#tree' => TRUE);
+    }
+
+    $form['actions'] = array('#type' => 'actions');
+    $form['actions']['submit'] = array('#type' => 'submit', '#value' => t('Save permissions'));
+
+    $form['#attached']['library'][] = array('user', 'drupal.user.permissions');
+
+    return $form;
+  }
+
+  /**
+   * {@inheritdoc}
+   */
+  public function validateForm(array &$form, array &$form_state) {
+  }
+
+  /**
+   * {@inheritdoc}
+   */
+  function submitForm(array &$form, array &$form_state) {
+    foreach ($form_state['values']['role_names'] as $rid => $name) {
+      user_role_change_permissions($rid, $form_state['values'][$rid]);
+    }
+
+    drupal_set_message(t('The changes have been saved.'));
+
+    // Clear the cached pages and blocks.
+    cache_invalidate_tags(array('content' => TRUE));
+  }
+}
diff --git a/core/modules/user/user.admin.inc b/core/modules/user/user.admin.inc
index c3931d8..e40f452 100644
--- a/core/modules/user/user.admin.inc
+++ b/core/modules/user/user.admin.inc
@@ -676,105 +676,6 @@ function user_admin_settings_submit($form, &$form_state) {
 }
 
 /**
- * Menu callback: administer permissions.
- *
- * @ingroup forms
- * @see user_admin_permissions_submit()
- * @see theme_user_admin_permissions()
- */
-function user_admin_permissions($form, $form_state, $rid = NULL) {
-
-  // Retrieve role names for columns.
-  $role_names = user_role_names();
-  if (isset($rid)) {
-    $role_names = array($rid => $role_names[$rid]);
-  }
-  // Fetch permissions for all roles or the one selected role.
-  $role_permissions = user_role_permissions($role_names);
-
-  // Store $role_names for use when saving the data.
-  $form['role_names'] = array(
-    '#type' => 'value',
-    '#value' => $role_names,
-  );
-  // Render role/permission overview:
-  $options = array();
-  $module_info = system_get_info('module');
-  $hide_descriptions = system_admin_compact_mode();
-
-  // Get a list of all the modules implementing a hook_permission() and sort by
-  // display name.
-  $modules = array();
-  foreach (module_implements('permission') as $module) {
-    $modules[$module] = $module_info[$module]['name'];
-  }
-  asort($modules);
-
-  foreach ($modules as $module => $display_name) {
-    if ($permissions = module_invoke($module, 'permission')) {
-      $form['permission'][] = array(
-        '#markup' => $module_info[$module]['name'],
-        '#id' => $module,
-      );
-      foreach ($permissions as $perm => $perm_item) {
-        // Fill in default values for the permission.
-        $perm_item += array(
-          'description' => '',
-          'restrict access' => FALSE,
-          'warning' => !empty($perm_item['restrict access']) ? t('Warning: Give to trusted roles only; this permission has security implications.') : '',
-        );
-        $options[$perm] = '';
-        $form['permission'][$perm] = array(
-          '#type' => 'item',
-          '#markup' => $perm_item['title'],
-          '#description' => theme('user_permission_description', array('permission_item' => $perm_item, 'hide' => $hide_descriptions)),
-        );
-        foreach ($role_names as $rid => $name) {
-          // Builds arrays for checked boxes for each role
-          if (isset($role_permissions[$rid][$perm])) {
-            $status[$rid][] = $perm;
-          }
-        }
-      }
-    }
-  }
-
-  // Have to build checkboxes here after checkbox arrays are built
-  foreach ($role_names as $rid => $name) {
-    $form['checkboxes'][$rid] = array(
-      '#type' => 'checkboxes',
-      '#options' => $options,
-      '#default_value' => isset($status[$rid]) ? $status[$rid] : array(),
-      '#attributes' => array('class' => array('rid-' . $rid)),
-    );
-    $form['role_names'][$rid] = array('#markup' => check_plain($name), '#tree' => TRUE);
-  }
-
-  $form['actions'] = array('#type' => 'actions');
-  $form['actions']['submit'] = array('#type' => 'submit', '#value' => t('Save permissions'));
-
-  $form['#attached']['library'][] = array('user', 'drupal.user.permissions');
-
-  return $form;
-}
-
-/**
- * Save permissions selected on the administer permissions page.
- *
- * @see user_admin_permissions()
- */
-function user_admin_permissions_submit($form, &$form_state) {
-  foreach ($form_state['values']['role_names'] as $rid => $name) {
-    user_role_change_permissions($rid, $form_state['values'][$rid]);
-  }
-
-  drupal_set_message(t('The changes have been saved.'));
-
-  // Clear the cached pages and blocks.
-  cache_invalidate_tags(array('content' => TRUE));
-}
-
-/**
  * Returns HTML for the administer permissions page.
  *
  * @param $variables
diff --git a/core/modules/user/user.module b/core/modules/user/user.module
index bdf5862..edabf50 100644
--- a/core/modules/user/user.module
+++ b/core/modules/user/user.module
@@ -952,10 +952,7 @@ function user_menu() {
   $items['admin/people/permissions'] = array(
     'title' => 'Permissions',
     'description' => 'Determine access to features by selecting permissions for roles.',
-    'page callback' => 'drupal_get_form',
-    'page arguments' => array('user_admin_permissions'),
-    'access arguments' => array('administer permissions'),
-    'file' => 'user.admin.inc',
+    'route_name' => 'user_admin_permissions',
     'type' => MENU_LOCAL_TASK,
   );
   $items['admin/people/roles'] = array(
diff --git a/core/modules/user/user.routing.yml b/core/modules/user/user.routing.yml
index 34b6059..8886a48 100644
--- a/core/modules/user/user.routing.yml
+++ b/core/modules/user/user.routing.yml
@@ -18,3 +18,10 @@ user_autocomplete_anonymous:
     _controller: '\Drupal\user\UserAutocompleteController::autocompleteUserAnonymous'
   requirements:
     _permission: 'access user profiles'
+
+user_admin_permissions:
+  pattern: 'admin/people/permissions'
+  defaults:
+    _form: '\Drupal\user\Form\UserAdminPermissionsForm'
+  requirements:
+    _permission: 'administer permissions'