diff --git a/core/modules/book/book.module b/core/modules/book/book.module index 282aa92..3f8324b 100644 --- a/core/modules/book/book.module +++ b/core/modules/book/book.module @@ -135,7 +135,8 @@ function book_node_view_link(NodeInterface $node, $view_mode) { if (isset($node->book['depth'])) { if ($view_mode == 'full' && node_is_page($node)) { $child_type = \Drupal::config('book.settings')->get('child_type'); - if (($account->hasPermission('add content to books') || $account->hasPermission('administer book outlines')) && node_access('create', $child_type) && $node->isPublished() && $node->book['depth'] < MENU_MAX_DEPTH) { + $access_controller = Drupal::entityManager()->getAccessController('node'); + if (($account->hasPermission('add content to books') || $account->hasPermission('administer book outlines')) && $access_controller->createAccess($child_type) && $node->isPublished() && $node->book['depth'] < MENU_MAX_DEPTH) { $links['book_add_child'] = array( 'title' => t('Add child page'), 'href' => 'node/add/' . $child_type, @@ -214,7 +215,7 @@ function book_menu() { * @see book_menu() */ function _book_outline_access(EntityInterface $node) { - return \Drupal::currentUser()->hasPermission('administer book outlines') && node_access('view', $node); + return \Drupal::currentUser()->hasPermission('administer book outlines') && $node->access('view'); } /** diff --git a/core/modules/book/lib/Drupal/book/Plugin/Block/BookNavigationBlock.php b/core/modules/book/lib/Drupal/book/Plugin/Block/BookNavigationBlock.php index d32ea7b..4453823 100644 --- a/core/modules/book/lib/Drupal/book/Plugin/Block/BookNavigationBlock.php +++ b/core/modules/book/lib/Drupal/book/Plugin/Block/BookNavigationBlock.php @@ -80,7 +80,7 @@ public function build() { $book['in_active_trail'] = FALSE; // Check whether user can access the book link. $book_node = node_load($book['nid']); - $book['access'] = node_access('view', $book_node); + $book['access'] = $book_node->access('view'); $pseudo_tree[0]['link'] = $book; $book_menus[$book_id] = menu_tree_output($pseudo_tree); } diff --git a/core/modules/file/file.api.php b/core/modules/file/file.api.php index 2624623..0dfc1cf 100644 --- a/core/modules/file/file.api.php +++ b/core/modules/file/file.api.php @@ -220,7 +220,7 @@ function hook_file_delete(Drupal\file\FileInterface $file) { */ function hook_file_download_access($field, Drupal\Core\Entity\EntityInterface $entity, Drupal\file\FileInterface $file) { if ($entity->entityType() == 'node') { - return node_access('view', $entity); + return $entity->access('view'); } } diff --git a/core/modules/forum/forum.module b/core/modules/forum/forum.module index 77ef530..31620fc 100644 --- a/core/modules/forum/forum.module +++ b/core/modules/forum/forum.module @@ -160,7 +160,7 @@ function forum_menu_local_tasks(&$data, $router_item, $root_path) { // Loop through all bundles for forum taxonomy vocabulary field. $field = Field::fieldInfo()->getField('node', 'taxonomy_forums'); foreach ($field['bundles'] as $type) { - if (node_access('create', $type)) { + if (\Drupal::entityManager()->getAccessController('node')->createAccess($type)) { $links[$type] = array( '#theme' => 'menu_local_action', '#link' => array( diff --git a/core/modules/node/lib/Drupal/node/NodeAccessControllerInterface.php b/core/modules/node/lib/Drupal/node/NodeAccessControllerInterface.php index 6387185..686a0b8 100644 --- a/core/modules/node/lib/Drupal/node/NodeAccessControllerInterface.php +++ b/core/modules/node/lib/Drupal/node/NodeAccessControllerInterface.php @@ -33,7 +33,7 @@ public function acquireGrants(NodeInterface $node); * * If a realm is provided, it will only delete grants from that realm, but it * will always delete a grant from the 'all' realm. Modules that utilize - * node_access() can use this function when doing mass updates due to widespread + * node access can use this function when doing mass updates due to widespread * permission changes. * * Note: Don't call this function directly from a contributed module. Call diff --git a/core/modules/node/lib/Drupal/node/NodeFormController.php b/core/modules/node/lib/Drupal/node/NodeFormController.php index f0c0ae8..1d28e2d 100644 --- a/core/modules/node/lib/Drupal/node/NodeFormController.php +++ b/core/modules/node/lib/Drupal/node/NodeFormController.php @@ -303,7 +303,7 @@ protected function actions(array $form, array &$form_state) { } $element['preview'] = array( - '#access' => $preview_mode != DRUPAL_DISABLED && (node_access('create', $node) || node_access('update', $node)), + '#access' => $preview_mode != DRUPAL_DISABLED && ($node->access('create') || $node->access('update')), '#value' => t('Preview'), '#weight' => 20, '#validate' => array( @@ -315,7 +315,7 @@ protected function actions(array $form, array &$form_state) { ), ); - $element['delete']['#access'] = node_access('delete', $node); + $element['delete']['#access'] = $node->access('delete'); $element['delete']['#weight'] = 100; return $element; @@ -480,7 +480,7 @@ public function save(array $form, array &$form_state) { if ($node->id()) { $form_state['values']['nid'] = $node->id(); $form_state['nid'] = $node->id(); - $form_state['redirect'] = node_access('view', $node) ? 'node/' . $node->id() : ''; + $form_state['redirect'] = $node->access('view') ? 'node/' . $node->id() : ''; } else { // In the unlikely case something went wrong on save, the node will be diff --git a/core/modules/node/lib/Drupal/node/NodeGrantDatabaseStorageInterface.php b/core/modules/node/lib/Drupal/node/NodeGrantDatabaseStorageInterface.php index 2457b8f..5b95616 100644 --- a/core/modules/node/lib/Drupal/node/NodeGrantDatabaseStorageInterface.php +++ b/core/modules/node/lib/Drupal/node/NodeGrantDatabaseStorageInterface.php @@ -56,8 +56,8 @@ public function alterQuery($query, array $tables, $op, AccountInterface $account * * If a realm is provided, it will only delete grants from that realm, but * it will always delete a grant from the 'all' realm. Modules that use - * node_access() can use this method when doing mass updates due to - * widespread permission changes. + * node access can use this method when doing mass updates due to widespread + * permission changes. * * Note: Don't call this method directly from a contributed module. Call * node_access_write_grants() instead. diff --git a/core/modules/node/lib/Drupal/node/Plugin/views/argument_validator/Node.php b/core/modules/node/lib/Drupal/node/Plugin/views/argument_validator/Node.php index 028f49e..781f75e 100644 --- a/core/modules/node/lib/Drupal/node/Plugin/views/argument_validator/Node.php +++ b/core/modules/node/lib/Drupal/node/Plugin/views/argument_validator/Node.php @@ -93,7 +93,7 @@ public function validateArgument($argument) { } if (!empty($this->options['access'])) { - if (!node_access($this->options['access_op'], $node)) { + if (!$node->access($this->options['access_op'])) { return FALSE; } } @@ -125,7 +125,7 @@ public function validateArgument($argument) { } if (!empty($this->options['access'])) { - if (!node_access($this->options['access_op'], $node)) { + if (!$node->access($this->options['access_op'])) { return FALSE; } } diff --git a/core/modules/node/lib/Drupal/node/Plugin/views/field/Link.php b/core/modules/node/lib/Drupal/node/Plugin/views/field/Link.php index a4715a8..d537c50 100644 --- a/core/modules/node/lib/Drupal/node/Plugin/views/field/Link.php +++ b/core/modules/node/lib/Drupal/node/Plugin/views/field/Link.php @@ -56,7 +56,7 @@ public function render(ResultRow $values) { } protected function renderLink($node, ResultRow $values) { - if (node_access('view', $node)) { + if ($node->access('view')) { $this->options['alter']['make_link'] = TRUE; $this->options['alter']['path'] = 'node/' . $node->id(); $text = !empty($this->options['text']) ? $this->options['text'] : t('view'); diff --git a/core/modules/node/lib/Drupal/node/Plugin/views/field/LinkDelete.php b/core/modules/node/lib/Drupal/node/Plugin/views/field/LinkDelete.php index 4a60a4b..c92c97b 100644 --- a/core/modules/node/lib/Drupal/node/Plugin/views/field/LinkDelete.php +++ b/core/modules/node/lib/Drupal/node/Plugin/views/field/LinkDelete.php @@ -25,7 +25,7 @@ class LinkDelete extends Link { */ protected function renderLink($node, ResultRow $values) { // Ensure user has access to delete this node. - if (!node_access('delete', $node)) { + if (!$node->access('delete')) { return; } diff --git a/core/modules/node/lib/Drupal/node/Plugin/views/field/LinkEdit.php b/core/modules/node/lib/Drupal/node/Plugin/views/field/LinkEdit.php index fdf933e..fca67ab 100644 --- a/core/modules/node/lib/Drupal/node/Plugin/views/field/LinkEdit.php +++ b/core/modules/node/lib/Drupal/node/Plugin/views/field/LinkEdit.php @@ -25,7 +25,7 @@ class LinkEdit extends Link { */ protected function renderLink($node, ResultRow $values) { // Ensure user has access to edit this node. - if (!node_access('update', $node)) { + if (!$node->access('update')) { return; } diff --git a/core/modules/node/lib/Drupal/node/Plugin/views/field/RevisionLink.php b/core/modules/node/lib/Drupal/node/Plugin/views/field/RevisionLink.php index 8b3d3d7..c41330a 100644 --- a/core/modules/node/lib/Drupal/node/Plugin/views/field/RevisionLink.php +++ b/core/modules/node/lib/Drupal/node/Plugin/views/field/RevisionLink.php @@ -72,7 +72,7 @@ function get_revision_entity($values, $op) { // Unpublished nodes ignore access control. $node->setPublished(TRUE); // Ensure user has access to perform the operation on this node. - if (!node_access($op, $node)) { + if (!$node->access($op)) { return array($node, NULL); } return array($node, $vid); diff --git a/core/modules/node/lib/Drupal/node/Tests/NodeAccessLanguageAwareCombinationTest.php b/core/modules/node/lib/Drupal/node/Tests/NodeAccessLanguageAwareCombinationTest.php index 0459555..b14281e 100644 --- a/core/modules/node/lib/Drupal/node/Tests/NodeAccessLanguageAwareCombinationTest.php +++ b/core/modules/node/lib/Drupal/node/Tests/NodeAccessLanguageAwareCombinationTest.php @@ -167,7 +167,7 @@ public function setUp() { } /** - * Tests node_access() and node access queries with multiple node languages. + * Tests node access and node access queries with multiple node languages. */ function testNodeAccessLanguageAwareCombination() { diff --git a/core/modules/node/lib/Drupal/node/Tests/NodeAccessLanguageAwareTest.php b/core/modules/node/lib/Drupal/node/Tests/NodeAccessLanguageAwareTest.php index 9344ec5..48824ab 100644 --- a/core/modules/node/lib/Drupal/node/Tests/NodeAccessLanguageAwareTest.php +++ b/core/modules/node/lib/Drupal/node/Tests/NodeAccessLanguageAwareTest.php @@ -123,7 +123,7 @@ public function setUp() { } /** - * Tests node_access() and node access queries with multiple node languages. + * Tests node access and node access queries with multiple node languages. */ function testNodeAccessLanguageAware() { // The node_access_test_language module only grants view access. diff --git a/core/modules/node/lib/Drupal/node/Tests/NodeAccessLanguageTest.php b/core/modules/node/lib/Drupal/node/Tests/NodeAccessLanguageTest.php index 353a687..9ea6731 100644 --- a/core/modules/node/lib/Drupal/node/Tests/NodeAccessLanguageTest.php +++ b/core/modules/node/lib/Drupal/node/Tests/NodeAccessLanguageTest.php @@ -10,7 +10,7 @@ use Drupal\Core\Language\Language; /** - * Verifies node_access() functionality for multiple languages. + * Verifies node access functionality for multiple languages. */ class NodeAccessLanguageTest extends NodeTestBase { @@ -54,7 +54,7 @@ function setUp() { } /** - * Tests node_access() with multiple node languages and no private nodes. + * Tests node access with multiple node languages and no private nodes. */ function testNodeAccess() { $web_user = $this->drupalCreateUser(array('access content')); @@ -96,7 +96,7 @@ function testNodeAccess() { $this->assertNodeAccess($expected_node_access_no_access, $node_public_no_language, $web_user, 'ca'); $this->assertNodeAccess($expected_node_access_no_access, $node_public_no_language, $web_user, 'hr'); - // Reset the node access cache and turn on our test node_access() code. + // Reset the node access cache and turn on our test node access code. drupal_static_reset('node_access'); variable_set('node_access_test_secret_catalan', 1); @@ -111,7 +111,7 @@ function testNodeAccess() { } /** - * Tests node_access() with multiple node languages and private nodes. + * Tests node access with multiple node languages and private nodes. */ function testNodeAccessPrivate() { $web_user = $this->drupalCreateUser(array('access content')); @@ -154,7 +154,7 @@ function testNodeAccessPrivate() { $this->assertNodeAccess($expected_node_access_no_access, $node_private_no_language, $web_user, 'ca'); $this->assertNodeAccess($expected_node_access_no_access, $node_private_no_language, $web_user, 'hr'); - // Reset the node access cache and turn on our test node_access() code. + // Reset the node access cache and turn on our test node access code. entity_access_controller('node')->resetCache(); \Drupal::state()->set('node_access_test_secret_catalan', 1); diff --git a/core/modules/node/lib/Drupal/node/Tests/NodeAccessTest.php b/core/modules/node/lib/Drupal/node/Tests/NodeAccessTest.php index 66448d0..440ad5b 100644 --- a/core/modules/node/lib/Drupal/node/Tests/NodeAccessTest.php +++ b/core/modules/node/lib/Drupal/node/Tests/NodeAccessTest.php @@ -36,13 +36,13 @@ function testNodeAccess() { // Ensures user without 'access content' permission can do nothing. $web_user1 = $this->drupalCreateUser(array('create page content', 'edit any page content', 'delete any page content')); $node1 = $this->drupalCreateNode(array('type' => 'page')); - $this->assertNodeAccess(array('create' => FALSE), 'page', $web_user1); + $this->assertNodeAccess(array('create' => FALSE), $node1, $web_user1); $this->assertNodeAccess(array('view' => FALSE, 'update' => FALSE, 'delete' => FALSE), $node1, $web_user1); // Ensures user with 'bypass node access' permission can do everything. $web_user2 = $this->drupalCreateUser(array('bypass node access')); $node2 = $this->drupalCreateNode(array('type' => 'page')); - $this->assertNodeAccess(array('create' => TRUE), 'page', $web_user2); + $this->assertNodeAccess(array('create' => TRUE), $node2, $web_user2); $this->assertNodeAccess(array('view' => TRUE, 'update' => TRUE, 'delete' => TRUE), $node2, $web_user2); // User cannot 'view own unpublished content'. @@ -51,7 +51,7 @@ function testNodeAccess() { $this->assertNodeAccess(array('view' => FALSE), $node3, $web_user3); // User cannot create content without permission. - $this->assertNodeAccess(array('create' => FALSE), 'page', $web_user3); + $this->assertNodeAccess(array('create' => FALSE), $node3, $web_user3); // User can 'view own unpublished content', but another user cannot. $web_user4 = $this->drupalCreateUser(array('access content', 'view own unpublished content')); diff --git a/core/modules/node/lib/Drupal/node/Tests/NodeTestBase.php b/core/modules/node/lib/Drupal/node/Tests/NodeTestBase.php index 1043fb6..0691f77 100644 --- a/core/modules/node/lib/Drupal/node/Tests/NodeTestBase.php +++ b/core/modules/node/lib/Drupal/node/Tests/NodeTestBase.php @@ -33,7 +33,7 @@ function setUp() { } /** - * Asserts that node_access() correctly grants or denies access. + * Asserts that node access correctly grants or denies access. * * @param array $ops * An associative array of the expected node access grants for the node @@ -51,14 +51,14 @@ function setUp() { function assertNodeAccess(array $ops, $node, AccountInterface $account, $langcode = NULL) { foreach ($ops as $op => $result) { $msg = format_string( - 'node_access() returns @result with operation %op, language code %langcode.', + '$node->access() returns @result with operation %op, language code %langcode.', array( '@result' => $result ? 'true' : 'false', '%op' => $op, '%langcode' => !empty($langcode) ? $langcode : 'empty' ) ); - $this->assertEqual($result, node_access($op, $node, $account, $langcode), $msg); + $this->assertEqual($result, $node->access($op, $account, $langcode), $msg); } } diff --git a/core/modules/node/node.admin.inc b/core/modules/node/node.admin.inc index 03387f8..eebc761 100644 --- a/core/modules/node/node.admin.inc +++ b/core/modules/node/node.admin.inc @@ -269,14 +269,14 @@ function node_admin_nodes() { // Build a list of all the accessible operations for the current node. $operations = array(); - if (node_access('update', $node)) { + if ($node->access('update')) { $operations['edit'] = array( 'title' => t('Edit'), 'href' => 'node/' . $node->id() . '/edit', 'query' => $destination, ); } - if (node_access('delete', $node)) { + if ($node->access('delete')) { $operations['delete'] = array( 'title' => t('Delete'), 'href' => 'node/' . $node->id() . '/delete', diff --git a/core/modules/node/node.module b/core/modules/node/node.module index 376efa4..4805d9a 100644 --- a/core/modules/node/node.module +++ b/core/modules/node/node.module @@ -1189,13 +1189,13 @@ function theme_node_recent_block($variables) { 'data' => drupal_render($node_recent_content), 'class' => 'title-author', ); - if (node_access('update', $node)) { + if ($node->access('update')) { $row[] = array( 'data' => l(t('edit'), 'node/' . $node->id() . '/edit', $l_options), 'class' => 'edit', ); } - if (node_access('delete', $node)) { + if ($node->access('delete')) { $row[] = array( 'data' => l(t('delete'), 'node/' . $node->id() . '/delete', $l_options), 'class' => 'delete', @@ -1584,55 +1584,6 @@ function node_form_system_themes_admin_form_submit($form, &$form_state) { */ /** - * Access callback: Checks a user's permission for performing a node operation. - * - * @param $op - * The operation to be performed on the node. Possible values are: - * - "view" - * - "update" - * - "delete" - * - "create" - * @param Drupal\Core\Entity\EntityInterface|string|stdClass $node - * The node entity on which the operation is to be performed, or the node type - * object, or node type string (e.g., 'forum') for the 'create' operation. - * @param $account - * (optional) A user object representing the user for whom the operation is to - * be performed. Determines access for a user other than the current user. - * Defaults to NULL. - * @param $langcode - * (optional) Language code for the variant of the node. Different language - * variants might have different permissions associated. If NULL, the - * original langcode of the node is used. Defaults to NULL. - * - * @return - * TRUE if the operation may be performed, FALSE otherwise. - * - * @see node_menu() - */ -function node_access($op, $node, $account = NULL, $langcode = NULL) { - $access_controller = \Drupal::entityManager()->getAccessController('node'); - - if ($op == 'create') { - if (!$node instanceof EntityInterface) { - $bundle = $node; - } - elseif ($node instanceof NodeTypeInterface) { - $bundle = $node->id(); - } - else { - $bundle = $node->bundle(); - } - return $access_controller->createAccess($bundle, $account, array('langcode' => $langcode)); - } - - // If no language code was provided, default to the node's langcode. - if (empty($langcode)) { - $langcode = $node->prepareLangcode(); - } - return $access_controller->access($node, $op, $langcode, $account); -} - -/** * Implements hook_node_access(). */ function node_node_access($node, $op, $account) { @@ -2121,7 +2072,7 @@ function node_modules_uninstalled($modules) { */ function node_file_download_access($field, EntityInterface $entity, File $file) { if ($entity->entityType() == 'node') { - return node_access('view', $entity); + return $entity->access('view'); } } diff --git a/core/modules/node/node.pages.inc b/core/modules/node/node.pages.inc index 8518383..b14ad4e 100644 --- a/core/modules/node/node.pages.inc +++ b/core/modules/node/node.pages.inc @@ -30,8 +30,9 @@ function node_add_page() { $content = array(); // Only use node types the user has access to. + $access_controller = Drupal::entityManager()->getAccessController('node'); foreach (node_type_get_types() as $type) { - if (node_access('create', $type->type)) { + if ($access_controller->createAccess($type->type)) { $content[$type->type] = $type; } } @@ -112,7 +113,7 @@ function node_add($node_type) { * @see node_form_build_preview() */ function node_preview(NodeInterface $node) { - if (node_access('create', $node) || node_access('update', $node)) { + if ($node->access('create') || $node->access('update')) { $node->changed = REQUEST_TIME; @@ -193,11 +194,11 @@ function node_revision_overview($node) { $type = $node->getType(); $revert_permission = FALSE; - if ((user_access("revert $type revisions") || user_access('revert all revisions') || user_access('administer nodes')) && node_access('update', $node)) { + if ((user_access("revert $type revisions") || user_access('revert all revisions') || user_access('administer nodes')) && $node->access('update')) { $revert_permission = TRUE; } $delete_permission = FALSE; - if ((user_access("delete $type revisions") || user_access('delete all revisions') || user_access('administer nodes')) && node_access('delete', $node)) { + if ((user_access("delete $type revisions") || user_access('delete all revisions') || user_access('administer nodes')) && $node->access('delete')) { $delete_permission = TRUE; } foreach ($revisions as $revision) { diff --git a/core/modules/translation/translation.module b/core/modules/translation/translation.module index bd1bf31..00d2075 100644 --- a/core/modules/translation/translation.module +++ b/core/modules/translation/translation.module @@ -84,7 +84,7 @@ function translation_menu() { * @see translation_menu() */ function _translation_tab_access(NodeInterface $node) { - if ($node->language()->id != Language::LANGCODE_NOT_SPECIFIED && translation_supported_type($node->getType()) && node_access('view', $node)) { + if ($node->language()->id != Language::LANGCODE_NOT_SPECIFIED && translation_supported_type($node->getType()) && $node->access('view')) { return translation_user_can_translate_node($node); } return FALSE; @@ -150,7 +150,7 @@ function translation_user_can_translate_node($node, $account = NULL) { if (empty($account)) { $account = \Drupal::currentUser(); } - return node_access('view', $node, $account) && (user_access('translate all content', $account) || ($node->getAuthorId() == $account->id() && user_access('translate own content', $account))); + return $node->access('view', $account) && (user_access('translate all content', $account) || ($node->getAuthorId() == $account->id() && user_access('translate own content', $account))); } /** diff --git a/core/modules/translation/translation.pages.inc b/core/modules/translation/translation.pages.inc index a1f6360..d34b4a5 100644 --- a/core/modules/translation/translation.pages.inc +++ b/core/modules/translation/translation.pages.inc @@ -49,7 +49,7 @@ function translation_node_overview(EntityInterface $node) { $path = 'node/' . $translation_node->id(); $links = language_negotiation_get_switch_links($type, $path); $title = empty($links->links[$langcode]['href']) ? l($translation_node->label(), $path) : l($translation_node->label(), $links->links[$langcode]['href'], $links->links[$langcode]); - if (node_access('update', $translation_node)) { + if ($translation_node->access('update')) { $path = 'node/' . $translation_node->id() . '/edit'; $links = language_negotiation_get_switch_links($type, $path); if (!empty($links->links[$langcode]['href'])) { @@ -67,7 +67,7 @@ function translation_node_overview(EntityInterface $node) { else { // No such translation in the set yet: help user to create it. $title = t('n/a'); - if (node_access('create', $node)) { + if ($node->access('create')) { $path = 'node/add/' . $node->getType(); $links = language_negotiation_get_switch_links($type, $path); $query = array('query' => array('translation' => $node->id(), 'target' => $langcode));