config_pages.type_add route should use _entity_create_access requirement [#3584287]

Problem/Motivation

The config_pages.type_add route requires a permission explicitly.
It is a better practice to use the _entity_create_access requirement, this way access can be altered with hook_entity_create_access.

Steps to reproduce

Add this hook:

/**
 * Implements hook_entity_create_access().
 */
function test_entity_create_access() {
  return AccessResult::forbidden();
}

You can still create config page types.

Proposed resolution

Replace the _permission requirement with _entity_create_access.

Remaining tasks

User interface changes

API changes

Data model changes

Issue fork config_pages-3584287

Show commands

Start within a Git clone of the project using the version control instructions.

Add & fetch this issue fork’s repository

Or, if you do not have SSH keys set up on git.drupalcode.org:

Add & fetch this issue fork’s repository

3584287-config_pages.type_add-route changes, plain diff MR !66
Check out this branch for the first time

Check out existing branch, if you already have it locally

About issue forks

Comments

Comment #1

11 April 2026 at 16:23

prudloff created an issue. See original summary.

Comment #2

aayushpathak commented 24 April 2026 at 06:00

working..

Comment #3

24 April 2026 at 08:38

aayushpathak opened merge request !66

Comment #4

aayushpathak commented 24 April 2026 at 08:38

Status:

Active

» Needs review

Comment #5

shumer commented 24 April 2026 at 09:14

We have failed access tests for this MR.

Comment #6

aayushpathak commented 24 April 2026 at 11:43

The failure in testAccessDenied seems to come from a change in access behavior after introducing _entity_create_access. The test still expects a 403 based on permission checks, while the route now returns 200. This looks like a mismatch between the updated access mechanism and existing test expectations

config_pages.type_add route should use _entity_create_access requirement