diff --git a/core/lib/Drupal/Core/Block/BlockBase.php b/core/lib/Drupal/Core/Block/BlockBase.php
index 7ec2e6cffe1663a83c0bb1706699fff1b6bee900..262fd0c55dbbb475e2afd3f5f6acaf5b6bd27ef4 100644
--- a/core/lib/Drupal/Core/Block/BlockBase.php
+++ b/core/lib/Drupal/Core/Block/BlockBase.php
@@ -121,34 +121,28 @@ public function calculateDependencies() {
* {@inheritdoc}
*/
public function access(AccountInterface $account, $return_as_object = FALSE) {
- // @todo Remove self::blockAccess() and force individual plugins to return
- // their own AccessResult logic. Until that is done in
- // https://www.drupal.org/node/2375689 the access will be set uncacheable.
- if ($this->blockAccess($account)) {
- $access = AccessResult::allowed();
- }
- else {
- $access = AccessResult::forbidden();
- }
-
- $access->setCacheMaxAge(0);
+ $access = $this->blockAccess($account);
return $return_as_object ? $access : $access->isAllowed();
}
/**
* Indicates whether the block should be shown.
*
+ * Blocks with specific access checking should override this method rather
+ * than access(), in order to avoid repeating the handling of the
+ * $return_as_object argument.
+ *
* @param \Drupal\Core\Session\AccountInterface $account
* The user session for which to check access.
*
- * @return bool
- * TRUE if the block should be shown, or FALSE otherwise.
+ * @return \Drupal\Core\Access\AccessResult
+ * The access result.
*
* @see self::access()
*/
protected function blockAccess(AccountInterface $account) {
// By default, the block is visible.
- return TRUE;
+ return AccessResult::allowed();
}
/**
diff --git a/core/modules/aggregator/src/Plugin/Block/AggregatorFeedBlock.php b/core/modules/aggregator/src/Plugin/Block/AggregatorFeedBlock.php
index f49abd5f465c4caec33fb6faeaf9a7795cede516..fcc25848a17bb5a95661deb972fede972e5a37f1 100644
--- a/core/modules/aggregator/src/Plugin/Block/AggregatorFeedBlock.php
+++ b/core/modules/aggregator/src/Plugin/Block/AggregatorFeedBlock.php
@@ -9,6 +9,7 @@
use Drupal\aggregator\FeedStorageInterface;
use Drupal\aggregator\ItemStorageInterface;
+use Drupal\Core\Access\AccessResult;
use Drupal\Core\Block\BlockBase;
use Drupal\Core\Cache\Cache;
use Drupal\Core\Entity\Query\QueryInterface;
@@ -104,7 +105,7 @@ public function defaultConfiguration() {
*/
protected function blockAccess(AccountInterface $account) {
// Only grant access to users with the 'access news feeds' permission.
- return $account->hasPermission('access news feeds');
+ return AccessResult::allowedIfHasPermission($account, 'access news feeds');
}
/**
diff --git a/core/modules/block/tests/modules/block_test/src/Plugin/Block/TestAccessBlock.php b/core/modules/block/tests/modules/block_test/src/Plugin/Block/TestAccessBlock.php
index 1aa7d6b0c37ba814bf8e414a3c19895edb438407..873a77b5e4519db6f07a85d61f7244b174951a65 100644
--- a/core/modules/block/tests/modules/block_test/src/Plugin/Block/TestAccessBlock.php
+++ b/core/modules/block/tests/modules/block_test/src/Plugin/Block/TestAccessBlock.php
@@ -7,6 +7,7 @@
namespace Drupal\block_test\Plugin\Block;
+use Drupal\Core\Access\AccessResult;
use Drupal\Core\Block\BlockBase;
use Drupal\Core\Cache\Cache;
use Drupal\Core\Plugin\ContainerFactoryPluginInterface;
@@ -62,7 +63,7 @@ public static function create(ContainerInterface $container, array $configuratio
* {@inheritdoc}
*/
protected function blockAccess(AccountInterface $account) {
- return $this->state->get('test_block_access', FALSE);
+ return $this->state->get('test_block_access', FALSE) ? AccessResult::allowed() : AccessResult::forbidden();
}
/**
diff --git a/core/modules/block/tests/modules/block_test/src/Plugin/Block/TestBlockInstantiation.php b/core/modules/block/tests/modules/block_test/src/Plugin/Block/TestBlockInstantiation.php
index e9b4144b1ed57dec2eb0c5613575e417695bc2a4..9ca1503accf86cf006836a708395feed1591adeb 100644
--- a/core/modules/block/tests/modules/block_test/src/Plugin/Block/TestBlockInstantiation.php
+++ b/core/modules/block/tests/modules/block_test/src/Plugin/Block/TestBlockInstantiation.php
@@ -7,6 +7,7 @@
namespace Drupal\block_test\Plugin\Block;
+use Drupal\Core\Access\AccessResult;
use Drupal\Core\Block\BlockBase;
use Drupal\Core\Form\FormStateInterface;
use Drupal\Core\Session\AccountInterface;
@@ -34,7 +35,7 @@ public function defaultConfiguration() {
* {@inheritdoc}
*/
protected function blockAccess(AccountInterface $account) {
- return $account->hasPermission('access content');
+ return AccessResult::allowedIfHasPermission($account, 'access content');
}
/**
diff --git a/core/modules/block_content/src/Plugin/Block/BlockContentBlock.php b/core/modules/block_content/src/Plugin/Block/BlockContentBlock.php
index 152572327aa9834e99b2359a773e819bc3724e59..b4596f19839408444dd432ebcfd0fdb3b69d6ac7 100644
--- a/core/modules/block_content/src/Plugin/Block/BlockContentBlock.php
+++ b/core/modules/block_content/src/Plugin/Block/BlockContentBlock.php
@@ -7,6 +7,7 @@
namespace Drupal\block_content\Plugin\Block;
+use Drupal\Core\Access\AccessResult;
use Drupal\Core\Block\BlockBase;
use Drupal\Core\Block\BlockManagerInterface;
use Drupal\Core\Entity\EntityManagerInterface;
@@ -50,6 +51,13 @@ class BlockContentBlock extends BlockBase implements ContainerFactoryPluginInter
*/
protected $account;
+ /**
+ * The block content entity.
+ *
+ * @var \Drupal\block_content\BlockContentInterface
+ */
+ protected $blockContent;
+
/**
* Constructs a new BlockContentBlock.
*
@@ -129,22 +137,46 @@ public function blockSubmit($form, FormStateInterface $form_state) {
$this->blockManager->clearCachedDefinitions();
}
+ /**
+ * {@inheritdoc}
+ */
+ protected function blockAccess(AccountInterface $account) {
+ if ($this->getEntity()) {
+ return $this->getEntity()->access('view', $account, TRUE);
+ }
+ return AccessResult::forbidden();
+ }
+
/**
* {@inheritdoc}
*/
public function build() {
- $uuid = $this->getDerivativeId();
- if ($block = $this->entityManager->loadEntityByUuid('block_content', $uuid)) {
+ if ($block = $this->getEntity()) {
return $this->entityManager->getViewBuilder($block->getEntityTypeId())->view($block, $this->configuration['view_mode']);
}
else {
return array(
'#markup' => $this->t('Block with uuid %uuid does not exist. <a href="!url">Add custom block</a>.', array(
- '%uuid' => $uuid,
+ '%uuid' => $this->getDerivativeId(),
'!url' => $this->urlGenerator->generate('block_content.add_page')
)),
'#access' => $this->account->hasPermission('administer blocks')
);
}
}
+
+ /**
+ * Loads the block content entity of the block.
+ *
+ * @return \Drupal\block_content\BlockContentInterface|null
+ * The block content entity.
+ */
+ protected function getEntity() {
+ $uuid = $this->getDerivativeId();
+ if (!isset($this->blockContent)) {
+ $this->blockContent = $this->entityManager->loadEntityByUuid('block_content', $uuid);
+ }
+ return $this->blockContent;
+ }
+
}
diff --git a/core/modules/forum/src/Plugin/Block/ForumBlockBase.php b/core/modules/forum/src/Plugin/Block/ForumBlockBase.php
index c48767cf78688cb19d059040d5dbe0c94f4e359a..5e8fbebc553b1c70143fea57697b913f6582de45 100644
--- a/core/modules/forum/src/Plugin/Block/ForumBlockBase.php
+++ b/core/modules/forum/src/Plugin/Block/ForumBlockBase.php
@@ -7,6 +7,7 @@
namespace Drupal\forum\Plugin\Block;
+use Drupal\Core\Access\AccessResult;
use Drupal\Core\Block\BlockBase;
use Drupal\Core\Form\FormStateInterface;
use Drupal\Core\Session\AccountInterface;
@@ -59,7 +60,7 @@ public function defaultConfiguration() {
* {@inheritdoc}
*/
protected function blockAccess(AccountInterface $account) {
- return $account->hasPermission('access content');
+ return AccessResult::allowedIfHasPermission($account, 'access content');
}
/**
diff --git a/core/modules/help/src/Plugin/Block/HelpBlock.php b/core/modules/help/src/Plugin/Block/HelpBlock.php
index 968fca60b797ac4bb464e9840b4a06ba6b5c218c..7b86f9fc400a8f1da2cd2bb8a31fe607eaadb071 100644
--- a/core/modules/help/src/Plugin/Block/HelpBlock.php
+++ b/core/modules/help/src/Plugin/Block/HelpBlock.php
@@ -7,6 +7,7 @@
namespace Drupal\help\Plugin\Block;
+use Drupal\Core\Access\AccessResult;
use Drupal\Core\Block\BlockBase;
use Drupal\Core\Extension\ModuleHandlerInterface;
use Drupal\Core\Plugin\ContainerFactoryPluginInterface;
@@ -96,7 +97,12 @@ public static function create(ContainerInterface $container, array $configuratio
*/
protected function blockAccess(AccountInterface $account) {
$this->help = $this->getActiveHelp($this->request);
- return (bool) $this->help;
+ if ($this->help) {
+ return AccessResult::allowed();
+ }
+ else {
+ return AccessResult::forbidden();
+ }
}
/**
diff --git a/core/modules/language/src/Plugin/Block/LanguageBlock.php b/core/modules/language/src/Plugin/Block/LanguageBlock.php
index 7aa9bb880803bb9b20bd3a4e7e17a3f090261cbf..3d31770b48f8bdec045553e803ffa660357b6d98 100644
--- a/core/modules/language/src/Plugin/Block/LanguageBlock.php
+++ b/core/modules/language/src/Plugin/Block/LanguageBlock.php
@@ -7,6 +7,7 @@
namespace Drupal\language\Plugin\Block;
+use Drupal\Core\Access\AccessResult;
use Drupal\Core\Block\BlockBase;
use Drupal\Core\Path\PathMatcherInterface;
use Drupal\Core\Session\AccountInterface;
@@ -80,7 +81,8 @@ public static function create(ContainerInterface $container, array $configuratio
* {@inheritdoc}
*/
protected function blockAccess(AccountInterface $account) {
- return $this->languageManager->isMultilingual();
+ $access = $this->languageManager->isMultilingual() ? AccessResult::allowed() : AccessResult::forbidden();
+ return $access->addCacheTags(['config:configurable_language_list']);
}
/**
diff --git a/core/modules/node/src/Plugin/Block/SyndicateBlock.php b/core/modules/node/src/Plugin/Block/SyndicateBlock.php
index f2a6a3e93f2b1f8295828412d987b1faa9379c82..9e5834b71de0197776812c00d9ddc4e17b718b9f 100644
--- a/core/modules/node/src/Plugin/Block/SyndicateBlock.php
+++ b/core/modules/node/src/Plugin/Block/SyndicateBlock.php
@@ -7,6 +7,7 @@
namespace Drupal\node\Plugin\Block;
+use Drupal\Core\Access\AccessResult;
use Drupal\Core\Block\BlockBase;
use Drupal\Core\Cache\Cache;
use Drupal\Core\Form\FormStateInterface;
@@ -36,7 +37,7 @@ public function defaultConfiguration() {
* {@inheritdoc}
*/
protected function blockAccess(AccountInterface $account) {
- return $account->hasPermission('access content');
+ return AccessResult::allowedIfHasPermission($account, 'access content');
}
/**
diff --git a/core/modules/search/src/Plugin/Block/SearchBlock.php b/core/modules/search/src/Plugin/Block/SearchBlock.php
index 48a2b54aaa03df52a5173b987724bff71a15f9cf..5bdfce34612e278e569ba6d3d3b9ee4a84cb9350 100644
--- a/core/modules/search/src/Plugin/Block/SearchBlock.php
+++ b/core/modules/search/src/Plugin/Block/SearchBlock.php
@@ -7,10 +7,10 @@
namespace Drupal\search\Plugin\Block;
+use Drupal\Core\Access\AccessResult;
use Drupal\Core\Session\AccountInterface;
use Drupal\Core\Block\BlockBase;
use Symfony\Component\DependencyInjection\ContainerInterface;
-use Symfony\Component\HttpFoundation\Request;
/**
* Provides a 'Search form' block.
@@ -27,7 +27,7 @@ class SearchBlock extends BlockBase {
* {@inheritdoc}
*/
protected function blockAccess(AccountInterface $account) {
- return $account->hasPermission('search content');
+ return AccessResult::allowedIfHasPermission($account, 'search content');
}
/**
diff --git a/core/modules/shortcut/src/Plugin/Block/ShortcutsBlock.php b/core/modules/shortcut/src/Plugin/Block/ShortcutsBlock.php
index 9396f8220bc367eb359297fd35ea06e2fc12d683..379d74d8553152f66df2d43796a1b8fcdb3f89a3 100644
--- a/core/modules/shortcut/src/Plugin/Block/ShortcutsBlock.php
+++ b/core/modules/shortcut/src/Plugin/Block/ShortcutsBlock.php
@@ -7,6 +7,7 @@
namespace Drupal\shortcut\Plugin\Block;
+use Drupal\Core\Access\AccessResult;
use Drupal\Core\Block\BlockBase;
use Drupal\Core\Session\AccountInterface;
@@ -34,7 +35,7 @@ public function build() {
* {@inheritdoc}
*/
protected function blockAccess(AccountInterface $account) {
- return $account->hasPermission('access shortcuts');
+ return AccessResult::allowedIfHasPermission($account, 'access shortcuts');
}
}
diff --git a/core/modules/statistics/src/Plugin/Block/StatisticsPopularBlock.php b/core/modules/statistics/src/Plugin/Block/StatisticsPopularBlock.php
index e8c2fbb6607b023f5f195f05f1317ce717a2153f..6dd6f7fccda989e0cecf8dacd67dcd47214197d3 100644
--- a/core/modules/statistics/src/Plugin/Block/StatisticsPopularBlock.php
+++ b/core/modules/statistics/src/Plugin/Block/StatisticsPopularBlock.php
@@ -7,6 +7,7 @@
namespace Drupal\statistics\Plugin\Block;
+use Drupal\Core\Access\AccessResult;
use Drupal\Core\Block\BlockBase;
use Drupal\Core\Form\FormStateInterface;
use Drupal\Core\Session\AccountInterface;
@@ -57,22 +58,23 @@ public function defaultConfiguration() {
* {@inheritdoc}
*/
protected function blockAccess(AccountInterface $account) {
+ $access = AccessResult::allowedIfHasPermission($account, 'access content');
if ($account->hasPermission('access content')) {
$daytop = $this->configuration['top_day_num'];
if (!$daytop || !($result = statistics_title_list('daycount', $daytop)) || !($this->day_list = node_title_list($result, $this->t("Today's:")))) {
- return FALSE;
+ return AccessResult::forbidden()->inheritCacheability($access);
}
$alltimetop = $this->configuration['top_all_num'];
if (!$alltimetop || !($result = statistics_title_list('totalcount', $alltimetop)) || !($this->all_time_list = node_title_list($result, $this->t('All time:')))) {
- return FALSE;
+ return AccessResult::forbidden()->inheritCacheability($access);
}
$lasttop = $this->configuration['top_last_num'];
if (!$lasttop || !($result = statistics_title_list('timestamp', $lasttop)) || !($this->last_list = node_title_list($result, $this->t('Last viewed:')))) {
- return FALSE;
+ return AccessResult::forbidden()->inheritCacheability($access);
}
- return TRUE;
+ return $access;
}
- return FALSE;
+ return AccessResult::forbidden()->inheritCacheability($access);
}
/**
diff --git a/core/modules/system/tests/modules/form_test/src/Plugin/Block/RedirectFormBlock.php b/core/modules/system/tests/modules/form_test/src/Plugin/Block/RedirectFormBlock.php
index f02b523f7afe40e61349a1268ac3f42d6ca140df..0b10289e4f8b84e9ec666bf905c9ae6b95873387 100644
--- a/core/modules/system/tests/modules/form_test/src/Plugin/Block/RedirectFormBlock.php
+++ b/core/modules/system/tests/modules/form_test/src/Plugin/Block/RedirectFormBlock.php
@@ -10,7 +10,6 @@
use Drupal\Core\Block\BlockBase;
use Drupal\Core\Form\FormBuilderInterface;
use Drupal\Core\Plugin\ContainerFactoryPluginInterface;
-use Drupal\Core\Session\AccountInterface;
use Symfony\Component\DependencyInjection\ContainerInterface;
/**
@@ -63,13 +62,6 @@ public static function create(ContainerInterface $container, array $configuratio
);
}
- /**
- * {@inheritdoc}
- */
- protected function blockAccess(AccountInterface $account) {
- return TRUE;
- }
-
/**
* {@inheritdoc}
*/
diff --git a/core/modules/user/src/Plugin/Block/UserLoginBlock.php b/core/modules/user/src/Plugin/Block/UserLoginBlock.php
index 3f28d3c331c0a476b185aa028dd27187615548ff..564870e418081eb82d02dbc4d6949e1146866232 100644
--- a/core/modules/user/src/Plugin/Block/UserLoginBlock.php
+++ b/core/modules/user/src/Plugin/Block/UserLoginBlock.php
@@ -7,6 +7,7 @@
namespace Drupal\user\Plugin\Block;
+use Drupal\Core\Access\AccessResult;
use Drupal\Core\Plugin\ContainerFactoryPluginInterface;
use Drupal\Core\Routing\RedirectDestinationTrait;
use Drupal\Core\Routing\RouteMatchInterface;
@@ -76,7 +77,11 @@ public static function create(ContainerInterface $container, array $configuratio
*/
protected function blockAccess(AccountInterface $account) {
$route_name = $this->routeMatch->getRouteName();
- return ($account->isAnonymous() && !in_array($route_name, array('user.register', 'user.login', 'user.logout')));
+ if ($account->isAnonymous() && !in_array($route_name, array('user.register', 'user.login', 'user.logout'))) {
+ return AccessResult::allowed()
+ ->addCacheContexts(['route', 'user.roles:anonymous']);
+ }
+ return AccessResult::forbidden();
}
/**
diff --git a/core/modules/views/src/Plugin/Block/ViewsBlockBase.php b/core/modules/views/src/Plugin/Block/ViewsBlockBase.php
index 953dfae3abcc7951952760b20c766b1306a49a20..b87711fc4939e83d83cfa69d478ead3bce13be05 100644
--- a/core/modules/views/src/Plugin/Block/ViewsBlockBase.php
+++ b/core/modules/views/src/Plugin/Block/ViewsBlockBase.php
@@ -7,6 +7,7 @@
namespace Drupal\views\Plugin\Block;
+use Drupal\Core\Access\AccessResult;
use Drupal\Core\Block\BlockBase;
use Drupal\Core\Form\FormStateInterface;
use Drupal\Core\Plugin\ContainerFactoryPluginInterface;
@@ -93,7 +94,13 @@ public static function create(ContainerInterface $container, array $configuratio
* {@inheritdoc}
*/
protected function blockAccess(AccountInterface $account) {
- return $this->view->access($this->displayID);
+ if ($this->view->access($this->displayID)) {
+ $access = AccessResult::allowed();
+ }
+ else {
+ $access = AccessResult::forbidden();
+ }
+ return $access;
}
/**