Version 1

[yaffs-website] / web / core / modules / migrate_drupal_ui / src / MigrateAccessCheck.php

diff --git a/web/core/modules/migrate_drupal_ui/src/MigrateAccessCheck.php b/web/core/modules/migrate_drupal_ui/src/MigrateAccessCheck.php
new file mode 100644 (file)
index 0000000..0d2aabe
--- /dev/null
+++ b/web/core/modules/migrate_drupal_ui/src/MigrateAccessCheck.php
@@ -0,0 +1,35 @@
+<?php
+
+namespace Drupal\migrate_drupal_ui;
+
+use Drupal\Core\Access\AccessResultAllowed;
+use Drupal\Core\Session\AccountInterface;
+
+/**
+ * Checks access for migrate_drupal_ui routes.
+ *
+ * The Migrate Drupal UI can only be used by user 1. This is because any other
+ * user might have different permissions on the source and target site.
+ *
+ * This class is designed to be used with '_custom_access' route requirement.
+ *
+ * @see \Drupal\Core\Access\CustomAccessCheck
+ */
+class MigrateAccessCheck {
+
+  /**
+   * Checks if the user is user 1 and grants access if so.
+   *
+   * @param \Drupal\Core\Session\AccountInterface $account
+   *   The current user account.
+   *
+   * @return \Drupal\Core\Access\AccessResult
+   *   The access result.
+   */
+  public function checkAccess(AccountInterface $account) {
+    // The access result is uncacheable because it is just limiting access to
+    // the migrate UI which is not worth caching.
+    return AccessResultAllowed::allowedIf((int) $account->id() === 1)->mergeCacheMaxAge(0);
+  }
+
+}