Version 1

[yaffs-website] / web / core / modules / system / src / Access / DbUpdateAccessCheck.php

diff --git a/web/core/modules/system/src/Access/DbUpdateAccessCheck.php b/web/core/modules/system/src/Access/DbUpdateAccessCheck.php
new file mode 100644 (file)
index 0000000..2bcc5fb
--- /dev/null
+++ b/web/core/modules/system/src/Access/DbUpdateAccessCheck.php
@@ -0,0 +1,38 @@
+<?php
+
+namespace Drupal\system\Access;
+
+use Drupal\Core\Routing\Access\AccessInterface;
+use Drupal\Core\Access\AccessResult;
+use Drupal\Core\Session\AccountInterface;
+use Drupal\Core\Site\Settings;
+
+/**
+ * Access check for database update routes.
+ */
+class DbUpdateAccessCheck implements AccessInterface {
+
+  /**
+   * Checks access for update routes.
+   *
+   * @param \Drupal\Core\Session\AccountInterface $account
+   *   The currently logged in account.
+   *
+   * @return string
+   *   A \Drupal\Core\Access\AccessInterface constant value.
+   */
+  public function access(AccountInterface $account) {
+    // Allow the global variable in settings.php to override the access check.
+    if (Settings::get('update_free_access')) {
+      return AccessResult::allowed()->setCacheMaxAge(0);
+    }
+
+    if ($account->hasPermission('administer software updates')) {
+      return AccessResult::allowed()->cachePerPermissions();
+    }
+    else {
+      return AccessResult::forbidden()->cachePerPermissions();
+    }
+  }
+
+}