blob: ac353632ab52b2b9071ad3b24e301d8b192f6c60 (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
|
<?php
declare(strict_types=1);
namespace Drupal\Core\DefaultContent;
use Drupal\Core\Access\AccessException;
use Drupal\Core\Entity\EntityTypeManagerInterface;
use Drupal\Core\Session\AccountInterface;
use Drupal\Core\Session\AccountSwitcherInterface;
/**
* @internal
* This API is experimental.
*/
final class AdminAccountSwitcher implements AccountSwitcherInterface {
public function __construct(
private readonly AccountSwitcherInterface $decorated,
private readonly EntityTypeManagerInterface $entityTypeManager,
private readonly bool $isSuperUserAccessEnabled,
) {}
/**
* Switches to an administrative account.
*
* This will switch to the first available account with a role that has the
* `is_admin` flag. If there are no such roles, or no such users, this will
* try to switch to user 1 if superuser access is enabled.
*
* @return \Drupal\Core\Session\AccountInterface
* The account that was switched to.
*
* @throws \Drupal\Core\Access\AccessException
* Thrown if there are no users with administrative roles.
*/
public function switchToAdministrator(): AccountInterface {
$admin_roles = $this->entityTypeManager->getStorage('user_role')
->getQuery()
->condition('is_admin', TRUE)
->execute();
$user_storage = $this->entityTypeManager->getStorage('user');
if ($admin_roles) {
$accounts = $user_storage->getQuery()
->accessCheck(FALSE)
->condition('roles', $admin_roles, 'IN')
->condition('status', 1)
->sort('uid')
->range(0, 1)
->execute();
}
else {
$accounts = [];
}
$account = $user_storage->load(reset($accounts) ?: 1);
assert($account instanceof AccountInterface);
if (array_intersect($account->getRoles(), $admin_roles) || ((int) $account->id() === 1 && $this->isSuperUserAccessEnabled)) {
$this->switchTo($account);
return $account;
}
throw new AccessException("There are no user accounts with administrative roles.");
}
/**
* {@inheritdoc}
*/
public function switchTo(AccountInterface $account): AccountSwitcherInterface {
$this->decorated->switchTo($account);
return $this;
}
/**
* {@inheritdoc}
*/
public function switchBack(): AccountSwitcherInterface {
$this->decorated->switchBack();
return $this;
}
}
|
