Inicio Explorar Ayuda
Iniciar sesión
bachir
/
materio-base-d7
1
0
Fork 0
Archivos Incidencias 0 Pull Requests 0 Wiki
Árbol: 6022c4547f
Ramas Etiquetas
materio-base-d7
/
plugins
/
selection
/
EntityReference_SelectionHandler_Generic.class.php

EntityReference_SelectionHandler_Generic.class.php 20 KB
Histórico Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535 
  1. <?php
    2. 

  2. 

  3. /**
    4. 

  4.  * A generic Entity handler.
    5. 

  5.  *
    6. 

  6.  * The generic base implementation has a variety of overrides to workaround
    7. 

  7.  * core's largely deficient entity handling.
    8. 

  8.  */
    9. 

  9. class EntityReference_SelectionHandler_Generic implements EntityReference_SelectionHandler {
    10. 

  10. 

  11.   /**
    12. 

  12.    * Implements EntityReferenceHandler::getInstance().
    13. 

  13.    */
    14. 

  14.   public static function getInstance($field, $instance = NULL, $entity_type = NULL, $entity = NULL) {
    15. 

  15.     $target_entity_type = $field['settings']['target_type'];
    16. 

  16. 

  17.     // Check if the entity type does exist and has a base table.
    18. 

  18.     $entity_info = entity_get_info($target_entity_type);
    19. 

  19.     if (empty($entity_info['base table'])) {
    20. 

  20.       return EntityReference_SelectionHandler_Broken::getInstance($field, $instance);
    21. 

  21.     }
    22. 

  22. 

  23.     if (class_exists($class_name = 'EntityReference_SelectionHandler_Generic_' . $target_entity_type)) {
    24. 

  24.       return new $class_name($field, $instance, $entity_type, $entity);
    25. 

  25.     }
    26. 

  26.     else {
    27. 

  27.       return new EntityReference_SelectionHandler_Generic($field, $instance, $entity_type, $entity);
    28. 

  28.     }
    29. 

  29.   }
    30. 

  30. 

  31.   protected function __construct($field, $instance = NULL, $entity_type = NULL, $entity = NULL) {
    32. 

  32.     $this->field = $field;
    33. 

  33.     $this->instance = $instance;
    34. 

  34.     $this->entity_type = $entity_type;
    35. 

  35.     $this->entity = $entity;
    36. 

  36.   }
    37. 

  37. 

  38.   /**
    39. 

  39.    * Implements EntityReferenceHandler::settingsForm().
    40. 

  40.    */
    41. 

  41.   public static function settingsForm($field, $instance) {
    42. 

  42.     $entity_info = entity_get_info($field['settings']['target_type']);
    43. 

  43. 

  44.     // Merge-in default values.
    45. 

  45.     $field['settings']['handler_settings'] += array(
    46. 

  46.       'target_bundles' => array(),
    47. 

  47.       'sort' => array(
    48. 

  48.         'type' => 'none',
    49. 

  49.       )
    50. 

  50.     );
    51. 

  51. 

  52.     if (!empty($entity_info['entity keys']['bundle'])) {
    53. 

  53.       $bundles = array();
    54. 

  54.       foreach ($entity_info['bundles'] as $bundle_name => $bundle_info) {
    55. 

  55.         $bundles[$bundle_name] = $bundle_info['label'];
    56. 

  56.       }
    57. 

  57. 

  58.       $form['target_bundles'] = array(
    59. 

  59.         '#type' => 'checkboxes',
    60. 

  60.         '#title' => t('Target bundles'),
    61. 

  61.         '#options' => $bundles,
    62. 

  62.         '#default_value' => $field['settings']['handler_settings']['target_bundles'],
    63. 

  63.         '#size' => 6,
    64. 

  64.         '#multiple' => TRUE,
    65. 

  65.         '#description' => t('The bundles of the entity type that can be referenced. Optional, leave empty for all bundles.'),
    66. 

  66.         '#element_validate' => array('_entityreference_element_validate_filter'),
    67. 

  67.       );
    68. 

  68.     }
    69. 

  69.     else {
    70. 

  70.       $form['target_bundles'] = array(
    71. 

  71.         '#type' => 'value',
    72. 

  72.         '#value' => array(),
    73. 

  73.       );
    74. 

  74.     }
    75. 

  75. 

  76.     $form['sort']['type'] = array(
    77. 

  77.       '#type' => 'select',
    78. 

  78.       '#title' => t('Sort by'),
    79. 

  79.       '#options' => array(
    80. 

  80.         'none' => t("Don't sort"),
    81. 

  81.         'property' => t('A property of the base table of the entity'),
    82. 

  82.         'field' => t('A field attached to this entity'),
    83. 

  83.       ),
    84. 

  84.       '#ajax' => TRUE,
    85. 

  85.       '#limit_validation_errors' => array(),
    86. 

  86.       '#default_value' => $field['settings']['handler_settings']['sort']['type'],
    87. 

  87.     );
    88. 

  88. 

  89.     $form['sort']['settings'] = array(
    90. 

  90.       '#type' => 'container',
    91. 

  91.       '#attributes' => array('class' => array('entityreference-settings')),
    92. 

  92.       '#process' => array('_entityreference_form_process_merge_parent'),
    93. 

  93.     );
    94. 

  94. 

  95.     if ($field['settings']['handler_settings']['sort']['type'] == 'property') {
    96. 

  96.       // Merge-in default values.
    97. 

  97.       $field['settings']['handler_settings']['sort'] += array(
    98. 

  98.         'property' => NULL,
    99. 

  99.       );
    100. 

  100. 

  101.       $form['sort']['settings']['property'] = array(
    102. 

  102.         '#type' => 'select',
    103. 

  103.         '#title' => t('Sort property'),
    104. 

  104.         '#required' => TRUE,
    105. 

  105.         '#options' => drupal_map_assoc($entity_info['schema_fields_sql']['base table']),
    106. 

  106.         '#default_value' => $field['settings']['handler_settings']['sort']['property'],
    107. 

  107.       );
    108. 

  108.     }
    109. 

  109.     elseif ($field['settings']['handler_settings']['sort']['type'] == 'field') {
    110. 

  110.       // Merge-in default values.
    111. 

  111.       $field['settings']['handler_settings']['sort'] += array(
    112. 

  112.         'field' => NULL,
    113. 

  113.       );
    114. 

  114. 

  115.       $fields = array();
    116. 

  116.       foreach (field_info_instances($field['settings']['target_type']) as $bundle_name => $bundle_instances) {
    117. 

  117.         foreach ($bundle_instances as $instance_name => $instance_info) {
    118. 

  118.           $field_info = field_info_field($instance_name);
    119. 

  119.           foreach ($field_info['columns'] as $column_name => $column_info) {
    120. 

  120.             $fields[$instance_name . ':' . $column_name] = t('@label (column @column)', array('@label' => $instance_info['label'], '@column' => $column_name));
    121. 

  121.           }
    122. 

  122.         }
    123. 

  123.       }
    124. 

  124. 

  125.       $form['sort']['settings']['field'] = array(
    126. 

  126.         '#type' => 'select',
    127. 

  127.         '#title' => t('Sort field'),
    128. 

  128.         '#required' => TRUE,
    129. 

  129.         '#options' => $fields,
    130. 

  130.         '#default_value' => $field['settings']['handler_settings']['sort']['field'],
    131. 

  131.       );
    132. 

  132.     }
    133. 

  133. 

  134.     if ($field['settings']['handler_settings']['sort']['type'] != 'none') {
    135. 

  135.       // Merge-in default values.
    136. 

  136.       $field['settings']['handler_settings']['sort'] += array(
    137. 

  137.         'direction' => 'ASC',
    138. 

  138.       );
    139. 

  139. 

  140.       $form['sort']['settings']['direction'] = array(
    141. 

  141.         '#type' => 'select',
    142. 

  142.         '#title' => t('Sort direction'),
    143. 

  143.         '#required' => TRUE,
    144. 

  144.         '#options' => array(
    145. 

  145.           'ASC' => t('Ascending'),
    146. 

  146.           'DESC' => t('Descending'),
    147. 

  147.         ),
    148. 

  148.         '#default_value' => $field['settings']['handler_settings']['sort']['direction'],
    149. 

  149.       );
    150. 

  150.     }
    151. 

  151. 

  152.     return $form;
    153. 

  153.   }
    154. 

  154. 

  155.   /**
    156. 

  156.    * Implements EntityReferenceHandler::getReferencableEntities().
    157. 

  157.    */
    158. 

  158.   public function getReferencableEntities($match = NULL, $match_operator = 'CONTAINS', $limit = 0) {
    159. 

  159.     $options = array();
    160. 

  160.     $entity_type = $this->field['settings']['target_type'];
    161. 

  161. 

  162.     $query = $this->buildEntityFieldQuery($match, $match_operator);
    163. 

  163.     if ($limit > 0) {
    164. 

  164.       $query->range(0, $limit);
    165. 

  165.     }
    166. 

  166. 

  167.     $results = $query->execute();
    168. 

  168. 

  169.     if (!empty($results[$entity_type])) {
    170. 

  170.       $entities = entity_load($entity_type, array_keys($results[$entity_type]));
    171. 

  171.       foreach ($entities as $entity_id => $entity) {
    172. 

  172.         $options[$entity_id] = check_plain($this->getLabel($entity));
    173. 

  173.       }
    174. 

  174.     }
    175. 

  175. 

  176.     return $options;
    177. 

  177.   }
    178. 

  178. 

  179.   /**
    180. 

  180.    * Implements EntityReferenceHandler::countReferencableEntities().
    181. 

  181.    */
    182. 

  182.   public function countReferencableEntities($match = NULL, $match_operator = 'CONTAINS') {
    183. 

  183.     $query = $this->buildEntityFieldQuery($match, $match_operator);
    184. 

  184.     return $query
    185. 

  185.       ->count()
    186. 

  186.       ->execute();
    187. 

  187.   }
    188. 

  188. 

  189.   /**
    190. 

  190.    * Implements EntityReferenceHandler::validateReferencableEntities().
    191. 

  191.    */
    192. 

  192.   public function validateReferencableEntities(array $ids) {
    193. 

  193.     if ($ids) {
    194. 

  194.       $entity_type = $this->field['settings']['target_type'];
    195. 

  195.       $query = $this->buildEntityFieldQuery();
    196. 

  196.       $query->entityCondition('entity_id', $ids, 'IN');
    197. 

  197.       $result = $query->execute();
    198. 

  198.       if (!empty($result[$entity_type])) {
    199. 

  199.         return array_keys($result[$entity_type]);
    200. 

  200.       }
    201. 

  201.     }
    202. 

  202. 

  203.     return array();
    204. 

  204.   }
    205. 

  205. 

  206.   /**
    207. 

  207.    * Implements EntityReferenceHandler::validateAutocompleteInput().
    208. 

  208.    */
    209. 

  209.   public function validateAutocompleteInput($input, &$element, &$form_state, $form) {
    210. 

  210.       $entities = $this->getReferencableEntities($input, '=', 6);
    211. 

  211.       if (empty($entities)) {
    212. 

  212.         // Error if there are no entities available for a required field.
    213. 

  213.         form_error($element, t('There are no entities matching "%value"', array('%value' => $input)));
    214. 

  214.       }
    215. 

  215.       elseif (count($entities) > 5) {
    216. 

  216.         // Error if there are more than 5 matching entities.
    217. 

  217.         form_error($element, t('Many entities are called %value. Specify the one you want by appending the id in parentheses, like "@value (@id)"', array(
    218. 

  218.           '%value' => $input,
    219. 

  219.           '@value' => $input,
    220. 

  220.           '@id' => key($entities),
    221. 

  221.         )));
    222. 

  222.       }
    223. 

  223.       elseif (count($entities) > 1) {
    224. 

  224.         // More helpful error if there are only a few matching entities.
    225. 

  225.         $multiples = array();
    226. 

  226.         foreach ($entities as $id => $name) {
    227. 

  227.           $multiples[] = $name . ' (' . $id . ')';
    228. 

  228.         }
    229. 

  229.         form_error($element, t('Multiple entities match this reference; "%multiple"', array('%multiple' => implode('", "', $multiples))));
    230. 

  230.       }
    231. 

  231.       else {
    232. 

  232.         // Take the one and only matching entity.
    233. 

  233.         return key($entities);
    234. 

  234.       }
    235. 

  235.   }
    236. 

  236. 

  237.   /**
    238. 

  238.    * Build an EntityFieldQuery to get referencable entities.
    239. 

  239.    */
    240. 

  240.   protected function buildEntityFieldQuery($match = NULL, $match_operator = 'CONTAINS') {
    241. 

  241.     $query = new EntityFieldQuery();
    242. 

  242.     $query->entityCondition('entity_type', $this->field['settings']['target_type']);
    243. 

  243.     if (!empty($this->field['settings']['handler_settings']['target_bundles'])) {
    244. 

  244.       $query->entityCondition('bundle', $this->field['settings']['handler_settings']['target_bundles'], 'IN');
    245. 

  245.     }
    246. 

  246.     if (isset($match)) {
    247. 

  247.       $entity_info = entity_get_info($this->field['settings']['target_type']);
    248. 

  248.       if (isset($entity_info['entity keys']['label'])) {
    249. 

  249.         $query->propertyCondition($entity_info['entity keys']['label'], $match, $match_operator);
    250. 

  250.       }
    251. 

  251.     }
    252. 

  252. 

  253.     // Add a generic entity access tag to the query.
    254. 

  254.     $query->addTag($this->field['settings']['target_type'] . '_access');
    255. 

  255.     $query->addTag('entityreference');
    256. 

  256.     $query->addMetaData('field', $this->field);
    257. 

  257.     $query->addMetaData('entityreference_selection_handler', $this);
    258. 

  258. 

  259.     // Add the sort option.
    260. 

  260.     if (!empty($this->field['settings']['handler_settings']['sort'])) {
    261. 

  261.       $sort_settings = $this->field['settings']['handler_settings']['sort'];
    262. 

  262.       if ($sort_settings['type'] == 'property') {
    263. 

  263.         $query->propertyOrderBy($sort_settings['property'], $sort_settings['direction']);
    264. 

  264.       }
    265. 

  265.       elseif ($sort_settings['type'] == 'field') {
    266. 

  266.         list($field, $column) = explode(':', $sort_settings['field'], 2);
    267. 

  267.         $query->fieldOrderBy($field, $column, $sort_settings['direction']);
    268. 

  268.       }
    269. 

  269.     }
    270. 

  270. 

  271.     return $query;
    272. 

  272.   }
    273. 

  273. 

  274.   /**
    275. 

  275.    * Implements EntityReferenceHandler::entityFieldQueryAlter().
    276. 

  276.    */
    277. 

  277.   public function entityFieldQueryAlter(SelectQueryInterface $query) {
    278. 

  278. 

  279.   }
    280. 

  280. 

  281.   /**
    282. 

  282.    * Helper method: pass a query to the alteration system again.
    283. 

  283.    *
    284. 

  284.    * This allow Entity Reference to add a tag to an existing query, to ask
    285. 

  285.    * access control mechanisms to alter it again.
    286. 

  286.    */
    287. 

  287.   protected function reAlterQuery(SelectQueryInterface $query, $tag, $base_table) {
    288. 

  288.     // Save the old tags and metadata.
    289. 

  289.     // For some reason, those are public.
    290. 

  290.     $old_tags = $query->alterTags;
    291. 

  291.     $old_metadata = $query->alterMetaData;
    292. 

  292. 

  293.     $query->alterTags = array($tag => TRUE);
    294. 

  294.     $query->alterMetaData['base_table'] = $base_table;
    295. 

  295.     drupal_alter(array('query', 'query_' . $tag), $query);
    296. 

  296. 

  297.     // Restore the tags and metadata.
    298. 

  298.     $query->alterTags = $old_tags;
    299. 

  299.     $query->alterMetaData = $old_metadata;
    300. 

  300.   }
    301. 

  301. 

  302.   /**
    303. 

  303.    * Implements EntityReferenceHandler::getLabel().
    304. 

  304.    */
    305. 

  305.   public function getLabel($entity) {
    306. 

  306.     return entity_label($this->field['settings']['target_type'], $entity);
    307. 

  307.   }
    308. 

  308. }
    309. 

  309. 

  310. /**
    311. 

  311.  * Override for the Node type.
    312. 

  312.  *
    313. 

  313.  * This only exists to workaround core bugs.
    314. 

  314.  */
    315. 

  315. class EntityReference_SelectionHandler_Generic_node extends EntityReference_SelectionHandler_Generic {
    316. 

  316.   public function entityFieldQueryAlter(SelectQueryInterface $query) {
    317. 

  317.     // Adding the 'node_access' tag is sadly insufficient for nodes: core
    318. 

  318.     // requires us to also know about the concept of 'published' and
    319. 

  319.     // 'unpublished'. We need to do that as long as there are no access control
    320. 

  320.     // modules in use on the site. As long as one access control module is there,
    321. 

  321.     // it is supposed to handle this check.
    322. 

  322.     if (!user_access('bypass node access') && !count(module_implements('node_grants'))) {
    323. 

  323.       $tables = $query->getTables();
    324. 

  324.       $query->condition(key($tables) . '.status', NODE_PUBLISHED);
    325. 

  325.     }
    326. 

  326.   }
    327. 

  327. }
    328. 

  328. 

  329. /**
    330. 

  330.  * Override for the User type.
    331. 

  331.  *
    332. 

  332.  * This only exists to workaround core bugs.
    333. 

  333.  */
    334. 

  334. class EntityReference_SelectionHandler_Generic_user extends EntityReference_SelectionHandler_Generic {
    335. 

  335.   /**
    336. 

  336.    * Implements EntityReferenceHandler::settingsForm().
    337. 

  337.    */
    338. 

  338.   public static function settingsForm($field, $instance) {
    339. 

  339.     $settings = $field['settings']['handler_settings'];
    340. 

  340.     $form = parent::settingsForm($field, $instance);
    341. 

  341.     $form['referenceable_roles'] = array(
    342. 

  342.       '#type' => 'checkboxes',
    343. 

  343.       '#title' => t('User roles that can be referenced'),
    344. 

  344.       '#default_value' => isset($settings['referenceable_roles']) ? array_filter($settings['referenceable_roles']) : array(),
    345. 

  345.       '#options' => user_roles(TRUE),
    346. 

  346.     );
    347. 

  347.     $form['referenceable_status'] = array(
    348. 

  348.       '#type' => 'checkboxes',
    349. 

  349.       '#title' => t('User status that can be referenced'),
    350. 

  350.       '#default_value' => isset($settings['referenceable_status']) ? array_filter($settings['referenceable_status']) : array('active' => 'active'),
    351. 

  351.       '#options' => array('active' => t('Active'), 'blocked' => t('Blocked')),
    352. 

  352.     );
    353. 

  353.     return $form;
    354. 

  354.   }
    355. 

  355. 

  356.   public function buildEntityFieldQuery($match = NULL, $match_operator = 'CONTAINS') {
    357. 

  357.     $query = parent::buildEntityFieldQuery($match, $match_operator);
    358. 

  358. 

  359.     // The user entity doesn't have a label column.
    360. 

  360.     if (isset($match)) {
    361. 

  361.       $query->propertyCondition('name', $match, $match_operator);
    362. 

  362.     }
    363. 

  363. 

  364.     $field = $this->field;
    365. 

  365.     $settings = $field['settings']['handler_settings'];
    366. 

  366.     $referenceable_roles = isset($settings['referenceable_roles']) ? array_filter($settings['referenceable_roles']) : array();
    367. 

  367.     $referenceable_status = isset($settings['referenceable_status']) ? array_filter($settings['referenceable_status']) : array('active' => 'active');
    368. 

  368. 

  369.     // If this filter is not filled, use the users access permissions.
    370. 

  370.     if (empty($referenceable_status)) {
    371. 

  371.       // Adding the 'user_access' tag is sadly insufficient for users: core
    372. 

  372.       // requires us to also know about the concept of 'blocked' and 'active'.
    373. 

  373.       if (!user_access('administer users')) {
    374. 

  374.         $query->propertyCondition('status', 1);
    375. 

  375.       }
    376. 

  376.     }
    377. 

  377.     elseif (count($referenceable_status) == 1) {
    378. 

  378.       $values = array('active' => 1, 'blocked' => 0);
    379. 

  379.       $query->propertyCondition('status', $values[key($referenceable_status)]);
    380. 

  380.     }
    381. 

  381. 

  382.     return $query;
    383. 

  383.   }
    384. 

  384. 

  385.   public function entityFieldQueryAlter(SelectQueryInterface $query) {
    386. 

  386.     $conditions = &$query->conditions();
    387. 

  387.     if (user_access('administer users')) {
    388. 

  388.       // If the user is administrator, we need to make sure to
    389. 

  389.       // match the anonymous user, that doesn't actually have a name in the
    390. 

  390.       // database.
    391. 

  391.       foreach ($conditions as $key => $condition) {
    392. 

  392.         if ($key !== '#conjunction' && is_string($condition['field']) && $condition['field'] === 'users.name') {
    393. 

  393.           // Remove the condition.
    394. 

  394.           unset($conditions[$key]);
    395. 

  395. 

  396.           // Re-add the condition and a condition on uid = 0 so that we end up
    397. 

  397.           // with a query in the form:
    398. 

  398.           //    WHERE (name LIKE :name) OR (:anonymous_name LIKE :name AND uid = 0)
    399. 

  399.           $or = db_or();
    400. 

  400.           $or->condition($condition['field'], $condition['value'], $condition['operator']);
    401. 

  401.           // Sadly, the Database layer doesn't allow us to build a condition
    402. 

  402.           // in the form ':placeholder = :placeholder2', because the 'field'
    403. 

  403.           // part of a condition is always escaped.
    404. 

  404.           // As a (cheap) workaround, we separately build a condition with no
    405. 

  405.           // field, and concatenate the field and the condition separately.
    406. 

  406.           $value_part = db_and();
    407. 

  407.           $value_part->condition('anonymous_name', $condition['value'], $condition['operator']);
    408. 

  408.           $value_part->compile(Database::getConnection(), $query);
    409. 

  409.           $or->condition(db_and()
    410. 

  410.             ->where(str_replace('anonymous_name', ':anonymous_name', (string) $value_part), $value_part->arguments() + array(':anonymous_name' => format_username(user_load(0))))
    411. 

  411.             ->condition('users.uid', 0)
    412. 

  412.           );
    413. 

  413.           $query->condition($or);
    414. 

  414.         }
    415. 

  415.       }
    416. 

  416.     }
    417. 

  417. 

  418.     $field = $this->field;
    419. 

  419.     $settings = $field['settings']['handler_settings'];
    420. 

  420.     $referenceable_roles = isset($settings['referenceable_roles']) ? array_filter($settings['referenceable_roles']) : array();
    421. 

  421.     if (!$referenceable_roles || !empty($referenceable_roles[DRUPAL_AUTHENTICATED_RID])) {
    422. 

  422.       // Return early if "authenticated user" choosen.
    423. 

  423.       return;
    424. 

  424.     }
    425. 

  425. 

  426.     if (!isset($referenceable_roles[DRUPAL_AUTHENTICATED_RID])) {
    427. 

  427.       $query->join('users_roles', 'users_roles', 'users.uid = users_roles.uid');
    428. 

  428.       $query->condition('users_roles.rid', array_keys($referenceable_roles), 'IN');
    429. 

  429.     }
    430. 

  430.   }
    431. 

  431. }
    432. 

  432. 

  433. /**
    434. 

  434.  * Override for the Comment type.
    435. 

  435.  *
    436. 

  436.  * This only exists to workaround core bugs.
    437. 

  437.  */
    438. 

  438. class EntityReference_SelectionHandler_Generic_comment extends EntityReference_SelectionHandler_Generic {
    439. 

  439.   public function entityFieldQueryAlter(SelectQueryInterface $query) {
    440. 

  440.     // Adding the 'comment_access' tag is sadly insufficient for comments: core
    441. 

  441.     // requires us to also know about the concept of 'published' and
    442. 

  442.     // 'unpublished'.
    443. 

  443.     if (!user_access('administer comments')) {
    444. 

  444.       $tables = $query->getTables();
    445. 

  445.       $query->condition(key($tables) . '.status', COMMENT_PUBLISHED);
    446. 

  446.     }
    447. 

  447. 

  448.     // The Comment module doesn't implement any proper comment access,
    449. 

  449.     // and as a consequence doesn't make sure that comments cannot be viewed
    450. 

  450.     // when the user doesn't have access to the node.
    451. 

  451.     $tables = $query->getTables();
    452. 

  452.     $base_table = key($tables);
    453. 

  453.     $node_alias = $query->innerJoin('node', 'n', '%alias.nid = ' . $base_table . '.nid');
    454. 

  454.     // Pass the query to the node access control.
    455. 

  455.     $this->reAlterQuery($query, 'node_access', $node_alias);
    456. 

  456. 

  457.     // Alas, the comment entity exposes a bundle, but doesn't have a bundle column
    458. 

  458.     // in the database. We have to alter the query ourself to go fetch the
    459. 

  459.     // bundle.
    460. 

  460.     $conditions = &$query->conditions();
    461. 

  461.     foreach ($conditions as $key => &$condition) {
    462. 

  462.       if ($key !== '#conjunction' && is_string($condition['field']) && $condition['field'] === 'node_type') {
    463. 

  463.         $condition['field'] = $node_alias . '.type';
    464. 

  464.         foreach ($condition['value'] as &$value) {
    465. 

  465.           if (substr($value, 0, 13) == 'comment_node_') {
    466. 

  466.             $value = substr($value, 13);
    467. 

  467.           }
    468. 

  468.         }
    469. 

  469.         break;
    470. 

  470.       }
    471. 

  471.     }
    472. 

  472. 

  473.     // Passing the query to node_query_node_access_alter() is sadly
    474. 

  474.     // insufficient for nodes.
    475. 

  475.     // @see EntityReferenceHandler_node::entityFieldQueryAlter()
    476. 

  476.     if (!user_access('bypass node access') && !count(module_implements('node_grants'))) {
    477. 

  477.       $query->condition($node_alias . '.status', 1);
    478. 

  478.     }
    479. 

  479.   }
    480. 

  480. }
    481. 

  481. 

  482. /**
    483. 

  483.  * Override for the File type.
    484. 

  484.  *
    485. 

  485.  * This only exists to workaround core bugs.
    486. 

  486.  */
    487. 

  487. class EntityReference_SelectionHandler_Generic_file extends EntityReference_SelectionHandler_Generic {
    488. 

  488.   public function entityFieldQueryAlter(SelectQueryInterface $query) {
    489. 

  489.     // Core forces us to know about 'permanent' vs. 'temporary' files.
    490. 

  490.     $tables = $query->getTables();
    491. 

  491.     $base_table = key($tables);
    492. 

  492.     $query->condition('status', FILE_STATUS_PERMANENT);
    493. 

  493. 

  494.     // Access control to files is a very difficult business. For now, we are not
    495. 

  495.     // going to give it a shot.
    496. 

  496.     // @todo: fix this when core access control is less insane.
    497. 

  497.     return $query;
    498. 

  498.   }
    499. 

  499. 

  500.   public function getLabel($entity) {
    501. 

  501.     // The file entity doesn't have a label. More over, the filename is
    502. 

  502.     // sometimes empty, so use the basename in that case.
    503. 

  503.     return $entity->filename !== '' ? $entity->filename : basename($entity->uri);
    504. 

  504.   }
    505. 

  505. }
    506. 

  506. 

  507. /**
    508. 

  508.  * Override for the Taxonomy term type.
    509. 

  509.  *
    510. 

  510.  * This only exists to workaround core bugs.
    511. 

  511.  */
    512. 

  512. class EntityReference_SelectionHandler_Generic_taxonomy_term extends EntityReference_SelectionHandler_Generic {
    513. 

  513.   public function entityFieldQueryAlter(SelectQueryInterface $query) {
    514. 

  514.     // The Taxonomy module doesn't implement any proper taxonomy term access,
    515. 

  515.     // and as a consequence doesn't make sure that taxonomy terms cannot be viewed
    516. 

  516.     // when the user doesn't have access to the vocabulary.
    517. 

  517.     $tables = $query->getTables();
    518. 

  518.     $base_table = key($tables);
    519. 

  519.     $vocabulary_alias = $query->innerJoin('taxonomy_vocabulary', 'n', '%alias.vid = ' . $base_table . '.vid');
    520. 

  520.     $query->addMetadata('base_table', $vocabulary_alias);
    521. 

  521.     // Pass the query to the taxonomy access control.
    522. 

  522.     $this->reAlterQuery($query, 'taxonomy_vocabulary_access', $vocabulary_alias);
    523. 

  523. 

  524.     // Also, the taxonomy term entity exposes a bundle, but doesn't have a bundle
    525. 

  525.     // column in the database. We have to alter the query ourself to go fetch
    526. 

  526.     // the bundle.
    527. 

  527.     $conditions = &$query->conditions();
    528. 

  528.     foreach ($conditions as $key => &$condition) {
    529. 

  529.       if ($key !== '#conjunction' && is_string($condition['field']) && $condition['field'] === 'vocabulary_machine_name') {
    530. 

  530.         $condition['field'] = $vocabulary_alias . '.machine_name';
    531. 

  531.         break;
    532. 

  532.       }
    533. 

  533.     }
    534. 

  534.   }
    535. 

  535. }
    536.