WP_REST_Comments_Controller::check_read_post_permission( WP_Post $post, WP_REST_Request $request )

Checks if the post can be read.

Description

Correctly handles posts with the inherit status.

Parameters

$post

(WP_Post) (Required) Post object.

$request

(WP_REST_Request) (Required) Request data to check.

Return

(bool) Whether post can be read.

Source

File: wp-includes/rest-api/endpoints/class-wp-rest-comments-controller.php 

	protected function check_read_post_permission( $post, $request ) {
		$posts_controller = new WP_REST_Posts_Controller( $post->post_type );
		$post_type = get_post_type_object( $post->post_type );

		$has_password_filter = false;

		// Only check password if a specific post was queried for or a single comment
		$requested_post = ! empty( $request['post'] ) && ( !is_array( $request['post'] ) || 1 === count( $request['post'] ) );
		$requested_comment = ! empty( $request['id'] );
		if ( ( $requested_post || $requested_comment ) && $posts_controller->can_access_password_content( $post, $request ) ) {
			add_filter( 'post_password_required', '__return_false' );

			$has_password_filter = true;
		}

		if ( post_password_required( $post ) ) {
			$result = current_user_can( $post_type->cap->edit_post, $post->ID );
		} else {
			$result = $posts_controller->check_read_permission( $post );
		}

		if ( $has_password_filter ) {
			remove_filter( 'post_password_required', '__return_false' );
		}

		return $result;
	}

Expand Source Code View on GitHub

Related

Uses

Uses
Uses Description
wp-includes/rest-api/endpoints/class-wp-rest-posts-controller.php: WP_REST_Posts_Controller::__construct()

Constructor.
wp-includes/capabilities.php: current_user_can()

Whether the current user has a specific capability.
wp-includes/plugin.php: add_filter()

Hook a function or method to a specific filter action.
wp-includes/plugin.php: remove_filter()

Removes a function from a specified filter hook.
wp-includes/post-template.php: post_password_required()

Whether post requires password and correct password has been provided.
wp-includes/post.php: get_post_type_object()

Retrieves a post type object by name.
Show 1 more use Hide more uses

Used By

Used By
Used By Description
wp-includes/rest-api/endpoints/class-wp-rest-comments-controller.php: WP_REST_Comments_Controller::get_items_permissions_check()

Checks if a given request has access to read comments.
wp-includes/rest-api/endpoints/class-wp-rest-comments-controller.php: WP_REST_Comments_Controller::get_item_permissions_check()

Checks if a given request has access to read the comment.
wp-includes/rest-api/endpoints/class-wp-rest-comments-controller.php: WP_REST_Comments_Controller::create_item_permissions_check()

Checks if a given request has access to create a comment.
wp-includes/rest-api/endpoints/class-wp-rest-comments-controller.php: WP_REST_Comments_Controller::check_read_permission()

Checks if the comment can be read.

Changelog

Changelog
Version Description
WP-4.7.0 Introduced.