WP_REST_Menus_Controller::check_has_read_only_access( WP_REST_Request $request )

Checks whether the current user has read permission for the endpoint.

Description

This allows for any user that can edit_theme_options or edit any REST API available post type.

Parameters

$request: (Required) Full details about the request.

Return

(bool|WP_Error) Whether the current user has permission.

Source

File: wp-includes/rest-api/endpoints/class-wp-rest-menus-controller.php

	protected function check_has_read_only_access( $request ) {
		if ( current_user_can( 'edit_theme_options' ) ) {
			return true;
		}

		if ( current_user_can( 'edit_posts' ) ) {
			return true;
		}

		foreach ( get_post_types( array( 'show_in_rest' => true ), 'objects' ) as $post_type ) {
			if ( current_user_can( $post_type->cap->edit_posts ) ) {
				return true;
			}
		}

		return new WP_Error(
			'rest_cannot_view',
			__( 'Sorry, you are not allowed to view menus.' ),
			array( 'status' => rest_authorization_required_code() )
		);
	}

Expand Source Code View on GitHub

Uses

Uses
Uses	Description
wp-includes/capabilities.php: current_user_can()	Returns whether the current user has the specified capability.

Used By

Used By
Used By	Description
wp-includes/rest-api/endpoints/class-wp-rest-menus-controller.php: WP_REST_Menus_Controller::get_items_permissions_check()	Checks if a request has access to read menus.
wp-includes/rest-api/endpoints/class-wp-rest-menus-controller.php: WP_REST_Menus_Controller::get_item_permissions_check()	Checks if a request has access to read or edit the specified menu.

Changelog

Changelog
Version	Description
5.9.0	Introduced.