WP_REST_Post_Statuses_Controller::get_items_permissions_check( WP_REST_Request $request )

Checks whether a given request has permission to read post statuses.

Parameters

$request

(WP_REST_Request) (Required) Full details about the request.

Return

(WP_Error|bool) True if the request has read access, WP_Error object otherwise.

Source

File: wp-includes/rest-api/endpoints/class-wp-rest-post-statuses-controller.php 

	public function get_items_permissions_check( $request ) {
		if ( 'edit' === $request['context'] ) {
			$types = get_post_types( array( 'show_in_rest' => true ), 'objects' );

			foreach ( $types as $type ) {
				if ( current_user_can( $type->cap->edit_posts ) ) {
					return true;
				}
			}
			return new WP_Error( 'rest_cannot_view', __( 'Sorry, you are not allowed to edit posts in this post type.' ), array( 'status' => rest_authorization_required_code() ) );
		}

		return true;
	}

Expand Source Code View on GitHub

Related

Uses

Uses
Uses Description
wp-includes/l10n.php: __()

Retrieve the translation of $text.
wp-includes/class-wp-error.php: WP_Error::__construct()

Initialize the error.
wp-includes/capabilities.php: current_user_can()

Whether the current user has a specific capability.
wp-includes/rest-api.php: rest_authorization_required_code()

Returns a contextual HTTP error code for authorization failure.
wp-includes/post.php: get_post_types()

Get a list of all registered post type objects.

Changelog

Changelog
Version Description
WP-4.7.0 Introduced.