Code Coverage for /Users/ericduran/Sites/drupal/drupal/core/modules/user/src/Plugin/EntityReferenceSelection/UserSelection.php

	Code Coverage
	Classes and Traits			Functions and Methods				Lines
Total	0.00% covered (danger)	0.00%	0 / 1	0.00% covered (danger)	0.00%	0 / 8	CRAP	0.00% covered (danger)	0.00%	0 / 110
UserSelection	0.00% covered (danger)	0.00%	0 / 1	0.00% covered (danger)	0.00%	0 / 8	506	0.00% covered (danger)	0.00%	0 / 110
__construct				0.00% covered (danger)	0.00%	0 / 1	2	0.00% covered (danger)	0.00%	0 / 4
create				0.00% covered (danger)	0.00%	0 / 1	2	0.00% covered (danger)	0.00%	0 / 10
buildConfigurationForm				0.00% covered (danger)	0.00%	0 / 1	6	0.00% covered (danger)	0.00%	0 / 43
buildEntityQuery				0.00% covered (danger)	0.00%	0 / 1	20	0.00% covered (danger)	0.00%	0 / 13
createNewEntity				0.00% covered (danger)	0.00%	0 / 1	6	0.00% covered (danger)	0.00%	0 / 6
validateReferenceableNewEntities				0.00% covered (danger)	0.00%	0 / 1	12	0.00% covered (danger)	0.00%	0 / 6
anonymous function				0.00% covered (danger)	0.00%	0 / 1	2	0.00% covered (danger)	0.00%	0 / 2
entityQueryAlter				0.00% covered (danger)	0.00%	0 / 1	72	0.00% covered (danger)	0.00%	0 / 23

1	<?php
2
3	/**
4	* @file
5	* Contains \Drupal\user\Plugin\EntityReferenceSelection\UserSelection.
6	*/
7
8	namespace Drupal\user\Plugin\EntityReferenceSelection;
9
10	use Drupal\Core\Database\Connection;
11	use Drupal\Core\Database\Query\SelectInterface;
12	use Drupal\Core\Entity\EntityManagerInterface;
13	use Drupal\Core\Entity\Plugin\EntityReferenceSelection\DefaultSelection;
14	use Drupal\Core\Extension\ModuleHandlerInterface;
15	use Drupal\Core\Form\FormStateInterface;
16	use Drupal\Core\Session\AccountInterface;
17	use Drupal\user\RoleInterface;
18	use Symfony\Component\DependencyInjection\ContainerInterface;
19
20	/**
21	* Provides specific access control for the user entity type.
22	*
23	* @EntityReferenceSelection(
24	* id = "default:user",
25	* label = @Translation("User selection"),
26	* entity_types = {"user"},
27	* group = "default",
28	* weight = 1
29	* )
30	*/
31	class UserSelection extends DefaultSelection {
32
33	/**
34	* The database connection.
35	*
36	* @var \Drupal\Core\Database\Connection
37	*/
38	protected $connection;
39
40	/**
41	* The user storage.
42	*
43	* @var \Drupal\user\UserStorageInterface
44	*/
45	protected $userStorage;
46
47	/**
48	* Constructs a new UserSelection object.
49	*
50	* @param array $configuration
51	* A configuration array containing information about the plugin instance.
52	* @param string $plugin_id
53	* The plugin_id for the plugin instance.
54	* @param mixed $plugin_definition
55	* The plugin implementation definition.
56	* @param \Drupal\Core\Entity\EntityManagerInterface $entity_manager
57	* The entity manager service.
58	* @param \Drupal\Core\Extension\ModuleHandlerInterface $module_handler
59	* The module handler service.
60	* @param \Drupal\Core\Session\AccountInterface $current_user
61	* The current user.
62	* @param \Drupal\Core\Database\Connection $connection
63	* The database connection.
64	*/
65	public function __construct(array $configuration, $plugin_id, $plugin_definition, EntityManagerInterface $entity_manager, ModuleHandlerInterface $module_handler, AccountInterface $current_user, Connection $connection) {
66	parent::__construct($configuration, $plugin_id, $plugin_definition, $entity_manager, $module_handler, $current_user);
67
68	$this->connection = $connection;
69	$this->userStorage = $entity_manager->getStorage('user');
70	}
71
72	/**
73	* {@inheritdoc}
74	*/
75	public static function create(ContainerInterface $container, array $configuration, $plugin_id, $plugin_definition) {
76	return new static(
77	$configuration,
78	$plugin_id,
79	$plugin_definition,
80	$container->get('entity.manager'),
81	$container->get('module_handler'),
82	$container->get('current_user'),
83	$container->get('database')
84	);
85	}
86
87	/**
88	* {@inheritdoc}
89	*/
90	public function buildConfigurationForm(array $form, FormStateInterface $form_state) {
91	$selection_handler_settings = $this->configuration['handler_settings'];
92
93	// Merge in default values.
94	$selection_handler_settings += array(
95	'filter' => array(
96	'type' => '_none',
97	),
98	'include_anonymous' => TRUE,
99	);
100
101	$form['include_anonymous'] = array(
102	'#type' => 'checkbox',
103	'#title' => $this->t('Include the anonymous user.'),
104	'#default_value' => $selection_handler_settings['include_anonymous'],
105	);
106
107	// Add user specific filter options.
108	$form['filter']['type'] = array(
109	'#type' => 'select',
110	'#title' => $this->t('Filter by'),
111	'#options' => array(
112	'_none' => $this->t('- None -'),
113	'role' => $this->t('User role'),
114	),
115	'#ajax' => TRUE,
116	'#limit_validation_errors' => array(),
117	'#default_value' => $selection_handler_settings['filter']['type'],
118	);
119
120	$form['filter']['settings'] = array(
121	'#type' => 'container',
122	'#attributes' => array('class' => array('entity_reference-settings')),
123	'#process' => array(array('\Drupal\Core\Field\Plugin\Field\FieldType\EntityReferenceItem', 'formProcessMergeParent')),
124	);
125
126	if ($selection_handler_settings['filter']['type'] == 'role') {
127	// Merge in default values.
128	$selection_handler_settings['filter'] += array(
129	'role' => NULL,
130	);
131
132	$form['filter']['settings']['role'] = array(
133	'#type' => 'checkboxes',
134	'#title' => $this->t('Restrict to the selected roles'),
135	'#required' => TRUE,
136	'#options' => array_diff_key(user_role_names(TRUE), array(RoleInterface::AUTHENTICATED_ID => RoleInterface::AUTHENTICATED_ID)),
137	'#default_value' => $selection_handler_settings['filter']['role'],
138	);
139	}
140
141	$form += parent::buildConfigurationForm($form, $form_state);
142
143	return $form;
144	}
145
146	/**
147	* {@inheritdoc}
148	*/
149	protected function buildEntityQuery($match = NULL, $match_operator = 'CONTAINS') {
150	$query = parent::buildEntityQuery($match, $match_operator);
151
152	// The user entity doesn't have a label column.
153	if (isset($match)) {
154	$query->condition('name', $match, $match_operator);
155	}
156
157	// Filter by role.
158	$handler_settings = $this->configuration['handler_settings'];
159	if (!empty($handler_settings['filter']['role'])) {
160	$query->condition('roles', $handler_settings['filter']['role'], 'IN');
161	}
162
163	// Adding the permission check is sadly insufficient for users: core
164	// requires us to also know about the concept of 'blocked' and 'active'.
165	if (!$this->currentUser->hasPermission('administer users')) {
166	$query->condition('status', 1);
167	}
168	return $query;
169	}
170
171	/**
172	* {@inheritdoc}
173	*/
174	public function createNewEntity($entity_type_id, $bundle, $label, $uid) {
175	$user = parent::createNewEntity($entity_type_id, $bundle, $label, $uid);
176
177	// In order to create a referenceable user, it needs to be active.
178	if (!$this->currentUser->hasPermission('administer users')) {
179	/** @var \Drupal\user\UserInterface $user */
180	$user->activate();
181	}
182
183	return $user;
184	}
185
186	/**
187	* {@inheritdoc}
188	*/
189	public function validateReferenceableNewEntities(array $entities) {
190	$entities = parent::validateReferenceableNewEntities($entities);
191	// Mirror the conditions checked in buildEntityQuery().
192	if (!empty($this->configuration['handler_settings']['filter']['role'])) {
193	$entities = array_filter($entities, function ($user) {
194	/** @var \Drupal\user\UserInterface $user */
195	return !empty(array_intersect($user->getRoles(), $this->configuration['handler_settings']['filter']['role']));
196	});
197	}
198	if (!$this->currentUser->hasPermission('administer users')) {
199	$entities = array_filter($entities, function ($user) {
200	/** @var \Drupal\user\UserInterface $user */
201	return $user->isActive();
202	});
203	}
204	return $entities;
205	}
206
207	/**
208	* {@inheritdoc}
209	*/
210	public function entityQueryAlter(SelectInterface $query) {
211	// Bail out early if we do not need to match the Anonymous user.
212	$handler_settings = $this->configuration['handler_settings'];
213	if (isset($handler_settings['include_anonymous']) && !$handler_settings['include_anonymous']) {
214	return;
215	}
216
217	if ($this->currentUser->hasPermission('administer users')) {
218	// In addition, if the user is administrator, we need to make sure to
219	// match the anonymous user, that doesn't actually have a name in the
220	// database.
221	$conditions = &$query->conditions();
222	foreach ($conditions as $key => $condition) {
223	if ($key !== '#conjunction' && is_string($condition['field']) && $condition['field'] === 'users_field_data.name') {
224	// Remove the condition.
225	unset($conditions[$key]);
226
227	// Re-add the condition and a condition on uid = 0 so that we end up
228	// with a query in the form:
229	// WHERE (name LIKE :name) OR (:anonymous_name LIKE :name AND uid = 0)
230	$or = db_or();
231	$or->condition($condition['field'], $condition['value'], $condition['operator']);
232	// Sadly, the Database layer doesn't allow us to build a condition
233	// in the form ':placeholder = :placeholder2', because the 'field'
234	// part of a condition is always escaped.
235	// As a (cheap) workaround, we separately build a condition with no
236	// field, and concatenate the field and the condition separately.
237	$value_part = db_and();
238	$value_part->condition('anonymous_name', $condition['value'], $condition['operator']);
239	$value_part->compile($this->connection, $query);
240	$or->condition(db_and()
241	->where(str_replace('anonymous_name', ':anonymous_name', (string) $value_part), $value_part->arguments() + array(':anonymous_name' => \Drupal::config('user.settings')->get('anonymous')))
242	->condition('base_table.uid', 0)
243	);
244	$query->condition($or);
245	}
246	}
247	}
248	}
249
250	}