BP_REST_Reply_Endpoint::get_item_permissions_check( WP_REST_Request $request )

Check if a given request has access to list reply.

Description

Parameters

$request: (Required) Full data about the request.

Return

(bool|WP_Error)

Source

File: bp-forums/classes/class-bp-rest-reply-endpoint.php

public function get_item_permissions_check( $request ) {
    $retval = true;
 
    if ( function_exists( 'bp_enable_private_network' ) && true !== bp_enable_private_network() && ! is_user_logged_in() ) {
        $retval = new WP_Error(
            'bp_rest_authorization_required',
            __( 'Sorry, Restrict access to only logged-in members.', 'buddyboss' ),
            array(
                'status' => rest_authorization_required_code(),
            )
        );
    }
 
    $reply = get_post( $request['id'] );
 
    if ( true === $retval && empty( $reply->ID ) ) {
        $retval = new WP_Error(
            'bp_rest_reply_invalid_id',
            __( 'Invalid reply ID.', 'buddyboss' ),
            array(
                'status' => 404,
            )
        );
    }
 
    if ( true === $retval && ( ! isset( $reply->post_type ) || 'reply' !== $reply->post_type ) ) {
        $retval = new WP_Error(
            'bp_rest_reply_invalid_id',
            __( 'Invalid reply ID.', 'buddyboss' ),
            array(
                'status' => 404,
            )
        );
    }
 
    if ( true === $retval && isset( $reply->post_type ) ) {
        $post_type = get_post_type_object( $reply->post_type );
        if ( ! current_user_can( $post_type->cap->read_post, $reply->ID ) ) {
            $retval = new WP_Error(
                'bp_rest_authorization_required',
                __( 'Sorry, you are not allowed to access this reply.', 'buddyboss' ),
                array(
                    'status' => rest_authorization_required_code(),
                )
            );
        }
    }
 
    /**
     * Filter the reply `get_item` permissions check.
     *
     * @param bool|WP_Error   $retval  Returned value.
     * @param WP_REST_Request $request The request sent to the API.
     *
     * @since 0.1.0
     */
    return apply_filters( 'bp_rest_reply_get_item_permissions_check', $retval, $request );
}

Expand full source code Collapse full source code

Changelog

Changelog
Version	Description
0.1.0	Introduced.

Uses

Uses
Uses	Description
bp-forums/classes/class-bp-rest-reply-endpoint.php: bp_rest_reply_get_item_permissions_check	Filter the reply `get_item` permissions check.
bp-core/bp-core-options.php: bp_enable_private_network()	Enable private network for site owner.

Used By
Used By	Description
bp-forums/classes/class-bp-rest-reply-endpoint.php: BP_REST_Reply_Endpoint::update_item_permissions_check()	Check if a given request has access to update a reply.
bp-forums/classes/class-bp-rest-reply-endpoint.php: BP_REST_Reply_Endpoint::delete_item_permissions_check()	Check if a given request has access to delete a reply.

Questions?

We're always happy to help with code or other questions you might have! Search our developer docs, contact support, or connect with our sales team.

Contents