DisallowBasicAuthRequests::check

public DisallowBasicAuthRequests::check(Request $request)

Determines whether delivery of a cached page should be attempted.

Note that the request-policy check runs very early. In particular it is not possible to determine the logged in user. Also the current route match is not yet present when the check runs. Therefore, request-policy checks need to be designed in a way such that they do not depend on any other service and only take in account the information present on the incoming request.

When matching against the request path, special attention is needed to support path prefixes which are often used on multilingual sites.

Parameters

\Symfony\Component\HttpFoundation\Request $request: The incoming request object.

Return value

string|null One of static::ALLOW, static::DENY or NULL. Calling code may attempt to deliver a cached page if static::ALLOW is returned. Returns NULL if the policy is not specified for the given request.

Overrides RequestPolicyInterface::check

File

core/modules/basic_auth/src/PageCache/DisallowBasicAuthRequests.php, line 20

Class

DisallowBasicAuthRequests
Cache policy for pages served from basic auth.

Namespace

Drupal\basic_auth\PageCache

Code

public function check(Request $request) {
  $username = $request->headers->get('PHP_AUTH_USER');
  $password = $request->headers->get('PHP_AUTH_PW');
  if (isset($username) && isset($password)) {
    return self::DENY;
  }
}
doc_Drupal
2016-10-29 09:02:32
Comments
Leave a Comment

Please login to continue.