drupal_is_denied
- Versions
- 4.7 – 6
drupal_is_denied($type,$mask)- 7
drupal_is_denied($ip)
Perform an access check for a given mask and rule type. Rules are usually created via admin/user/rules page.
If any allow rule matches, access is allowed. Otherwise, if any deny rule matches, access is denied. If no rule matches, access is allowed.
Parameters
$type string Type of access to check: Allowed values are:
- 'host': host name or IP address
- 'mail': e-mail address
- 'user': username
$mask string String or mask to test: '_' matches any character, '%' matches any number of characters.
Return value
bool TRUE if access is denied, FALSE if access is allowed.
Code
includes/bootstrap.inc, line 845
<?php
function drupal_is_denied($type, $mask) {
// Because this function is called for every page request, both cached
// and non-cached pages, we tried to optimize it as much as possible.
// We deny access if the only matching records in the {access} table have
// status 0. If any have status 1, or if there are no matching records,
// we allow access. So, select matching records in decreasing order of
// 'status', returning NOT(status) for the first. If any have status 1,
// they come first, and we return NOT(status) = 0 (allowed). Otherwise,
// if we have some with status 0, we return 1 (denied). If no matching
// records, we get no return from db_result, so we return (bool)NULL = 0
// (allowed).
// The use of ORDER BY / LIMIT is more efficient than "MAX(status) = 0"
// in PostgreSQL <= 8.0.
return (bool) db_result(db_query_range("SELECT CASE WHEN status=1 THEN 0 ELSE 1 END FROM {access} WHERE type = '%s' AND LOWER('%s') LIKE LOWER(mask) ORDER BY status DESC", $type, $mask, 0, 1));
}
?>