user_access

Search API

Navigation

Help e-Commerce Development

If you Use e-Commerce please consider helping by donating to or sponsoring development. You can make a donation of a one off amount as big or as small as you want, Or alternatively you can sponsor development by paying $US5.00/mth.

User login

Definition

user_access($string, $account = NULL)
drupal-4-6/modules/user.module, line 325

Description

Determine whether the user has a given privilege.

All permission checks in Drupal should go through this function. This way, we guarantee consistent behavior, and ensure that the superuser can perform all actions.

Parameters

$string The permission, such as "administer nodes", being checked for.

$account (optional) The account to check, if not given use currently logged in user.

Return value

TRUE iff the current user has the requested permission.

Code

function user_access($string, $account = NULL) {
  global $user;
  static $perm = array();

  if (is_null($account)) {
    $account = $user;
  }

  // User #1 has all privileges:
  if ($account->uid == 1) {
    return 1;
  }

  // To reduce the number of SQL queries, we cache the user's permissions
  // in a static variable.
  if (!isset($perm[$account->uid])) {
    $result = db_query('SELECT DISTINCT(p.perm) FROM {role} r INNER JOIN {permission} p ON p.rid = r.rid INNER JOIN {users_roles} ur ON ur.rid = r.rid WHERE ur.uid = %d', $account->uid);

    while ($row = db_fetch_object($result)) {
      $perm[$account->uid] .= "$row->perm, ";
    }
  }

  return strpos($perm[$account->uid], "$string, ") !== FALSE;
}