LLMS_REST_Authentication::check_permissions( mixed $result, WP_REST_Server $server, WP_REST_Request $request )

Check if the API Key can perform the request.

Contents

Parameters Parameters

$result

(mixed) (Required) Response to replace the requested version with.

$server

(WP_REST_Server) (Required) Server instance.

$request

(WP_REST_Request) (Required) Request used to generate the response.

Top ↑

Return Return

(mixed)

Top ↑

Source Source

File: libraries/lifterlms-rest/includes/class-llms-rest-authentication.php 

	public function check_permissions( $result, $server, $request ) {

		if ( $this->api_key ) {

			$allowed = $this->api_key->has_permission( $request->get_method() );
			if ( ! $allowed ) {
				return llms_rest_authorization_required_error( '', false );
			}

			// Update the API key's last access time.
			$this->api_key->set( 'last_access', current_time( 'mysql' ) )->save();

		}

		return $result;
	}

Expand full source code Collapse full source code View on GitHub

Top ↑

Uses Uses

Uses
Uses Description
libraries/lifterlms-rest/includes/server/llms-rest-server-functions.php: llms_rest_authorization_required_error()

Return a WP_Error with proper code, message and status for unauthorized requests.

Top ↑

Changelog Changelog

Changelog
Version Description
1.0.0-beta.12 Call llms_rest_authorization_required_error() instructing to not check if the current user is logged in to avoid infinite loops.
1.0.0-beta.1 Introduced.

Top ↑

User Contributed Notes User Contributed Notes

You must log in before being able to contribute a note or feedback.