Description of the bug (not sure if this can be considered a bug).
entity_access() currently ignores checking for access to operations view, update and delete if no entity is provided.
There are situations when one may invoke, for example, entity_access('view', 'node'); to check if a user can view any content (Rules does this). So, instead of ignoring (and returning null), the function should actually check for that access. The issue is that, since there is no entity, we have not way to invoke $node->access().
In D7, Entity API included a access callback key/value pair in hook_entity_info() which allowed someone to specify the access callback, which could be invoked without the need of having an actual entity object handy. That would solve this situation.
AFAIK, because of this, Backdrop currently has not abstracted way to check access to entities when there is no entity available, other than directly checking the permission doing user_access(). This creates problems for modules that deal with many types of entities in abstract ways, like Entity Reference and Rules.
I'm really at a loss on how to solve this issue - or even if it's necessary to solve it. I guess one way to deal with this is by modifying projects like Rules to granularly check for user permissions.
Any feedback or thoughts will be appreciated. I'm trying to get Rules to deal in a sensible way with access checks.
Recent comments
Glad to see this was resolved, and that the cause was not a bug! Gotta love this community!
View/Edit tabs missing
This seems to be a problem with an update hook that did not run when you upgraded your site from D7. The hook in question is content_access_update_1004, which should have run during upgrade. Or...
content_access_node_access_rebuild doesn't exist
Thank you, olafski I had already done that, but switching languages wasn't tied to whatever layouts were needed. I'll work with the other reply, see if I can replicate the...
How to translate my site content