/** * @see PKPHandler::authorize() */ function authorize(&$request, &$args, $roleAssignments) { $selectionPolicy =& $this->getSelectionPolicy($request, $args, $roleAssignments); if (!is_null($selectionPolicy)) { $this->addPolicy($selectionPolicy); } return parent::authorize($request, $args, $roleAssignments); }
/** * Authorize the request. * @param $request PKPRequest * @param $args array * @param $roleAssignments array * @return boolean */ function authorize($request, $args, $roleAssignments) { import('lib.pkp.classes.security.authorization.SubmissionAccessPolicy'); $this->addPolicy(new SubmissionAccessPolicy($request, $args, $roleAssignments)); import('lib.pkp.classes.security.authorization.internal.RepresentationRequiredPolicy'); $this->addPolicy(new RepresentationRequiredPolicy($request, $args)); return parent::authorize($request, $args, $roleAssignments); }
/** * Authorize the request. * @param $request PKPRequest * @param $args array * @param $roleAssignments array * @return boolean */ function authorize($request, $args, $roleAssignments) { import('lib.pkp.classes.security.authorization.SubmissionAccessPolicy'); $this->addPolicy(new SubmissionAccessPolicy($request, $args, $roleAssignments)); // If a file ID was specified, authorize it. dependentFiles requires this. // fileId corresponds to the main galley file that these other files depend on. if ($request->getUserVar('fileId')) { import('lib.pkp.classes.security.authorization.SubmissionFileAccessPolicy'); $this->addPolicy(new SubmissionFileAccessPolicy($request, $args, $roleAssignments, SUBMISSION_FILE_ACCESS_MODIFY)); } import('lib.pkp.classes.security.authorization.internal.RepresentationRequiredPolicy'); $this->addPolicy(new RepresentationRequiredPolicy($request, $args)); return parent::authorize($request, $args, $roleAssignments); }
/** * @copydoc SubmissionFilesGridHandler::authorize() */ function authorize($request, $args, $roleAssignments) { $stageId = $request->getUserVar('stageId'); // This is being validated in WorkflowStageAccessPolicy $this->_stageId = (int) $stageId; // Get the stage access policy import('lib.pkp.classes.security.authorization.QueryAccessPolicy'); $queryAccessPolicy = new QueryAccessPolicy($request, $args, $roleAssignments, $stageId); $this->addPolicy($queryAccessPolicy); $result = parent::authorize($request, $args, $roleAssignments); if (0 != count(array_intersect($this->getAuthorizedContextObject(ASSOC_TYPE_USER_ROLES), array(ROLE_ID_MANAGER, ROLE_ID_SUB_EDITOR, ROLE_ID_ASSISTANT)))) { $this->getCapabilities()->setCanManage(true); } return $result; }
/** * @copydoc SubmissionFilesGridHandler::authorize() */ function authorize($request, $args, $roleAssignments) { import('classes.security.authorization.SubmissionFileAccessPolicy'); $this->addPolicy(new SubmissionFileAccessPolicy($request, $args, $roleAssignments, SUBMISSION_FILE_ACCESS_MODIFY)); return parent::authorize($request, $args, $roleAssignments); }