Open Journal Systems
3.3.0
|
Public Member Functions | |
__construct ($message=null) | |
addAuthorizedContextObject ($assocType, &$authorizedObject) | |
applies () | |
effect () | |
& | getAdvice ($adviceType) |
& | getAuthorizedContext () |
& | getAuthorizedContextObject ($assocType) |
hasAdvice ($adviceType) | |
hasAuthorizedContextObject ($assocType) | |
setAdvice ($adviceType, &$adviceContent) | |
setAuthorizedContext (&$authorizedContext) | |
Data Fields | |
$_advice = array() | |
$_authorizedContext = array() | |
Class to represent an authorization policy.
We use some of the terminology specified in the draft XACML V3.0 standard, please see http://www.oasis-open.org/committees/tc_home.php?wg_abbrev=xacml for details.
We try to stick closely enough to XACML concepts to make sure that future improvements to the authorization framework can be done in a consistent manner.
This of course doesn't mean that we are "XACML compliant" in any way.
Definition at line 31 of file AuthorizationPolicy.inc.php.
AuthorizationPolicy::__construct | ( | $message = null | ) |
Constructor
$message | string |
Reimplemented in WorkflowStageRequiredPolicy, RestrictedSiteAccessPolicy, SubmissionAuthorPolicy, ManagerRequiredPolicy, PluginRequiredPolicy, UserRolesRequiredPolicy, HttpsPolicy, QueryAssignedToUserAccessPolicy, and OjsJournalMustPublishPolicy.
Definition at line 52 of file AuthorizationPolicy.inc.php.
References setAdvice().
AuthorizationPolicy::addAuthorizedContextObject | ( | $assocType, | |
& | $authorizedObject | ||
) |
Add an object to the authorized context
$assocType | integer |
$authorizedObject | mixed |
Definition at line 97 of file AuthorizationPolicy.inc.php.
Referenced by OjsIssueGalleyRequiredPolicy\dataObjectEffect(), QueryRequiredPolicy\dataObjectEffect(), RepresentationRequiredPolicy\dataObjectEffect(), ReviewRoundRequiredPolicy\dataObjectEffect(), PublicationRequiredPolicy\dataObjectEffect(), OjsIssueRequiredPolicy\dataObjectEffect(), SubmissionRequiredPolicy\dataObjectEffect(), ReviewAssignmentRequiredPolicy\dataObjectEffect(), QueryUserAccessibleWorkflowStageRequiredPolicy\effect(), SubmissionFileMatchesSubmissionPolicy\effect(), PluginRequiredPolicy\effect(), WorkflowStageRequiredPolicy\effect(), UserRolesRequiredPolicy\effect(), SubmissionAuthorPolicy\effect(), ReviewAssignmentAccessPolicy\effect(), and UserAccessibleWorkflowStageRequiredPolicy\effect().
AuthorizationPolicy::applies | ( | ) |
Whether this policy applies.
Reimplemented in RestrictedSiteAccessPolicy, and HttpsPolicy.
Definition at line 149 of file AuthorizationPolicy.inc.php.
AuthorizationPolicy::effect | ( | ) |
This method must return a value of either AUTHORIZATION_DENY or AUTHORIZATION_PERMIT.
Reimplemented in DataObjectRequiredPolicy, RoleBasedHandlerOperationPolicy, StageRolePolicy, RestrictedSiteAccessPolicy, UserAccessibleWorkflowStagePolicy, SubmissionFileStageRequiredPolicy, AssignedStageRoleHandlerOperationPolicy, HttpsPolicy, UserAccessibleWorkflowStageRequiredPolicy, ReviewAssignmentAccessPolicy, SubmissionAuthorPolicy, ManagerRequiredPolicy, PluginLevelRequiredPolicy, UserRolesRequiredPolicy, ContextRequiredPolicy, PluginRequiredPolicy, WorkflowStageRequiredPolicy, UserRequiredPolicy, QueryAssignedToUserAccessPolicy, SubmissionFileRequestedRevisionRequiredPolicy, PKPPublicAccessPolicy, OjsJournalMustPublishPolicy, SubmissionFileMatchesSubmissionPolicy, SubmissionFileAssignedQueryAccessPolicy, SubmissionFileAssignedReviewerAccessPolicy, SubmissionFileUploaderAccessPolicy, QueryUserAccessibleWorkflowStageRequiredPolicy, SubmissionFileNotQueryAccessPolicy, SubmissionFileAuthorEditorPolicy, and PublicationIsSubmissionPolicy.
Definition at line 158 of file AuthorizationPolicy.inc.php.
& AuthorizationPolicy::getAdvice | ( | $adviceType | ) |
Get advice for the given advice type.
$adviceType | integer |
Definition at line 83 of file AuthorizationPolicy.inc.php.
References hasAdvice().
& AuthorizationPolicy::getAuthorizedContext | ( | ) |
Get the authorized context
Definition at line 138 of file AuthorizationPolicy.inc.php.
References $_authorizedContext.
& AuthorizationPolicy::getAuthorizedContextObject | ( | $assocType | ) |
Retrieve an object from the authorized context
$assocType | integer |
Definition at line 117 of file AuthorizationPolicy.inc.php.
References hasAuthorizedContextObject().
Referenced by OjsIssueGalleyRequiredPolicy\dataObjectEffect(), QueryRequiredPolicy\dataObjectEffect(), RepresentationRequiredPolicy\dataObjectEffect(), ReviewRoundRequiredPolicy\dataObjectEffect(), OjsIssueRequiredPolicy\dataObjectEffect(), ReviewAssignmentRequiredPolicy\dataObjectEffect(), PublicationIsSubmissionPolicy\effect(), SubmissionFileAuthorEditorPolicy\effect(), QueryUserAccessibleWorkflowStageRequiredPolicy\effect(), SubmissionFileMatchesSubmissionPolicy\effect(), OjsJournalMustPublishPolicy\effect(), SubmissionFileRequestedRevisionRequiredPolicy\effect(), QueryAssignedToUserAccessPolicy\effect(), PluginLevelRequiredPolicy\effect(), ManagerRequiredPolicy\effect(), SubmissionAuthorPolicy\effect(), ReviewAssignmentAccessPolicy\effect(), UserAccessibleWorkflowStageRequiredPolicy\effect(), AssignedStageRoleHandlerOperationPolicy\effect(), UserAccessibleWorkflowStagePolicy\effect(), StageRolePolicy\effect(), and RoleBasedHandlerOperationPolicy\effect().
AuthorizationPolicy::hasAdvice | ( | $adviceType | ) |
Whether this policy implements the given advice type.
$adviceType | integer |
Definition at line 74 of file AuthorizationPolicy.inc.php.
Referenced by getAdvice().
AuthorizationPolicy::hasAuthorizedContextObject | ( | $assocType | ) |
Check whether an object already exists in the authorized context.
$assocType | integer |
Definition at line 107 of file AuthorizationPolicy.inc.php.
Referenced by getAuthorizedContextObject().
AuthorizationPolicy::setAdvice | ( | $adviceType, | |
& | $adviceContent | ||
) |
Set an advice
$adviceType | integer |
$adviceContent | mixed |
Definition at line 64 of file AuthorizationPolicy.inc.php.
Referenced by PublicationRequiredPolicy\__construct(), SubmissionRequiredPolicy\__construct(), HttpsPolicy\__construct(), and __construct().
AuthorizationPolicy::setAuthorizedContext | ( | & | $authorizedContext | ) |
array AuthorizationPolicy::$_advice = array() |
advice to be returned to the decision point
Definition at line 36 of file AuthorizationPolicy.inc.php.
array AuthorizationPolicy::$_authorizedContext = array() |
a list of authorized context objects that should be returned to the caller
Definition at line 45 of file AuthorizationPolicy.inc.php.
Referenced by getAuthorizedContext().