AdminPluginGridHandler.inc.php

<?php
 
import('lib.pkp.classes.controllers.grid.plugins.PluginGridHandler');
 
class AdminPluginGridHandler extends PluginGridHandler {
   function __construct() {
      $roles = array(ROLE_ID_SITE_ADMIN);
 
      $this->addRoleAssignment($roles, array('plugin'));
 
      parent::__construct($roles);
   }
 
   //
   // Overriden template methods.
   //
   function getRowInstance() {
      import('lib.pkp.controllers.grid.plugins.PluginGridRow');
      return new PluginGridRow($this->getAuthorizedContextObject(ASSOC_TYPE_USER_ROLES));
   }
 
   function authorize($request, &$args, $roleAssignments) {
      $category = $request->getUserVar('category');
      $pluginName = $request->getUserVar('plugin');
      $verb = $request->getUserVar('verb');
 
      if ($category && $pluginName) {
         import('lib.pkp.classes.security.authorization.PluginAccessPolicy');
         if ($verb) {
            $accessMode = ACCESS_MODE_MANAGE;
         } else {
            $accessMode = ACCESS_MODE_ADMIN;
         }
 
         $this->addPolicy(new PluginAccessPolicy($request, $args, $roleAssignments, $accessMode));
      } else {
         import('lib.pkp.classes.security.authorization.PolicySet');
         $rolePolicy = new PolicySet(COMBINING_PERMIT_OVERRIDES);
 
         import('lib.pkp.classes.security.authorization.RoleBasedHandlerOperationPolicy');
         foreach($roleAssignments as $role => $operations) {
            $rolePolicy->addPolicy(new RoleBasedHandlerOperationPolicy($request, $role, $operations));
         }
         $this->addPolicy($rolePolicy);
      }
 
      return parent::authorize($request, $args, $roleAssignments);
   }
}