classes/security/authorization/internal/PublicationFormatRequiredPolicy.inc.php

<?php
import('lib.pkp.classes.security.authorization.DataObjectRequiredPolicy');

class PublicationFormatRequiredPolicy extends DataObjectRequiredPolicy {
   function PublicationFormatRequiredPolicy(&$request, &$args, $parameterName = 'publicationFormatId', $operations = null) {
      parent::DataObjectRequiredPolicy($request, $args, $parameterName, 'user.authorization.invalidPublicationFormat', $operations);
   }

   //
   // Implement template methods from AuthorizationPolicy
   //
   function dataObjectEffect() {
      $publicationFormatId = (int)$this->getDataObjectId();
      if (!$publicationFormatId) return AUTHORIZATION_DENY;

      // Need a valid monograph in request.
      $monograph =& $this->getAuthorizedContextObject(ASSOC_TYPE_MONOGRAPH);
      if (!is_a($monograph, 'Monograph')) return AUTHORIZATION_DENY;

      // Make sure the publication format belongs to the monograph.
      $publicationFormatDao =& DAORegistry::getDAO('PublicationFormatDAO');
      $publicationFormat =& $publicationFormatDao->getById($publicationFormatId, $monograph->getId());
      if (!is_a($publicationFormat, 'PublicationFormat')) return AUTHORIZATION_DENY;

      // Save the publication format to the authorization context.
      $this->addAuthorizedContextObject(ASSOC_TYPE_PUBLICATION_FORMAT, $publicationFormat);
      return AUTHORIZATION_PERMIT;
   }
}

?>