classes/security/authorization/internal/MonographAuthorPolicy.inc.php

<?php
import('lib.pkp.classes.security.authorization.AuthorizationPolicy');

class MonographAuthorPolicy extends AuthorizationPolicy {
   var $_request;

   function MonographAuthorPolicy(&$request) {
      parent::AuthorizationPolicy('user.authorization.monographAuthor');
      $this->_request =& $request;
   }

   //
   // Implement template methods from AuthorizationPolicy
   //
   function effect() {
      // Get the user
      $user =& $this->_request->getUser();
      if (!is_a($user, 'PKPUser')) return AUTHORIZATION_DENY;

      // Get the monograph
      $monograph =& $this->getAuthorizedContextObject(ASSOC_TYPE_MONOGRAPH);
      if (!is_a($monograph, 'Monograph')) return AUTHORIZATION_DENY;

      // Check authorship of the monograph.
      if ($monograph->getUserId() === $user->getId()) {
         return AUTHORIZATION_PERMIT;
      } else {
         return AUTHORIZATION_DENY;
      }
   }
}

?>