Contents

# frozen_string_literal: true

module ActionPolicy
  # Raised when `authorize!` check fails
  class Unauthorized < Error
    attr_reader :policy, :rule, :result

    def initialize(policy, rule)
      @policy = policy.class
      @rule = rule
      @result = policy.result

      super("Not Authorized")
    end
  end

  # The main purpose of this module is to extact authorize actions
  # from everything else to make it easily testable.
  module Authorizer
    class << self
      # Performs authorization, raises an exception when check failed.
      def call(policy, rule)
        authorize(policy, rule) ||
          raise(::ActionPolicy::Unauthorized.new(policy, rule))
      end

      def authorize(policy, rule)
        policy.apply(rule)
      end

      # Applies scope to the target
      def scopify(target, policy, **options)
        policy.apply_scope(target, **options)
      end
    end
  end
end

Version data entries

31 entries across 31 versions & 1 rubygems

Version	Path
action_policy-0.7.1	lib/action_policy/authorizer.rb
action_policy-0.7.0	lib/action_policy/authorizer.rb
action_policy-0.6.9	lib/action_policy/authorizer.rb
action_policy-0.6.8	lib/action_policy/authorizer.rb
action_policy-0.6.7	lib/action_policy/authorizer.rb
action_policy-0.6.6	lib/action_policy/authorizer.rb
action_policy-0.6.5	lib/action_policy/authorizer.rb
action_policy-0.6.4	lib/action_policy/authorizer.rb
action_policy-0.6.3	lib/action_policy/authorizer.rb
action_policy-0.6.2	lib/action_policy/authorizer.rb
action_policy-0.6.1	lib/action_policy/authorizer.rb
action_policy-0.6.0	lib/action_policy/authorizer.rb
action_policy-0.5.7	lib/action_policy/authorizer.rb
action_policy-0.5.6	lib/action_policy/authorizer.rb
action_policy-0.5.5	lib/action_policy/authorizer.rb
action_policy-0.5.4	lib/action_policy/authorizer.rb
action_policy-0.5.3	lib/action_policy/authorizer.rb
action_policy-0.5.2	lib/action_policy/authorizer.rb
action_policy-0.5.1	lib/action_policy/authorizer.rb
action_policy-0.5.0	lib/action_policy/authorizer.rb