Sha256: 41b40627d59fecc921a189ad59bf6e23a9de82b69a85a5dc2847ca35eabba933
Contents?: true
Size: 1.97 KB
Versions: 1
Compression:
Stored size: 1.97 KB
Contents
module Ixtlan
module ActionController #:nodoc:
module Guard #:nodoc:
def self.included(base)
base.send(:include, InstanceMethods)
base.send(:include, GroupsMethod)
end
module GroupsMethod
protected
def groups_for_current_user
if respond_to?(:current_user) && current_user
current_user.groups
else
[]
end
end
end
module RootGroup
protected
def groups_for_current_user
['root']
end
end
module InstanceMethods #:nodoc:
protected
def guard
Rails.application.config.guard
end
def check(association = nil, &block)
group_method = respond_to?(:current_user_groups) ? :current_user_groups : :groups_for_current_user
unless guard.allowed?(params[:controller],
params[:action],
send(group_method),
association,
&block)
if association
raise ::Ixtlan::Guard::PermissionDenied.new("permission denied for '#{params[:controller]}##{params[:action]}##{association.class}(#{association.id})'")
else
raise ::Ixtlan::Guard::PermissionDenied.new("permission denied for '#{params[:controller]}##{params[:action]}'")
end
end
true
end
alias :authorize :check
def authorization
warn "DEPRECATED: use 'authorize' instead"
check
end
end
end
end
module Allowed #:nodoc:
# Inclusion hook to make #allowed available as method
def self.included(base)
base.send(:include, InstanceMethods)
end
module InstanceMethods #:nodoc:
def allowed?(resource, action)
controller.send(:guard).allowed?(resource, action, controller.send(:groups_for_current_user))
end
end
end
end
Version data entries
1 entries across 1 versions & 1 rubygems
| Version | Path |
|---|---|
| ixtlan-guard-0.7.2 | lib/ixtlan/guard/guard_rails.rb |