Sha256: 4d6eed02e38ee98f89f56d8326f6bed515289135683670013991f88d3253448a
Contents?: true
Size: 1.15 KB
Versions: 1
Compression:
Stored size: 1.15 KB
Contents
module AccessGranted
module Policy
attr_accessor :roles
def initialize(user)
@user = user
@roles = []
configure(@user)
end
def configure(user)
end
def role(name, conditions_or_klass = nil, conditions = nil, &block)
name = name.to_sym
if roles.select {|r| r.name == name }.any?
raise DuplicateRole, "Role '#{name}' already defined"
end
r = if conditions_or_klass.is_a?(Class) && conditions_or_klass <= AccessGranted::Role
conditions_or_klass.new(name, conditions, @user, block)
else
Role.new(name, conditions_or_klass, @user, block)
end
roles << r
r
end
def can?(action, subject)
matching_roles.each do |role|
permission = role.find_permission(action, subject)
return permission.granted if permission
end
false
end
def cannot?(*args)
!can?(*args)
end
def matching_roles
roles.select { |role| role.applies_to?(@user) }
end
def authorize!(action, subject)
if cannot?(action, subject)
raise AccessDenied
end
subject
end
end
end
Version data entries
1 entries across 1 versions & 1 rubygems
| Version | Path |
|---|---|
| access-granted-0.1.1 | lib/access-granted/policy.rb |