Sha256: 642e39aca97e8799897e7cfef50c9e7026dbf51bf0b4947bf546acc8b431a0d7
Contents?: true
Size: 1.47 KB
Versions: 1
Compression:
Stored size: 1.47 KB
Contents
require 'adeia/database'
require 'adeia/exceptions'
module Adeia
class Authorization < Database
def authorize!
rights = token_rights(right_name)
raise LoginRequired if rights[:rights].empty? && @user.nil?
rights = rights.merge(send("#{right_name}_rights")) { |key, v1, v2| v1 + v2 } if @user
@rights, @resource_ids = rights[:rights], rights[:resource_ids]
raise AccessDenied unless @rights.any? && authorize?
end
def check_permissions!
load_permissions
raise AccessDenied unless @rights.any?
end
def can?
load_permissions
@rights.any? && authorize?
end
private
def authorize?
all_entries? || on_ownerships? || on_entry?
end
def all_entries?
@rights.any? { |r| r.permission_type == "all_entries" }
end
def on_ownerships?
@user && @resource && @rights.any? { |r| r.permission_type == "on_ownerships" } && @resource.user == @user
end
def on_entry?
@resource && @resource_ids.include?(@resource.id)
end
def right_names
{read: [:index, :show], create: [:new, :create], update: [:edit, :update], destroy: [:destroy]}
end
def right_name
right_names.select { |k, v| v.include? @action.to_sym }.keys[0] || :action
end
def load_permissions
rights = token_rights(right_name).merge(send("#{right_name}_rights")) { |key, v1, v2| v1 + v2 }
@rights, @resource_ids = rights[:rights], rights[:resource_ids]
end
end
end
Version data entries
1 entries across 1 versions & 1 rubygems
| Version | Path |
|---|---|
| adeia-0.2.0 | lib/adeia/authorization.rb |