Sha256: 782a3d2270ff48f10832252a08c7d5ec94d9c953279d93477b10dc38f963644e
Contents?: true
Size: 1.84 KB
Versions: 1
Compression:
Stored size: 1.84 KB
Contents
module AccessGranted
class Role
attr_reader :name, :user, :conditions, :permissions
def initialize(name, conditions = nil, user = nil, block = nil)
@user = user
@name = name
@conditions = conditions
@block = block
@permissions = []
if @block
instance_eval(&@block)
else
configure
end
end
def configure
end
def can(action, subject = nil, conditions = {}, &block)
add_permission(true, action, subject, conditions, block)
end
def cannot(action, subject, conditions = {}, &block)
add_permission(false, action, subject, conditions, block)
end
def find_permission(action, subject)
permissions.detect do |permission|
permission.action == action &&
permission.matches_subject?(subject) &&
permission.matches_conditions?(subject)
end
end
def applies_to?(user)
case @conditions
when Hash
matches_hash?(user, @conditions)
when Proc
@conditions.call(user)
else
true
end
end
def matches_hash?(user, conditions = {})
conditions.all? do |name, value|
user.send(name) == value
end
end
def add_permission(granted, action, subject, conditions, block)
prepare_actions(action).each do |a|
raise DuplicatePermission if find_permission(a, subject)
permissions << Permission.new(granted, a, subject, @user, conditions, block)
end
end
private
def permission_exists?(action, subject)
permissions.any? do |permission|
permission.matches_subject?(subject)
end
end
def prepare_actions(action)
if action == :manage
actions = [:read, :create, :update, :destroy]
else
actions = Array(*[action])
end
end
end
end
Version data entries
1 entries across 1 versions & 1 rubygems
| Version | Path |
|---|---|
| access-granted-1.1.0 | lib/access-granted/role.rb |