Sha256: a1ee3c08577606db1cb5fd21ee159a0d4f89aac4876c67734b18aa77f82a596a
Contents?: true
Size: 1.55 KB
Versions: 2
Compression:
Stored size: 1.55 KB
Contents
# frozen_string_literal: true
require 'active_support/concern'
module Uploader
module Authorization
extend ActiveSupport::Concern
included do
include ActiveSupport::Rescuable
rescue_from Uploader::AccessDenied, with: :dispatch_uploader_access_denied
end
protected
# Authorize the action and subject. Available in the controller
def authorized?(action, subject = nil)
uploader_authorization.authorized?(action, subject)
end
# Authorize the action and subject. Available in the controller.
# If the action is not allowd, it raises an Uploader::AccessDenied exception.
def authorize!(action, subject = nil)
return if authorized?(action, subject)
raise Uploader::AccessDenied.new(current_uploader_user, action, subject)
end
# Retrieve or instantiate the authorization instance for this resource
def uploader_authorization
@uploader_authorization ||= uploader_authorization_adapter.new(current_uploader_user)
end
# Returns the class to be used as the authorization adapter
def uploader_authorization_adapter
adapter = Uploader.authorization_adapter
if adapter.is_a? String
ActiveSupport::Dependencies.constantize(adapter)
else
adapter
end
end
def dispatch_uploader_access_denied(exception)
render json: { message: exception.message }, status: 403
end
def current_uploader_user
return if Uploader.current_user_proc.nil?
@current_uploader_user ||= Uploader.current_user_proc.call(request)
end
end
end
Version data entries
2 entries across 2 versions & 1 rubygems
| Version | Path |
|---|---|
| rails-uploader-0.5.0 | lib/uploader/authorization.rb |
| rails-uploader-0.4.5 | lib/uploader/authorization.rb |