module Puffer
module Controller
# Module provides authentification methods and helpers for puffer
# controllers. Puffer's authentification system is simple. In general, you
# should use different kinds of routing and controllers namespaces for
# partial access of different user types.
#
# Method +has_puffer_access?+ with current namespace name as a parameter.
# If you want to use appication's own auth system - just redefine this
# method in your ApplicationController.
#
# Also see Puffer::SessionsBase.
module Auth
extend ActiveSupport::Concern
included do
helper_method :current_puffer_user
end
module InstanceMethods
# Return current user instance, used for authorization. This method can
# be redefined in ApplicationController if you want to use application's
# auth system.
#
# ex:
#
# class ApplicationController < ActionController::Base
# def current_puffer_user
# current_user
# end
# end
#
# In this case returner user model instance should respond to has_role?
# method, or you should properly redefine +has_puffer_access?+ See
# +has_puffer_access?+ source and docs.
def current_puffer_user
@current_puffer_user ||= super rescue (PufferUser.find(session[:puffer_user_id]) if session[:puffer_user_id])
end
# Used in before_filter to prevent unauthorized access
def require_puffer_user
unless has_puffer_access?(puffer_namespace)
redirect_to new_admin_session_url(:return_to => request.fullpath)
return false
end
end
# This method is also part of auth system and it can be redefined at the
# ApplicationController.
#
# ex:
#
# class ApplicationController < ActionController::Base
# # current_puffer_user.admin?
# # current_puffer_user.manager?
# # current_puffer_user.seo?
# def has_puffer_access? namespace
# current_puffer_user.send("#{namespace}?")
# end
# end
def has_puffer_access? namespace
super rescue (current_puffer_user && current_puffer_user.has_role?(namespace))
end
end
end
end
end