RubygemsResearch

Sha256: b850ac993c85ee39f1fcbc6dae12ddbfd36ceaeed68771ee7c1b64f6087e26e4

Contents?: true

Size: 1.93 KB

Versions: 3

Compression:

Stored size: 1.93 KB

require 'active_support/concern'
require 'active_support/core_ext/class/attribute'
require 'active_support/core_ext/hash/keys'
require 'active_support/core_ext/string/inflections'
require 'logger'

module Authority

  # NOTE: once this method is called, the library has started meta programming
  # and abilities should no longer be modified
  # @return [Hash] list of abilities, mapping verbs and adjectives, like :create => 'creatable'
  def self.abilities
    configuration.abilities.freeze
  end

  # @return [Array] keys from adjectives method
  def self.verbs
    abilities.keys
  end

  # @return [Array] values from adjectives method
  def self.adjectives
    abilities.values
  end

  # @param [Symbol] action
  # @param [Model] resource instance
  # @param [User] user instance
  # @raise [SecurityViolation] if user is not allowed to perform action on resource
  # @return [Model] resource instance
  def self.enforce(action, resource, user)
    action_authorized = user.send("can_#{action}?", resource)
    unless action_authorized
      raise SecurityViolation.new(user, action, resource)
    end
    resource
  end

  class << self
    attr_accessor :configuration
  end

  def self.configure
    self.configuration ||= Configuration.new
    yield(configuration) if block_given?
    require_authority_internals!

    configuration
  end

  private

  def self.require_authority_internals!
    require 'authority/abilities'
    require 'authority/authorizer'
    require 'authority/user_abilities'
  end

  class SecurityViolation < StandardError
    attr_reader :user, :action, :resource

    def initialize(user, action, resource)
      @user = user
      @action = action
      @resource = resource
    end

    def message
      "#{@user} is not authorized to #{@action} this resource: #{@resource}"
    end
  end

end

require 'authority/configuration'
require 'authority/controller'
require 'authority/railtie' if defined?(Rails)
require 'authority/version'

Version data entries

3 entries across 3 versions & 1 rubygems

Version	Path
authority-2.1.0	lib/authority.rb
authority-2.0.1	lib/authority.rb
authority-2.0.0	lib/authority.rb