Sha256: ff941c39d573fc458821a591e0189a6aaf3e307455a3caabb646ca6113b61112
Contents?: true
Size: 1.6 KB
Versions: 1
Compression:
Stored size: 1.6 KB
Contents
class Policy
attr_reader :model, :user, :action
def initialize model:, user: nil
@model = model
@user = user || current_user
end
# pass block if you want to handle errors yourself
# return true if false if block is passed
def can? action, *args, &block
@action = action
.to_s
.gsub(/[^\w+]/, '')
.concat('?')
.to_sym
# pre check
if %i(can).index(@action)
raise RuntimeError.new('Method name not allowed')
end
unless respond_to?(@action)
raise NoMethodError.new(%[Policy check "#{@action}" not found in #{self.class}])
end
call *args, &block
end
def can
Proxy.new self
end
private
# call has to be isolated because specific of error handling
def call *args, &block
error 'User is not defined, no access' unless @user
return true if before(@action) == true
return true if send(@action, *args) && after(@action) == true
error 'Access disabled in policy'
rescue Policy::Error => error
message = error.message
message += " - #{self.class}##{@action}"
if block
block.call(message)
false
else
error message
end
end
def before action
false
end
def after action
true
end
# get current user from globals if globals defined
def current_user
if defined?(User) && User.respond_to?(:current)
User.current
elsif defined?(Current) && Current.respond_to?(:user)
Current.user
elsif user = Thread.current[:current_user]
user
else
raise RuntimeError.new('Current user not found in Policy#current_user')
end
end
end
Version data entries
1 entries across 1 versions & 1 rubygems
| Version | Path |
|---|---|
| egoist-0.6.0 | ./lib/egoist/base.rb |