aclatraz 0.0.1 → 0.1.0

data/spec/aclatraz/stores_spec.rb

@@ -30,16 +30,6 @@ STORE_SPECS = proc do
     subject.check("bar", owner, target).should be_false
   end
   
-  it "should allow to fetch list of permissions for current role" do 
-    subject.set("bar", owner)
-    subject.set("bar", owner, target)
-    class << owner; def id; 20; end; end
-    subject.set("bar", owner, StubTarget)
-    
-    (subject.permissions("bar") - ["15", "15/StubTarget/10", "20/StubTarget"]).should be_empty
-    subject.permissions("lala").should be_empty
-  end 
-  
   it "should allow to fetch whole list of roles" do 
     subject.set("foo", owner)
     subject.set("bar", owner)
@@ -59,28 +49,13 @@ STORE_SPECS = proc do
 end
 
 describe "Aclatraz" do
-  it "should raise InvalidStore error when given store doesn't exists" do 
-    lambda { Aclatraz.store(:fooobar) }.should raise_error(Aclatraz::InvalidStore)
-  end
-  
-  it "should raise StoreNotInitialized error when store has not been set yet" do 
-    Aclatraz.instance_variable_set('@store', nil)
-    lambda { Aclatraz.store }.should raise_error(Aclatraz::StoreNotInitialized)
-  end
-  
-  it "should properly set datastore when class given" do 
-    class TestStore; end
-    lambda { Aclatraz.store(TestStore) }.should_not raise_error
-    Aclatraz.store.should be_kind_of(TestStore)
-  end
-  
   let(:owner) { StubOwner.new }
   let(:target) { StubTarget.new }
   
   describe "Redis store" do 
     before(:all) { @redis = Thread.new { `redis-server` } }
     after(:all) { @redis.exit! }
-    subject { Aclatraz.store(:redis, "redis://localhost:6379/0") }
+    subject { Aclatraz.init(:redis, "redis://localhost:6379/0") }
     before(:each) { subject.clear }
     
     class_eval &STORE_SPECS

data/spec/aclatraz/suspect_spec.rb

@@ -1,41 +1,41 @@
 require 'spec_helper'
 
 describe "Aclatraz suspect" do 
-  before(:all) { Aclatraz.store(:redis, "redis://localhost:6379/0") }
+  before(:all) { Aclatraz.init(:redis, "redis://localhost:6379/0") }
   subject { StubSuspect.new }
   let(:target) { StubTarget.new }
   
   its(:acl_suspect?) { should be_true }
   
   it "1: should properly set given role" do 
-    subject.assign_role!(:foobar1)
-    subject.assign_role!(:foobar2, StubTarget)
-    subject.assign_role!(:foobar3, target) 
+    subject.roles.assign(:foobar1)
+    subject.roles.assign(:foobar2, StubTarget)
+    subject.roles.assign(:foobar3, target) 
     
-    Aclatraz.store.permissions(:foobar1).should include("10")
-    Aclatraz.store.permissions(:foobar2).should include("10/StubTarget")
-    Aclatraz.store.permissions(:foobar3).should include("10/StubTarget/10")
+    subject.roles.has?(:foobar1).should be_true
+    subject.roles.has?(:foobar2, StubTarget).should be_true
+    subject.roles.has?(:foobar3, target).should be_true
   end
   
   it "2: should properly check given permissions" do 
-    subject.has_role?(:foobar1).should be_true
-    subject.has_role?(:foobar2, StubTarget).should be_true
-    subject.has_role?(:foobar3, target).should be_true
-    subject.has_role?(:foobar1, StubTarget).should be_false
+    subject.roles.has?(:foobar1).should be_true
+    subject.roles.has?(:foobar2, StubTarget).should be_true
+    subject.roles.has?(:foobar3, target).should be_true
+    subject.roles.has?(:foobar1, StubTarget).should be_false
   end
   
   it "3: should allow to get list of roles assigned to user" do 
-    (subject.roles - ["foobar1", "foobar2", "foobar3"]) .should be_empty
+    (subject.roles.all - ["foobar1", "foobar2", "foobar3"]) .should be_empty
   end
   
   it "4: should properly remove given permissions" do 
-    subject.delete_role!(:foobar1)
-    subject.delete_role!(:foobar2, StubTarget)
-    subject.delete_role!(:foobar3, target) 
+    subject.roles.delete(:foobar1)
+    subject.roles.delete(:foobar2, StubTarget)
+    subject.roles.delete(:foobar3, target) 
     
-    subject.has_role?(:foobar1).should be_false
-    subject.has_role?(:foobar2, StubTarget).should be_false
-    subject.has_role?(:foobar3, target).should be_false
+    subject.roles.has?(:foobar1).should be_false
+    subject.roles.has?(:foobar2, StubTarget).should be_false
+    subject.roles.has?(:foobar3, target).should be_false
   end
   
   describe "syntactic sugars" do 
@@ -48,13 +48,13 @@ describe "Aclatraz suspect" do
       subject.is.foobar6_by!(target)
       subject.is.foobar7_in!(target)
       
-      subject.has_role?(:foobar1).should be_true
-      subject.has_role?(:foobar2_of, StubTarget).should be_true
-      subject.has_role?(:foobar3_for, target).should be_true
-      subject.has_role?(:foobar4_of, target).should be_true
-      subject.has_role?(:foobar5_at, target).should be_true
-      subject.has_role?(:foobar6_by, target).should be_true
-      subject.has_role?(:foobar7_in, target).should be_true
+      subject.roles.has?(:foobar1).should be_true
+      subject.roles.has?(:foobar2_of, StubTarget).should be_true
+      subject.roles.has?(:foobar3_for, target).should be_true
+      subject.roles.has?(:foobar4_of, target).should be_true
+      subject.roles.has?(:foobar5_at, target).should be_true
+      subject.roles.has?(:foobar6_by, target).should be_true
+      subject.roles.has?(:foobar7_in, target).should be_true
     end
     
     it "2: should properly check given permissions" do 

data/spec/aclatraz_spec.rb

@@ -1,6 +1,20 @@
 require 'spec_helper'
 
 describe "Aclatraz" do
-
+  describe "on init" do
+    it "should raise InvalidStore error when given store doesn't exists" do 
+      lambda { Aclatraz.init(:fooobar) }.should raise_error(Aclatraz::InvalidStore)
+    end
+  
+    it "should properly set datastore when class given" do 
+      class TestStore; end
+      lambda { Aclatraz.init(TestStore) }.should_not raise_error
+      Aclatraz.store.should be_kind_of(TestStore)
+    end
+  end
+  
+  it "should raise StoreNotInitialized error when store has not been set yet" do 
+    Aclatraz.instance_variable_set('@store', nil)
+    lambda { Aclatraz.store }.should raise_error(Aclatraz::StoreNotInitialized)
+  end
 end
-

data/spec/alcatraz_bm.rb

@@ -0,0 +1,54 @@
+$LOAD_PATH.unshift(File.join(File.dirname(__FILE__), '..', 'lib'))
+
+require "aclatraz"
+
+Aclatraz.init :redis, "redis://localhost:6379/0"
+
+class Account
+  include Aclatraz::Suspect
+  def id; 30; end
+end
+
+$account = Account.new
+$account.is.bla_of!($account)
+
+class Foo
+  include Aclatraz::Guard
+  
+  suspects :account do
+    allow :foo
+    deny :bar
+    on :foo do
+      allow :bla_of => $account
+      allow :foo
+    end
+    on :bar do 
+      allow :bar
+    end
+  end
+  
+  def account
+    $account
+  end
+  
+  def test
+    guard!(:foo, :bar)
+  rescue
+  end  
+end
+
+$foo = Foo.new
+
+ns = [1000, 2000, 5000, 10000]
+
+ns.each do |n|
+  puts "#{n} times:"
+  Benchmark.bm(10) do |bm| 
+    bm.report("Assign:") { n.times {|x| $account.assign_role!("foo#{x}") } }
+    bm.report("Check:")  { n.times {|x| $account.has_role?("foo#{x}") } }
+    bm.report("Guard:")  { n.times {|x| $foo.test } }
+    bm.report("Delete:") { n.times {|x| $account.delete_role!("foo#{x}") } }
+  end
+  puts
+end
+

data/spec/spec_helper.rb

@@ -17,6 +17,13 @@ class StubSuspect
   def id; 10; end 
 end
 
+class StubGuarded
+  include Aclatraz::Guard
+  class << self
+    attr_accessor :name
+  end
+end
+
 class StubTarget
   def id; 10; end
 end

metadata

@@ -1,13 +1,13 @@
 --- !ruby/object:Gem::Specification 
 name: aclatraz
 version: !ruby/object:Gem::Version 
-  hash: 29
+  hash: 27
   prerelease: false
   segments: 
   - 0
-  - 0
   - 1
-  version: 0.0.1
+  - 0
+  version: 0.1.0
 platform: ruby
 authors: 
 - Kriss 'nu7hatch' Kowalik
@@ -15,7 +15,7 @@ autorequire:
 bindir: bin
 cert_chain: []
 
-date: 2010-09-10 00:00:00 +02:00
+date: 2010-09-16 00:00:00 +02:00
 default_executable: 
 dependencies: 
 - !ruby/object:Gem::Dependency 
@@ -79,7 +79,7 @@ dependencies:
         version: "1.0"
   type: :runtime
   version_requirements: *id004
-description: Extremaly fast and flexible access control mechanism inspired by *nix ACLs, powered by fast key value stores like Redis or TokyoCabinet.
+description: "      Extremaly fast and flexible access control mechanism inspired by *nix ACLs, \n      powered by fast key value stores like Redis or TokyoCabinet.\n"
 email: kriss.kowalik@gmail.com
 executables: []
 
@@ -91,10 +91,14 @@ extra_rdoc_files:
 files: 
 - .document
 - .gitignore
+- CHANGELOG.rdoc
 - LICENSE
 - README.rdoc
 - Rakefile
+- TODO.rdoc
 - VERSION
+- aclatraz.gemspec
+- examples/dinner.rb
 - lib/aclatraz.rb
 - lib/aclatraz/acl.rb
 - lib/aclatraz/guard.rb
@@ -108,6 +112,7 @@ files:
 - spec/aclatraz/stores_spec.rb
 - spec/aclatraz/suspect_spec.rb
 - spec/aclatraz_spec.rb
+- spec/alcatraz_bm.rb
 - spec/spec.opts
 - spec/spec_helper.rb
 has_rdoc: true
@@ -145,6 +150,7 @@ signing_key:
 specification_version: 3
 summary: Flexible access control that doesn't sucks!
 test_files: 
+- spec/alcatraz_bm.rb
 - spec/spec_helper.rb
 - spec/aclatraz/guard_spec.rb
 - spec/aclatraz/helpers_spec.rb
@@ -152,3 +158,4 @@ test_files:
 - spec/aclatraz/stores_spec.rb
 - spec/aclatraz/suspect_spec.rb
 - spec/aclatraz_spec.rb
+- examples/dinner.rb