action-guard 0.0.1

data/.document

@@ -0,0 +1,5 @@
+lib/**/*.rb
+bin/*
+- 
+features/**/*.feature
+LICENSE.txt

data/.gitignore

@@ -0,0 +1,42 @@
+# rcov generated
+coverage
+
+# rdoc generated
+rdoc
+
+# yard generated
+doc
+.yardoc
+
+# bundler
+.bundle
+
+# jeweler generated
+pkg
+
+# Have editor/IDE/OS specific files you need to ignore? Consider using a global gitignore: 
+#
+# * Create a file at ~/.gitignore
+# * Include files you want ignored
+# * Run: git config --global core.excludesfile ~/.gitignore
+#
+# After doing this, these files will be ignored in all your git projects,
+# saving you from having to 'pollute' every project you touch with them
+#
+# Not sure what to needs to be ignored for particular editors/OSes? Here's some ideas to get you started. (Remember, remove the leading # of the line)
+#
+# For MacOS:
+#
+#.DS_Store
+#
+# For TextMate
+#*.tmproj
+#tmtags
+#
+# For emacs:
+#*~
+#\#*
+#.\#*
+#
+# For vim:
+#*.swp

data/.rspec

@@ -0,0 +1 @@
+--color

data/Gemfile

@@ -0,0 +1,14 @@
+source "http://rubygems.org"
+# Add dependencies required to use your gem here.
+# Example:
+#   gem "activesupport", ">= 2.3.5"
+
+# Add dependencies to develop your gem here.
+# Include everything needed to run rake, tests, features, etc.
+group :development do
+  gem "rspec", "~> 2.5.0"
+  gem "bundler", "~> 1.0.0"
+  gem "jeweler", "~> 1.5.2"
+  gem "rcov", ">= 0"
+  gem "ZenTest", ">= 4.2.0"
+end

data/Gemfile.lock

@@ -0,0 +1,30 @@
+GEM
+  remote: http://rubygems.org/
+  specs:
+    ZenTest (4.4.2)
+    diff-lcs (1.1.2)
+    git (1.2.5)
+    jeweler (1.5.2)
+      bundler (~> 1.0.0)
+      git (>= 1.2.5)
+      rake
+    rake (0.8.7)
+    rcov (0.9.9)
+    rspec (2.5.0)
+      rspec-core (~> 2.5.0)
+      rspec-expectations (~> 2.5.0)
+      rspec-mocks (~> 2.5.0)
+    rspec-core (2.5.1)
+    rspec-expectations (2.5.0)
+      diff-lcs (~> 1.1.2)
+    rspec-mocks (2.5.0)
+
+PLATFORMS
+  ruby
+
+DEPENDENCIES
+  ZenTest (>= 4.2.0)
+  bundler (~> 1.0.0)
+  jeweler (~> 1.5.2)
+  rcov
+  rspec (~> 2.5.0)

data/LICENSE.txt

@@ -0,0 +1,20 @@
+Copyright (c) 2011 Rob Westgeest
+
+Permission is hereby granted, free of charge, to any person obtaining
+a copy of this software and associated documentation files (the
+"Software"), to deal in the Software without restriction, including
+without limitation the rights to use, copy, modify, merge, publish,
+distribute, sublicense, and/or sell copies of the Software, and to
+permit persons to whom the Software is furnished to do so, subject to
+the following conditions:
+
+The above copyright notice and this permission notice shall be
+included in all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
+EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
+NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
+LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
+OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
+WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

data/README.md

@@ -0,0 +1,37 @@
+ActionGuard is a simple authorization module to be used in rails
+applications. It well be usable for any other ruby based web framework.
+
+It's been developed as part of some of my own rails application with the
+following design principles in mind:
+
+* roles are string values, and role definitions reside in program code,
+  not in a database. 
+* authorisation rules are collected in one configuration file, rather
+  than spreading them out over controller definitions.
+* authorisations are on url path matches. In rails' case, you pass
+  'fullpath' to the authorization which is then matched against a set of 
+  authorisation rules.
+
+# Installing
+
+
+
+# Usage
+
+Assuming a Rails application you specify an initializer with the
+following content
+
+
+
+        role :god , 0
+        role :admin, 1
+        role :worker, 2
+
+        allow '/'
+        allow '/tracking', :at_least => :admin
+        allow '/maintenance', :at_least => :worker
+        allow '/maintenance/[0-9]*/edit', :at_least => :admin
+        allow '/maintenance/[0-9]*$', :at_least => :admin
+
+
+

data/Rakefile

@@ -0,0 +1,59 @@
+$LOAD_PATH.unshift File.expand_path("../lib", __FILE__)
+require 'rubygems'
+require 'bundler'
+require 'action-guard/version'
+
+begin
+  Bundler.setup(:default, :development)
+rescue Bundler::BundlerError => e
+  $stderr.puts e.message
+  $stderr.puts "Run `bundle install` to install missing gems"
+  exit e.status_code
+end
+
+require 'rake'
+
+require 'jeweler'
+
+Jeweler::Tasks.new do |gem|
+  # gem is a Gem::Specification... see http://docs.rubygems.org/read/chapter/20 for more options
+  gem.name = "action-guard"
+  gem.homepage = "http://github.com/rwestgeest/action-guard"
+  gem.license = "MIT"
+  gem.summary = %Q{Action guard-#{ActionGuard::Version::STRING}}
+  gem.description = %Q{authorisation module of actions based on url-paths for usage in Rails and possibly other ruby based web frameworks}
+  gem.email = "rob.westgeest@qwan.it"
+  gem.authors = ["Rob Westgeest"]
+  # Include your dependencies below. Runtime dependencies are required when using your gem,
+  # and development dependencies are only needed for development (ie running rake tasks, tests, etc)
+  #  gem.add_runtime_dependency 'jabber4r', '> 0.1'
+  gem.add_development_dependency 'rspec', '> 2.5.0'
+  gem.files            = `git ls-files`.split("\n")
+  gem.test_files       = `git ls-files -- {spec}/*`.split("\n")
+  gem.extra_rdoc_files = [ "README.md" ]
+  gem.rdoc_options     = ["--charset=UTF-8"]
+  gem.require_path     = "lib"
+end
+
+Jeweler::RubygemsDotOrgTasks.new
+
+require 'rspec/core'
+require 'rspec/core/rake_task'
+RSpec::Core::RakeTask.new(:spec) do |spec|
+  spec.pattern = FileList['spec/**/*_spec.rb']
+end
+
+RSpec::Core::RakeTask.new(:rcov) do |spec|
+  spec.pattern = 'spec/**/*_spec.rb'
+  spec.rcov = true
+end
+
+task :default => :spec
+
+require 'rake/rdoctask'
+Rake::RDocTask.new do |rdoc|
+  rdoc.rdoc_dir = 'rdoc'
+  rdoc.title = "action-guard #{ActionGuard::Version::STRING}"
+  rdoc.rdoc_files.include('README*')
+  rdoc.rdoc_files.include('lib/**/*.rb')
+end

data/VERSION

@@ -0,0 +1 @@
+0.0.1

data/action_guard.gemspec

@@ -0,0 +1,24 @@
+# -*- encoding: utf-8 -*-
+$LOAD_PATH.unshift File.expand_path("../lib", __FILE__)
+require "action_guard/version"
+
+Gem::Specification.new do |s|
+  s.name        = "action_guard"
+  s.version     = ActionGuard::Version::STRING
+  s.platform    = Gem::Platform::RUBY
+  s.authors     = ["Rob Westgeest"]
+  s.email       = "rob.westgeest@gmail.com"
+  s.homepage    = "http://github.com/actionguard"
+  s.summary     = "actionguard-#{ActionGuard::Version::STRING}"
+  s.description = "authorisation of actions based on url-paths"
+
+  s.rubygems_version   = "1.3.7"
+  s.rubyforge_project  = "actionguard"
+
+  s.files            = `git ls-files`.split("\n")
+  s.test_files       = `git ls-files -- {spec}/*`.split("\n")
+  s.extra_rdoc_files = [ "README.md" ]
+  s.rdoc_options     = ["--charset=UTF-8"]
+  s.require_path     = "lib"
+end
+

data/lib/action-guard.rb

@@ -0,0 +1,26 @@
+require 'action-guard/syntax'
+require 'action-guard/rules'
+require 'action-guard/role'
+require 'action-guard/base'
+
+module ActionGuard
+  class Error < StandardError; end
+
+  def self.flush
+    @action_guard = ActionGuard::Guard.new
+  end
+
+  def self.load_from_file(file_path)
+    raise "authorization file #{file_path} not found" unless File.file?(file_path)
+    @action_guard = ActionGuard::Guard.new
+    @action_guard.load_from_string(File.read(file_path), file_path)
+  end
+
+  def self.authorized?(person, path)
+    @action_guard.authorized?(person, path) 
+  end
+
+  def self.valid_roles
+    @action_guard.valid_roles
+  end
+end

data/lib/action-guard/base.rb

@@ -0,0 +1,56 @@
+module ActionGuard
+  class Guard
+    def initialize
+      @rules = {}
+      @rules.default = DisallowRule.new
+      @roles = {}
+      @roles.default = Role.new(:illegal_role, 100000)
+    end
+
+    def load_from_string(configuration, name = nil)
+      Syntax.new(self).instance_eval(configuration, name || 'unknown')
+    end
+
+    def define_role(role, level)
+      @roles[role.to_sym] = Role.new(role, level)
+    end
+
+    def role(role_value)
+      @roles[role_value.to_sym]
+    end
+
+    def valid_role?(role)
+      @roles.has_key?(role.to_sym)
+    end
+
+    def valid_roles
+      @roles.keys.map { |r| r.to_s }
+    end
+
+    def leveled_rule(path_matcher, role_value, &block)
+      raise Error.new("undefined role '#{role_value}'") unless valid_role?(role_value)
+      rules[path_matcher] = LevelRule.new(role_value, self, &block)
+    end
+
+    def allow_rule(path_matcher)
+      rules[path_matcher] = AllowRule.new
+    end
+
+    def refuse_rule(path_matcher)
+      rules[path_matcher] = DisallowRule.new
+    end
+
+    def exact_role_rule(path_matcher, role_value)
+      rules[path_matcher] = ExactRoleRule.new(role_value)
+    end
+
+    def authorized?(person, path)
+      raise Error.new("no configuration loaded") if rules.empty?
+      rule_key = rules.keys.sort{|x,y| y <=> x }.select {|k| path =~ /^#{k}/}.first
+      rules[rule_key].allows?(person)
+    end
+
+    private
+    attr_reader :rules
+  end
+end

data/lib/action-guard/role.rb

@@ -0,0 +1,17 @@
+module ActionGuard
+  class Role
+    attr_reader :level
+    def initialize(value, level)
+      @value = value
+      @level = level
+    end
+
+    def >=(other)
+      level <= other.level
+    end
+
+    def to_s
+      "Role(:#{@value})"
+    end
+  end
+end

data/lib/action-guard/rules.rb

@@ -0,0 +1,38 @@
+module ActionGuard
+  class ExactRoleRule
+    def initialize(role)
+      @allowed_role = role.to_s
+    end
+    def allows?(person)
+      return false unless person
+      return person.role.to_s == @allowed_role
+    end
+  end
+
+  class LevelRule
+    def initialize(allowed_level, role_leveler, &proc)
+      @role_leveler = role_leveler
+      @allowed_level = allowed_level
+      @additional_rule = proc
+    end
+
+    def allows?(person)
+      return false unless person
+      return false unless @role_leveler.role(person.role) >= @role_leveler.role(@allowed_level)
+      return true unless @additional_rule
+      return @additional_rule.call(person)
+    end
+  end
+
+  class AllowRule
+    def allows?(person)
+      true
+    end
+  end
+
+  class DisallowRule
+    def allows?(person)
+      false
+    end
+  end
+end

data/lib/action-guard/syntax.rb

@@ -0,0 +1,19 @@
+module ActionGuard
+  class Syntax
+    def initialize(action_guard)
+      @guard = action_guard
+    end
+    def role(role_value, role_level)
+      @guard.define_role(role_value, role_level)
+    end
+    def allow(path, options={}, &block)
+      if options.has_key? :at_least
+        @guard.leveled_rule(path, options[:at_least], &block)
+      elsif options.has_key? :only_by
+        @guard.exact_role_rule(path, options[:only_by])
+      else
+        @guard.allow_rule path
+      end
+    end
+  end
+end

data/lib/action-guard/version.rb

@@ -0,0 +1,5 @@
+module ActionGuard # :nodoc:
+  module Version # :nodoc:
+    STRING = File.read(File.join(File.dirname(__FILE__),'..','..', 'VERSION'))
+  end
+end

data/script/authorization.rules

@@ -0,0 +1,10 @@
+role :god , 0
+role :admin, 1
+role :worker, 2
+
+allow '/'
+allow '/tracking', :at_least => :admin
+allow '/maintenance', :at_least => :worker
+allow '/maintenance/[0-9]*/edit', :at_least => :admin
+allow '/maintenance/[0-9]*$', :at_least => :admin
+

data/script/console

@@ -0,0 +1,8 @@
+#!/usr/bin/env ruby
+require "irb"
+lib_path = File.expand_path(File.dirname(__FILE__) + "/../lib")
+$LOAD_PATH.unshift lib_path unless $LOAD_PATH.include?(lib_path)
+
+require 'action_guard'
+
+IRB.start(__FILE__)

data/spec/action-guard_spec.rb

@@ -0,0 +1,214 @@
+require 'spec_helper'
+
+RSpec::Matchers.define :authorize do |account| 
+  chain :to_perform_action do |action|
+    @action = action
+  end
+  match do |actual_guard| 
+    actual_guard.authorized?(account, @action)
+  end
+end
+
+describe ActionGuard do
+  let (:guard) { ActionGuard::Guard.new }
+
+
+  def account_with_role(role)
+      return stub(:account,:role => role)
+  end
+
+  describe "valid_role" do
+    before do 
+      guard.define_role :god, 0
+    end
+
+    it "is true when the roles is defined" do
+      guard.valid_role?(:god).should be_true
+      guard.valid_role?('god').should be_true
+
+    end
+    it "is fals when the role is not defined" do
+      guard.valid_role?(:biker).should_not be_true
+    end
+
+    it "returns the valid roles on request" do
+      guard.valid_roles.should == ['god']
+    end
+  end
+
+  describe "role" do
+    describe ">=" do
+      before do 
+        guard.define_role :god, 0
+        guard.define_role :admin, 1
+      end
+      it "should be true when role level is lower" do
+        guard.role(:god).should >= guard.role(:admin)
+      end
+      it "should be true when role level is equal" do
+        guard.role(:god).should >= guard.role(:god)
+      end
+      it "should be false when role level is higher" do
+        guard.role(:admin).should_not >= guard.role(:god)
+      end
+    end
+  end
+
+  describe "defining a rule" do
+    it "fails when role not defined" do
+      lambda {
+        guard.leveled_rule '/some_controller/some_action', :biker
+      }.should raise_error ActionGuard::Error
+    end
+    it "passes when role defined" do
+      lambda {
+        guard.define_role :biker, 0
+        guard.leveled_rule '/some_controller/some_action', :biker
+      }.should_not raise_error ActionGuard::Error
+    end
+  end
+
+  describe "authorization when no rules defined" do
+    it "raises error on trying to authorize" do
+      lambda {
+        guard.authorized?(account_with_role(:admin), '/some_controller/some_action')
+      }.should raise_error ActionGuard::Error
+    end
+  end
+
+  describe "authorization"  do
+    before do
+      guard.define_role :admin, 0
+      guard.define_role :worker, 1
+    end
+
+    describe "on an allowance rule" do
+      before do
+        guard.allow_rule '/'
+      end
+      it "allows" do
+        guard.should authorize(account_with_role(:worker)).to_perform_action('/')
+      end
+      it "allows regardless of account" do
+        guard.should authorize(nil).to_perform_action( '/')
+      end
+    end
+
+    describe "on an exact rule" do
+      before do
+        guard.exact_role_rule '/', :admin
+      end
+      it "allows if role matches" do
+        guard.should authorize(account_with_role(:admin)).to_perform_action( '/')
+      end
+      it "allows if role is a string" do
+        guard.should authorize(account_with_role('admin')).to_perform_action('/')
+      end
+      it "does not allow action if role does not match" do
+        guard.should_not authorize(account_with_role(:worker)).to_perform_action('/')
+        guard.should_not authorize(account_with_role(:god)).to_perform_action('/')
+      end
+      it "does not allow action if person not passed" do
+        guard.should_not authorize(nil).to_perform_action('/')
+      end
+    end
+
+    describe "on a leveled action rule" do
+      before do
+        guard.leveled_rule '/some_controller/some_action', :admin
+      end
+
+      it "disallows action when no account available" do
+        guard.should_not authorize(nil).to_perform_action('/some_controller/some_action')
+      end
+
+      it "allows action for that level and higher" do
+        guard.should authorize(account_with_role(:admin)).to_perform_action('/some_controller/some_action')
+        guard.should_not authorize(account_with_role(:worker)).to_perform_action('/some_controller/some_action')
+      end
+
+      it "does not allow the action for a account with an illegal role value" do
+        guard.should_not authorize(account_with_role(:biker)).to_perform_action('/some_controller/some_action')
+      end
+    end
+
+    describe "on a leveled action rule with a block" do
+      let(:mock_block_body) { mock }
+
+      before do
+        guard.leveled_rule('/some_controller/some_action', :admin) do |accnt|
+          mock_block_body.block_called(accnt)
+        end
+      end
+
+      it "does not authorize action if the rule disallows the action" do
+        account = account_with_role(:worker)
+        mock_block_body.should_receive(:block_called).with(account).never
+        guard.should_not authorize(account).to_perform_action('/some_controller/some_action')
+      end
+
+      it "does not authorize action if role sufices and block returns false" do
+        account = account_with_role(:admin)
+        mock_block_body.should_receive(:block_called).with(account).and_return false
+        guard.should_not be_authorized(account,'/some_controller/some_action')
+      end
+
+      it "authorizes action is role sufices and block returns true" do
+        account = account_with_role(:admin)
+        mock_block_body.should_receive(:block_called).with(account).and_return true
+        guard.should be_authorized(account,'/some_controller/some_action')
+      end
+    end
+
+    describe "matching rules" do
+      before do
+        guard.allow_rule('/home')
+        guard.refuse_rule('/maintenance')
+      end
+      it "does not authorize if path does not match any rule" do
+        guard.authorized?(nil, '/unmatched/path').should be_false
+      end
+      it "matches a rule on exact path" do
+        guard.should authorize(nil).to_perform_action('/home')
+      end
+      it "matches a rule on part of a path" do
+        guard.should authorize(nil).to_perform_action('/home/contact')
+      end
+      it "preferres a longer path" do
+        guard.allow_rule('/maintenance/show')
+        guard.authorized?(nil, '/maintenance/edit/1').should be_false
+        guard.should authorize(nil).to_perform_action('/maintenance/show/1')
+      end
+      it "preferres a longer path regardless off order of appearance" do
+        guard.allow_rule('/some_path/show')
+        guard.refuse_rule('/some_path')
+        guard.authorized?(nil, '/some_path/edit/1').should be_false
+        guard.should authorize(nil).to_perform_action('/some_path/show/1')
+      end
+      it "matches all rules from the beginnning of the path" do
+        # /home/maintenance is evaluated by /home, not by /maintenance
+        guard.should authorize(nil).to_perform_action('/home/maintenance')
+      end
+    end
+  end
+
+  describe "load configuration" do
+    it "loads rules from string" do
+      guard.load_from_string %q{
+        role :worker, 1
+        role :admin, 0
+        allow '/some_controller', :at_least => :worker
+        allow '/some_controller/some_action', :at_least => :admin
+        allow '/some_controller/when_role_matches_exact', :only_by => :worker
+        allow '/'
+      }
+      guard.should authorize(account_with_role(:admin)).to_perform_action('/some_controller/some_action')
+      guard.should_not authorize(account_with_role(:worker)).to_perform_action('/some_controller/some_action')
+      guard.should authorize(account_with_role(:worker)).to_perform_action('/some_controller/some_other_action')
+      guard.should authorize(account_with_role(:worker)).to_perform_action('/some_other_controller/some_other_action')
+      guard.should authorize(nil).to_perform_action('/some_other_controller/some_other_action')
+      guard.should_not authorize(account_with_role(:admin)).to_perform_action('/some_controller/when_role_matches_exact')
+    end
+  end
+end
+

data/spec/spec_helper.rb

@@ -0,0 +1,13 @@
+$LOAD_PATH.unshift(File.join(File.dirname(__FILE__), '..', 'lib'))
+$LOAD_PATH.unshift(File.dirname(__FILE__))
+require 'rspec'
+require 'action-guard'
+
+# Requires supporting files with custom matchers and macros, etc,
+# in ./support/ and its subdirectories.
+Dir["#{File.dirname(__FILE__)}/support/**/*.rb"].each {|f| require f}
+
+RSpec.configure do |config|
+  config.filter_run :focus => true
+  config.run_all_when_everything_filtered = true
+end

metadata

@@ -0,0 +1,179 @@
+--- !ruby/object:Gem::Specification 
+name: action-guard
+version: !ruby/object:Gem::Version 
+  hash: 29
+  prerelease: false
+  segments: 
+  - 0
+  - 0
+  - 1
+  version: 0.0.1
+platform: ruby
+authors: 
+- Rob Westgeest
+autorequire: 
+bindir: bin
+cert_chain: []
+
+date: 2011-06-26 00:00:00 +02:00
+default_executable: 
+dependencies: 
+- !ruby/object:Gem::Dependency 
+  type: :development
+  prerelease: false
+  name: rspec
+  version_requirements: &id001 !ruby/object:Gem::Requirement 
+    none: false
+    requirements: 
+    - - ~>
+      - !ruby/object:Gem::Version 
+        hash: 27
+        segments: 
+        - 2
+        - 5
+        - 0
+        version: 2.5.0
+  requirement: *id001
+- !ruby/object:Gem::Dependency 
+  type: :development
+  prerelease: false
+  name: bundler
+  version_requirements: &id002 !ruby/object:Gem::Requirement 
+    none: false
+    requirements: 
+    - - ~>
+      - !ruby/object:Gem::Version 
+        hash: 23
+        segments: 
+        - 1
+        - 0
+        - 0
+        version: 1.0.0
+  requirement: *id002
+- !ruby/object:Gem::Dependency 
+  type: :development
+  prerelease: false
+  name: jeweler
+  version_requirements: &id003 !ruby/object:Gem::Requirement 
+    none: false
+    requirements: 
+    - - ~>
+      - !ruby/object:Gem::Version 
+        hash: 7
+        segments: 
+        - 1
+        - 5
+        - 2
+        version: 1.5.2
+  requirement: *id003
+- !ruby/object:Gem::Dependency 
+  type: :development
+  prerelease: false
+  name: rcov
+  version_requirements: &id004 !ruby/object:Gem::Requirement 
+    none: false
+    requirements: 
+    - - ">="
+      - !ruby/object:Gem::Version 
+        hash: 3
+        segments: 
+        - 0
+        version: "0"
+  requirement: *id004
+- !ruby/object:Gem::Dependency 
+  type: :development
+  prerelease: false
+  name: ZenTest
+  version_requirements: &id005 !ruby/object:Gem::Requirement 
+    none: false
+    requirements: 
+    - - ">="
+      - !ruby/object:Gem::Version 
+        hash: 55
+        segments: 
+        - 4
+        - 2
+        - 0
+        version: 4.2.0
+  requirement: *id005
+- !ruby/object:Gem::Dependency 
+  type: :development
+  prerelease: false
+  name: rspec
+  version_requirements: &id006 !ruby/object:Gem::Requirement 
+    none: false
+    requirements: 
+    - - ">"
+      - !ruby/object:Gem::Version 
+        hash: 27
+        segments: 
+        - 2
+        - 5
+        - 0
+        version: 2.5.0
+  requirement: *id006
+description: authorisation module of actions based on url-paths for usage in Rails and possibly other ruby based web frameworks
+email: rob.westgeest@qwan.it
+executables: []
+
+extensions: []
+
+extra_rdoc_files: 
+- README.md
+files: 
+- .document
+- .gitignore
+- .rspec
+- Gemfile
+- Gemfile.lock
+- LICENSE.txt
+- README.md
+- Rakefile
+- VERSION
+- action_guard.gemspec
+- lib/action-guard.rb
+- lib/action-guard/base.rb
+- lib/action-guard/role.rb
+- lib/action-guard/rules.rb
+- lib/action-guard/syntax.rb
+- lib/action-guard/version.rb
+- script/authorization.rules
+- script/console
+- spec/action-guard_spec.rb
+- spec/spec_helper.rb
+has_rdoc: true
+homepage: http://github.com/rwestgeest/action-guard
+licenses: 
+- MIT
+post_install_message: 
+rdoc_options: 
+- --charset=UTF-8
+require_paths: 
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement 
+  none: false
+  requirements: 
+  - - ">="
+    - !ruby/object:Gem::Version 
+      hash: 3
+      segments: 
+      - 0
+      version: "0"
+required_rubygems_version: !ruby/object:Gem::Requirement 
+  none: false
+  requirements: 
+  - - ">="
+    - !ruby/object:Gem::Version 
+      hash: 3
+      segments: 
+      - 0
+      version: "0"
+requirements: []
+
+rubyforge_project: 
+rubygems_version: 1.3.7
+signing_key: 
+specification_version: 3
+summary: Action guard-0.0.1
+test_files: []
+