action_policy 0.7.1 → 0.7.2

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 9a2cec9201751bbc94bfa0875d8b4ed69500cdeea4ab4a1d9717a1786b3adba8
-  data.tar.gz: 4b0be37589400d6491bf4e7b5c7a6e2e46b5e71629f9c6b93d28c59f58b0d4ec
+  metadata.gz: 5c3b8d128bdf4e37224446e7c5a65698327a927c743e99757cf6f5363db93ff5
+  data.tar.gz: f046c13d93cff63aa06fd15f4d6375a8498c04d0637110df0ff86891a206fb84
 SHA512:
-  metadata.gz: 3751003181c14a8f2f71889525597d7b53cd2553cc52e955bbd668891f27ae34ec684fce36b1118b57c1527f78cdf6dca98b90b1dec7efc6cd20e59dc9f18fde
-  data.tar.gz: c6d0b96504ac2f70264b12df798cbbf4fc953b139666522e5dad8b6b3c5fd8702d522d21ed35c6023443b9ba9872720499931b3996e64e3d5652b600eb23e2a0
+  metadata.gz: b66f496343688a55907070ba6b6e82e24a5d358934d6809e1577e80f2c67a81342fe449cbf46942c1e8ff064f79ae898235efa32b63e9fc402e5b416bc223efc
+  data.tar.gz: 57088a306e642a0dd22a68c4da019dbd8669e7fa63ec1e99fb7bb819a563ca514be2200c669486d40f5a4b152a325ee0adc3abcaa6187b45c1f0ef37ddcb7a86

data/CHANGELOG.md

@@ -2,6 +2,16 @@
 
 ## master
 
+## 0.7.2 (2024-11-21)
+
+- Fix missing details in deny! message interpolation. ([@palkan][])
+
+- Fix implicit authorization target in anonymous controllers. ([@palkan][])
+
+- Improve default `ActionPolicy::Unauthorized` error message. ([@Spone][])
+
+Before: `Not Authorized` / After: `Not authorized: UserPolicy#create? returns false`
+
 ## 0.7.1 (2024-07-25)
 
 - Support passing scope options to callable scope objects. ([@palkan][])
@@ -524,3 +534,4 @@ This value is now stored in a cache (if any) instead of just the call result (`t
 [@tomdalling]: https://github.com/tomdalling
 [@matsales28]: https://github.com/matsales28
 [@killondark]: https://github.com/killondark
+[@Spone]: https://github.com/Spone

data/lib/.rbnext/3.0/action_policy/policy/reasons.rb

@@ -220,7 +220,7 @@ module ActionPolicy
       end
 
       def deny!(reason = nil)
-        result&.reasons&.add(self, reason) if reason
+        result&.reasons&.add(self, reason, result.details) if reason
         super()
       end
     end

data/lib/action_policy/authorizer.rb

@@ -10,7 +10,7 @@ module ActionPolicy
       @rule = rule
       @result = policy.result
 
-      super("Not Authorized")
+      super("Not authorized: #{@policy}##{@rule} returns false")
     end
   end
 

data/lib/action_policy/policy/reasons.rb

@@ -220,7 +220,7 @@ module ActionPolicy
       end
 
       def deny!(reason = nil)
-        result&.reasons&.add(self, reason) if reason
+        result&.reasons&.add(self, reason, result.details) if reason
         super()
       end
     end

data/lib/action_policy/rails/controller.rb

@@ -56,7 +56,7 @@ module ActionPolicy
     # Tries to infer the resource class from controller name
     # (i.e. `controller_name.classify.safe_constantize`).
     def implicit_authorization_target
-      controller_name.classify.safe_constantize
+      controller_name&.classify&.safe_constantize
     end
 
     def verify_authorized

data/lib/action_policy/version.rb

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 
 module ActionPolicy
-  VERSION = "0.7.1"
+  VERSION = "0.7.2"
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: action_policy
 version: !ruby/object:Gem::Version
-  version: 0.7.1
+  version: 0.7.2
 platform: ruby
 authors:
 - Vladimir Dementyev
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2024-07-25 00:00:00.000000000 Z
+date: 2024-11-21 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: ruby-next-core