RubyGems - active_permission - Versions diffs - 0.1.1 → 0.2.0 - Mend

active_permission 0.1.1 → 0.2.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (6) hide show

checksums.yaml +4 -4
data/README.md +39 -0
data/lib/active_permission.rb +6 -4
data/lib/active_permission/controller_additions.rb +6 -6
data/lib/active_permission/version.rb +1 -1
metadata +2 -2

checksums.yaml CHANGED

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: 5d51048fc3edb6e14ac8f39eaf433b70371fe9f7
-  data.tar.gz: a6dac96c1c9df176981a6fd6ae6a157f564c3d96
+  metadata.gz: 4822a5239730d4ab16ad3ad140ad83a42d316386
+  data.tar.gz: 9e72ad4a57f7fcf80ed87a123ccebaf507db91b2
 SHA512:
-  metadata.gz: 2082819334f72c46e40522642d17542aa4aaf95d8fb690c860e6b31e2b2d1e5428e41200d584cf8a4e5e4cbc0cc73796870ef5ed859de06ba9752ff42f611ad2
-  data.tar.gz: 6d9e8299ea7b794178e401bb29d96ee80043741f70533671429e1eac50b8f1d83640b2e5ca5da75bc7d15a9b7c7ed2a94100214f7bdaffb4df92d92752befd0e
+  metadata.gz: 3c23dd91e7b24ffcfcbf2581a9d02862a2cc05a766aaf4f31e9a6666059ea22c4197ed6b693633c8969030b619b81e1b0c75dba7145d02d5a0ca9ea03dd915b7
+  data.tar.gz: c55fe1ecaf350a2d76aa01d187a63de3645d03a068e03c9812fec4270de8ba61b75857c2eb63171f5c91df833bc199890aaa1ddd5020ade825a4bd204d50af7a

data/README.md CHANGED

@@ -1,5 +1,7 @@
 # ActivePermission
+[![Gem Version](https://badge.fury.io/rb/active_permission.svg)](http://badge.fury.io/rb/active_permission)
 This gem allow you load and authorize resource in Ruby on Rails inside controllers or views using rules with described permissions of user.
 ## Installation
@@ -40,6 +42,19 @@ end
 ### Load Resource and authorization examples
+```
+class ApplicationController < ActionController::Base
+  include ActivePermission::ControllerAdditions
+private
+  def current_user
+    @current_user ||= User.find(session[:user_id]) if session[:user_id]
+  end
+  def current_permissions
+    @permission ||= Permission.new(current_user)
+  end
+end
+```
 ```
 class BooksController < ApplicationController
   resource :book, object: 'Book'
@@ -95,6 +110,30 @@ end
 <% end %>
 ```
+### Rescue from ActivePermission::AccessDenied
+```
+  rescue_from ActivePermission::AccessDenied do |error|
+    if @current_user
+      logger.warn "#{@current_user.class}(#{@current_user.id}): #{error}"
+      flash[:warning] = t('Access denied')
+      redirect_to root_path
+    else
+      logger.warn "Anonymous: #{error}"
+      flash[:warning] = t('Must be signin')
+      redirect_to signin_path
+    end
+  end
+```
+```
+  rescue_from ActivePermission::AccessDenied do |error|
+    logger.warn "Controller: #{error.controller} Action: #{error.action} Object: #{error.object}"
+    flash[:warning] = t('Access denied')
+    redirect_to root_path
+  end
+```
 ## Contributing

data/lib/active_permission.rb CHANGED

@@ -4,10 +4,12 @@ require 'active_permission/base'
 module ActivePermission
   class AccessDenied < RuntimeError
-    attr_reader :secure
-    def initialize(message, secure = true)
-      super(message)
-      @secure = secure
+    attr_reader :controller, :action, :object
+    def initialize(controller = nil , action = nil , object = nil)
+      @controller = controller
+      @action = action
+      @object = object
+      super("Access denied in #{@controller}::#{@action} - #{object.inspect}")
     end
   end
 end

data/lib/active_permission/controller_additions.rb CHANGED

@@ -49,7 +49,7 @@ module ActivePermission
             if options[:through] and options[:association]
               object = instance_variable_get("@#{options[:through]}").send(options[:association])
             elsif options[:object].nil?
-              raise AccessDenied.new("Access denied in #{controller.params[:controller]}::#{controller.params[:action]}. Required set a option :object.")
+              raise AccessDenied.new(controller.params[:controller], controller.params[:action], object)
             elsif options[:object].kind_of? Symbol
               object = send(options[:object])
             elsif options[:object].kind_of? String
@@ -78,27 +78,27 @@ module ActivePermission
           current_permissions.can!(controller.params[:controller], controller.params[:action], *objects)
         end
       end
       def current_permissions
         @permissions ||= ActivePermission::Base.new
       end
     end
     module  InstanceMethods
-      def authorize!(resource, options = {})
+      def authorize!(resource = nil, options = {})
         options = params.merge(options)
         current_permissions.can!(options[:controller], options[:action], resource)
       end
-      def authorize?(resource, options = {})
+      def authorize?(resource = nil, options = {})
         options = params.merge(options)
         current_permissions.can?(options[:controller], options[:action], resource)
       end
     end
     def self.included(base)
-      base.extend ClassMethods
-      base.include InstanceMethods
+      base.send :extend, ClassMethods
+      base.send :include, InstanceMethods
       base.delegate :can?, :can!, :to => :current_permissions
       base.helper_method :can?, :can!
     end

data/lib/active_permission/version.rb CHANGED

@@ -1,3 +1,3 @@
 module ActivePermission
-  VERSION = '0.1.1'
+  VERSION = '0.2.0'
 end

metadata CHANGED

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: active_permission
 version: !ruby/object:Gem::Version
-  version: 0.1.1
+  version: 0.2.0
 platform: ruby
 authors:
 - Evgeniy Shurmin
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2015-01-28 00:00:00.000000000 Z
+date: 2015-02-09 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: bundler