RubyGems - activeadmin - Versions diffs - 0.5.1 → 0.6.0 - Mend

activeadmin 0.5.1 → 0.6.0

Potentially problematic release.

This version of activeadmin might be problematic. Click here for more details.

Files changed (196) hide show

data/.travis.yml +8 -5
data/CHANGELOG.md +151 -0
data/Gemfile +16 -16
data/LICENSE +1 -1
data/activeadmin.gemspec +1 -0
data/app/assets/images/active_admin/index_list_icons/block_icon.svg +10 -0
data/app/assets/images/active_admin/index_list_icons/blog_icon.svg +4 -0
data/app/assets/images/active_admin/index_list_icons/grid_icon.svg +13 -0
data/app/assets/images/active_admin/index_list_icons/table_icon.svg +3 -0
data/app/assets/javascripts/active_admin/components/jquery.aa.checkbox-toggler.js.coffee +17 -44
data/app/assets/javascripts/active_admin/components/jquery.aa.dropdown-menu.js.coffee +2 -4
data/app/assets/javascripts/active_admin/components/jquery.aa.popover.js.coffee +0 -3
data/app/assets/javascripts/active_admin/components/jquery.aa.table-checkbox-toggler.js.coffee +10 -12
data/app/assets/javascripts/active_admin/pages/application.js.coffee +13 -10
data/app/assets/javascripts/active_admin/pages/batch_actions.js.coffee +3 -3
data/app/assets/stylesheets/active_admin/_base.css.scss +1 -0
data/app/assets/stylesheets/active_admin/_header.css.scss +5 -2
data/app/assets/stylesheets/active_admin/components/_dropdown_menu.scss +2 -2
data/app/assets/stylesheets/active_admin/components/_index_list.scss +12 -0
data/app/assets/stylesheets/active_admin/components/_popovers.css.scss +2 -2
data/app/assets/stylesheets/active_admin/components/_table_tools.css.scss +2 -2
data/app/assets/stylesheets/active_admin/mixins/_buttons.css.scss +4 -4
data/app/assets/stylesheets/active_admin/mixins/_gradients.css.scss +5 -4
data/app/assets/stylesheets/active_admin/mixins/_sections.css.scss +1 -1
data/app/assets/stylesheets/active_admin/pages/_logged_out.scss +1 -1
data/app/assets/stylesheets/active_admin/print.css.scss +2 -2
data/app/assets/stylesheets/active_admin/structure/_title_bar.scss +1 -1
data/app/views/active_admin/devise/unlocks/new.html.erb +14 -12
data/docs/1-general-configuration.md +13 -0
data/docs/10-custom-pages.md +40 -28
data/docs/11-decorators.md +6 -4
data/docs/12-arbre-components.md +1 -1
data/docs/13-authorization-adapter.md +206 -0
data/docs/2-resource-customization.md +129 -14
data/docs/3-index-pages.md +65 -0
data/docs/3-index-pages/create-an-index.md +29 -0
data/docs/3-index-pages/index-as-table.md +35 -11
data/docs/5-forms.md +2 -2
data/features/authorization.feature +64 -0
data/features/authorization_cancan.feature +52 -0
data/features/belongs_to.feature +41 -5
data/features/index/batch_actions.feature +27 -3
data/features/index/formats.feature +27 -0
data/features/index/index_as_table.feature +74 -2
data/features/index/index_parameters.feature +69 -0
data/features/index/index_scopes.feature +7 -11
data/features/index/page_title.feature +18 -0
data/features/index/switch_index_view.feature +73 -0
data/features/menu.feature +27 -0
data/features/registering_pages.feature +21 -0
data/features/step_definitions/additional_web_steps.rb +4 -0
data/features/step_definitions/batch_action_steps.rb +16 -6
data/features/step_definitions/index_scope_steps.rb +3 -3
data/features/step_definitions/index_views_steps.rb +3 -0
data/features/step_definitions/menu_steps.rb +4 -0
data/features/support/env.rb +4 -0
data/features/support/paths.rb +3 -0
data/lib/active_admin.rb +4 -0
data/lib/active_admin/application.rb +43 -76
data/lib/active_admin/authorization_adapter.rb +128 -0
data/lib/active_admin/base_controller.rb +18 -1
data/lib/active_admin/base_controller/authorization.rb +153 -0
data/lib/active_admin/base_controller/menu.rb +8 -3
data/lib/active_admin/batch_actions/resource_extension.rb +8 -7
data/lib/active_admin/batch_actions/views/batch_action_form.rb +1 -1
data/lib/active_admin/cancan_adapter.rb +40 -0
data/lib/active_admin/dashboards.rb +4 -5
data/lib/active_admin/dashboards/dashboard_controller.rb +1 -1
data/lib/active_admin/devise.rb +22 -7
data/lib/active_admin/dsl.rb +18 -5
data/lib/active_admin/engine.rb +1 -1
data/lib/active_admin/filters/dsl.rb +1 -1
data/lib/active_admin/filters/forms.rb +9 -7
data/lib/active_admin/filters/resource_extension.rb +20 -15
data/lib/active_admin/form_builder.rb +44 -49
data/lib/active_admin/helpers/optional_display.rb +4 -8
data/lib/active_admin/inputs/filter_boolean_input.rb +1 -1
data/lib/active_admin/inputs/filter_string_input.rb +5 -1
data/lib/active_admin/locales/bg.yml +1 -1
data/lib/active_admin/locales/ca.yml +1 -1
data/lib/active_admin/locales/cs.yml +26 -25
data/lib/active_admin/locales/da.yml +1 -1
data/lib/active_admin/locales/de.yml +1 -1
data/lib/active_admin/locales/en.yml +11 -1
data/lib/active_admin/locales/es.yml +16 -16
data/lib/active_admin/locales/fr.yml +1 -1
data/lib/active_admin/locales/he.yml +1 -1
data/lib/active_admin/locales/hr.yml +1 -1
data/lib/active_admin/locales/hu.yml +1 -1
data/lib/active_admin/locales/it.yml +1 -1
data/lib/active_admin/locales/ja.yml +4 -1
data/lib/active_admin/locales/ko.yml +1 -1
data/lib/active_admin/locales/lt.yml +1 -1
data/lib/active_admin/locales/lv.yml +12 -1
data/lib/active_admin/locales/nl.yml +2 -2
data/lib/active_admin/locales/no-NB.yml +22 -1
data/lib/active_admin/locales/pl.yml +1 -1
data/lib/active_admin/locales/pt-BR.yml +1 -1
data/lib/active_admin/locales/pt-PT.yml +81 -0
data/lib/active_admin/locales/ro.yml +1 -1
data/lib/active_admin/locales/ru.yml +1 -1
data/lib/active_admin/locales/sv-SE.yml +1 -1
data/lib/active_admin/locales/tr.yml +1 -1
data/lib/active_admin/locales/vi.yml +1 -1
data/lib/active_admin/locales/zh-CN.yml +1 -1
data/lib/active_admin/locales/zh-TW.yml +1 -1
data/lib/active_admin/menu.rb +76 -38
data/lib/active_admin/menu_collection.rb +96 -0
data/lib/active_admin/menu_item.rb +61 -71
data/lib/active_admin/namespace.rb +67 -5
data/lib/active_admin/page.rb +6 -0
data/lib/active_admin/page_controller.rb +13 -3
data/lib/active_admin/resource.rb +11 -20
data/lib/active_admin/resource/action_items.rb +3 -3
data/lib/active_admin/resource/controllers.rb +0 -17
data/lib/active_admin/resource/menu.rb +52 -24
data/lib/active_admin/resource/naming.rb +6 -10
data/lib/active_admin/resource/page_presenters.rb +57 -3
data/lib/active_admin/resource/routes.rb +46 -0
data/lib/active_admin/resource_controller.rb +2 -17
data/lib/active_admin/resource_controller/data_access.rb +299 -0
data/lib/active_admin/resource_controller/decorators.rb +2 -1
data/lib/active_admin/resource_dsl.rb +12 -14
data/lib/active_admin/router.rb +61 -56
data/lib/active_admin/scope.rb +28 -18
data/lib/active_admin/version.rb +1 -1
data/lib/active_admin/view_factory.rb +0 -1
data/lib/active_admin/view_helpers/breadcrumb_helper.rb +13 -19
data/lib/active_admin/view_helpers/fields_for.rb +2 -0
data/lib/active_admin/view_helpers/form_helper.rb +1 -1
data/lib/active_admin/view_helpers/method_or_proc_helper.rb +66 -11
data/lib/active_admin/views/components/attributes_table.rb +7 -4
data/lib/active_admin/views/components/index_list.rb +68 -0
data/lib/active_admin/views/components/paginated_collection.rb +13 -9
data/lib/active_admin/views/components/scopes.rb +2 -8
data/lib/active_admin/views/components/table_for.rb +1 -1
data/lib/active_admin/views/footer.rb +1 -1
data/lib/active_admin/views/header.rb +3 -2
data/lib/active_admin/views/index_as_block.rb +4 -0
data/lib/active_admin/views/index_as_blog.rb +4 -0
data/lib/active_admin/views/index_as_grid.rb +4 -0
data/lib/active_admin/views/index_as_table.rb +49 -7
data/lib/active_admin/views/pages/index.rb +19 -4
data/lib/active_admin/views/tabbed_navigation.rb +10 -54
data/lib/generators/active_admin/install/install_generator.rb +5 -1
data/lib/generators/active_admin/install/templates/active_admin.rb.erb +58 -0
data/spec/integration/{default_namespace.rb → default_namespace_spec.rb} +0 -16
data/spec/spec_helper.rb +3 -0
data/spec/support/detect_rails_version.rb +10 -3
data/spec/support/rails_template.rb +1 -1
data/spec/support/templates/post_decorator.rb +6 -6
data/spec/unit/application_spec.rb +5 -5
data/spec/unit/authorization/authorization_adapter_spec.rb +61 -0
data/spec/unit/authorization/controller_authorization_spec.rb +47 -0
data/spec/unit/base_controller_spec.rb +0 -2
data/spec/unit/batch_actions/resource_spec.rb +1 -1
data/spec/unit/breadcrumbs_spec.rb +3 -3
data/spec/unit/cancan_adapter_spec.rb +35 -0
data/spec/unit/config_shared_examples.rb +9 -30
data/spec/unit/devise_spec.rb +29 -0
data/spec/unit/dsl_spec.rb +61 -0
data/spec/unit/filters/filter_form_builder_spec.rb +58 -4
data/spec/unit/filters/resource_spec.rb +17 -5
data/spec/unit/form_builder_spec.rb +15 -0
data/spec/unit/menu_collection_spec.rb +62 -0
data/spec/unit/menu_item_spec.rb +51 -37
data/spec/unit/menu_spec.rb +33 -29
data/spec/unit/namespace/authorization_spec.rb +31 -0
data/spec/unit/namespace/register_page_spec.rb +6 -28
data/spec/unit/namespace/register_resource_spec.rb +11 -34
data/spec/unit/namespace_spec.rb +63 -2
data/spec/unit/page_controller_spec.rb +0 -3
data/spec/unit/reloader_spec.rb +5 -5
data/spec/unit/resource/menu_spec.rb +1 -13
data/spec/unit/resource/naming_spec.rb +20 -2
data/spec/unit/resource/page_presenters_spec.rb +14 -2
data/spec/unit/resource_controller/{collection_spec.rb → data_access_spec.rb} +31 -13
data/spec/unit/resource_controller_spec.rb +4 -5
data/spec/unit/resource_spec.rb +33 -11
data/spec/unit/routing_spec.rb +43 -0
data/spec/unit/scope_spec.rb +13 -0
data/spec/unit/view_factory_spec.rb +0 -1
data/spec/unit/view_helpers/fields_for_spec.rb +4 -0
data/spec/unit/view_helpers/form_helper_spec.rb +6 -2
data/spec/unit/view_helpers/method_or_proc_helper_spec.rb +97 -0
data/spec/unit/views/components/attributes_table_spec.rb +11 -0
data/spec/unit/views/components/index_list_spec.rb +32 -0
data/spec/unit/views/tabbed_navigation_spec.rb +42 -40
data/tasks/test.rake +1 -1
metadata +127 -40
data/lib/active_admin/menu_builder.rb +0 -65
data/lib/active_admin/resource_controller/callbacks.rb +0 -59
data/lib/active_admin/resource_controller/collection.rb +0 -158
data/lib/active_admin/views/utility_nav.rb +0 -41
data/spec/unit/base_controller_shared_examples.rb +0 -25
data/spec/unit/dsl_include_spec.rb +0 -20

data/lib/active_admin/authorization_adapter.rb ADDED

@@ -0,0 +1,128 @@
+module ActiveAdmin
+  # Default Authorization permissions for Active Admin
+  module Authorization
+    READ    = :read
+    CREATE  = :create
+    UPDATE  = :update
+    DESTROY = :destroy
+  end
+  Auth = Authorization
+  # Active Admin's default authorization adapter. This adapter returns true
+  # for all requests to `#authorized?`. It should be the starting point for
+  # implementing your own authorization adapter.
+  #
+  # To view an example subclass, check out `ActiveAdmin::CanCanAdapter`
+  class AuthorizationAdapter
+    attr_reader :resource, :user
+    # Initialize a new authorization adapter. This happens on each and
+    # every request to a controller.
+    #
+    # @param [ActiveAdmin::Resource, ActiveAdmin::Page] resource The resource
+    #        that the user is currently on. Note, we may be authorizing access
+    #        to a different subject, so don't rely on this other than to
+    #        pull configuration information from.
+    #
+    # @param [any] user The current user. The user is set to whatever is returned
+    #        from `#current_active_admin_user` in the controller.
+    #
+    def initialize(resource, user)
+      @resource = resource
+      @user = user
+    end
+    # Returns true of false depending on if the user is authorized to perform
+    # the action on the subject.
+    #
+    # @param [Symbol] action The name of the action to perform. Usually this will be
+    #        one of the `ActiveAdmin::Auth::*` symbols.
+    #
+    # @param [any] subject The subject the action is being performed on usually this
+    #        is a model object. Note, that this is NOT always in instance, it can be
+    #        the class of the subject also. For example, Active Admin uses the class
+    #        of the resource to decide if the resource should be displayed in the
+    #        global navigation. To deal with this nicely in a case statement, take
+    #        a look at `#normalized(klasss)`
+    #
+    # @returns [Boolean]
+    def authorized?(action, subject = nil)
+      true
+    end
+    # A hook method for authorization libraries to scope the collection. By
+    # default, we just return the same collection. The returned scope is used
+    # as the starting point for all queries to the db in the controller.
+    #
+    # @param [ActiveRecord::Relation] collection The collection the user is
+    #        attempting to view.
+    #
+    # @returns [ActiveRecord::Relation] A new collection, scoped to the
+    #          objects that the current user has access to.
+    def scope_collection(collection)
+      collection
+    end
+    private
+    # The `#authorized?` method's subject can be set to both instances as well
+    # as classes of objects. This can make it much difficult to create simple
+    # case statements for authorization since you have to handle both the
+    # class level match and the instance level match.
+    #
+    # For example:
+    #
+    #     class MyAuthAdapter < ActiveAdmin::AuthorizationAdapter
+    #
+    #       def authorized?(action, subject = nil)
+    #         case subject
+    #         when Post
+    #           true
+    #         when Class
+    #           if subject == Post
+    #             true
+    #           end
+    #         end
+    #       end
+    #
+    #     end
+    #
+    # To handle this, the normalized method takes care of returning a object
+    # which implements `===` to be matched in a case statement.
+    #
+    # The above now becomes:
+    #
+    #     class MyAuthAdapter < ActiveAdmin::AuthorizationAdapter
+    #
+    #       def authorized?(action, subject = nil)
+    #         case subject
+    #         when normalized(Post)
+    #           true
+    #         end
+    #       end
+    #
+    #     end
+    def normalized(klass)
+      NormalizedMatcher.new(klass)
+    end
+    class NormalizedMatcher
+      def initialize(klass)
+        @klass = klass
+      end
+      def ===(other)
+        @klass == other || other.is_a?(@klass)
+      end
+    end
+  end
+end

data/lib/active_admin/base_controller.rb CHANGED

@@ -1,4 +1,6 @@
 require 'inherited_resources'
+require 'active_admin/base_controller/authorization'
 require 'active_admin/base_controller/menu'
 module ActiveAdmin
@@ -7,7 +9,7 @@ module ActiveAdmin
   class BaseController < ::InheritedResources::Base
     helper ::ActiveAdmin::ViewHelpers
-    layout 'active_admin'
+    layout :determine_active_admin_layout
     before_filter :only_render_implemented_actions
     before_filter :authenticate_active_admin_user
@@ -29,6 +31,7 @@ module ActiveAdmin
     end
     include Menu
+    include Authorization
     private
@@ -57,5 +60,19 @@ module ActiveAdmin
     end
     helper_method :active_admin_namespace
+    ACTIVE_ADMIN_ACTIONS = [:index, :show, :new, :create, :edit, :update, :destroy]
+    # Determine which layout to use.
+    #
+    #   1.  If we're rendering a standard Active Admin action, we want layout(false)
+    #       because these actions are subclasses of the Base page (which implements
+    #       all the required layout code)
+    #   2.  If we're rendering a custom action, we'll use the active_admin layout so
+    #       that users can render any template inside Active Admin.
+    def determine_active_admin_layout
+      ACTIVE_ADMIN_ACTIONS.include?(params[:action].to_sym) ? false : 'active_admin'
+    end
   end
 end

data/lib/active_admin/base_controller/authorization.rb ADDED

@@ -0,0 +1,153 @@
+module ActiveAdmin
+  # Exception class to raise when there is an authorized access
+  # exception thrown. The exception has a few goodies that may
+  # be useful for capturing / recognizing security issues.
+  class AccessDenied < StandardError
+    attr_reader :user, :action, :subject
+    def initialize(user, action, subject)
+      @user, @action, @subject = user, action, subject
+      super()
+    end
+    def message
+      I18n.t("active_admin.access_denied.message")
+    end
+  end
+  class BaseController < ::InheritedResources::Base
+    module Authorization
+      include MethodOrProcHelper
+      extend ActiveSupport::Concern
+      ACTIONS_DICTIONARY = {
+        :index   => ActiveAdmin::Authorization::READ,
+        :show    => ActiveAdmin::Authorization::READ,
+        :new     => ActiveAdmin::Authorization::CREATE,
+        :create  => ActiveAdmin::Authorization::CREATE,
+        :edit    => ActiveAdmin::Authorization::UPDATE,
+        :update  => ActiveAdmin::Authorization::UPDATE,
+        :destroy => ActiveAdmin::Authorization::DESTROY
+      }
+      included do
+        rescue_from ActiveAdmin::AccessDenied, :with => :dispatch_active_admin_access_denied
+        helper_method :authorized?
+        helper_method :authorize!
+      end
+      protected
+      # Authorize the action and subject. Available in the controller
+      # as well as all the views.
+      #
+      # @param [Symbol] action The action to check if the user has permission
+      #                 to perform on the subject.
+      #
+      # @param [any] subject The subject that the user is trying to perform
+      #                 the action on.
+      #
+      # @returns [Boolean]
+      #
+      def authorized?(action, subject = nil)
+        active_admin_authorization.authorized?(action, subject)
+      end
+      # Authorize the action and subject. Available in the controller
+      # as well as all the views. If the action is not allowd, it raises
+      # an ActiveAdmin::AccessDenied exception.
+      #
+      # @param [Symbol] action The action to check if the user has permission
+      #                 to perform on the subject.
+      #
+      # @param [any] subject The subject that the user is trying to perform
+      #                 the action on.
+      #
+      # @returns [Boolean] True if authorized, otherwise raises
+      #                 an ActiveAdmin::AccessDenied.
+      def authorize!(action, subject = nil)
+        unless authorized? action, subject
+          raise ActiveAdmin::AccessDenied.new(current_active_admin_user,
+                                              action,
+                                              subject)
+        end
+      end
+      # Performs authorization on the resource using the current controller
+      # action as the permission action.
+      #
+      def authorize_resource!(resource)
+        permission = action_to_permission(params[:action])
+        authorize! permission, resource
+      end
+      # Retrieve or instantiate the authorization instance for this resource
+      #
+      # @returns [ActiveAdmin::AuthorizationAdapter]
+      def active_admin_authorization
+        @active_admin_authorization ||= active_admin_authorization_adapter.new(active_admin_config, current_active_admin_user)
+      end
+      # Returns the class to be used as the authorization adapter
+      #
+      # @returns [Class]
+      def active_admin_authorization_adapter
+        if active_admin_namespace.authorization_adapter.is_a?(String)
+          ActiveSupport::Dependencies.constantize(active_admin_namespace.authorization_adapter)
+        else
+          active_admin_namespace.authorization_adapter
+        end
+      end
+      # Converts a controller action into one of the correct Active Admin
+      # authorization names. Uses the ACTIONS_DICTIONARY to convert the
+      # action name to permission.
+      #
+      # @param [String, Symbol] action The controller action name.
+      #
+      # @returns [Symbol] The permission name to use.
+      def action_to_permission(action)
+        return nil unless action
+        action = action.to_sym
+        if Authorization::ACTIONS_DICTIONARY.has_key?(action)
+          Authorization::ACTIONS_DICTIONARY[action]
+        else
+          action
+        end
+      end
+      def dispatch_active_admin_access_denied(exception)
+        call_method_or_exec_proc active_admin_namespace.on_unauthorized_access, exception
+      end
+      def rescue_active_admin_access_denied(exception)
+        error_message = exception.message
+        respond_to do |format|
+          format.html do
+            flash[:error] = error_message
+            if request.headers.keys.include?("HTTP_REFERER")
+              redirect_to :back
+            else
+              controller, action = active_admin_namespace.root_to.split("#")
+              redirect_to :controller => controller, :action => action
+            end
+          end
+          format.csv { render :text => error_message, :status => :unauthorized}
+          format.json { render :json => { :error => error_message }, :status => :unauthorized}
+          format.xml { render :xml => "<error>#{error_message}</error>", :status => :unauthorized}
+        end
+      end
+    end
+  end
+end

data/lib/active_admin/base_controller/menu.rb CHANGED

@@ -11,14 +11,19 @@ module ActiveAdmin
       protected
       def current_menu
-        active_admin_config.namespace.menu
+        active_admin_config.navigation_menu
       end
       # Set's @current_tab to be name of the tab to mark as current
       # Get's called through a before filter
       def set_current_tab
-        @current_tab = if active_admin_config.belongs_to? && parent?
-          active_admin_config.belongs_to_config.target.menu_item
+        @current_tab = if current_menu && active_admin_config.belongs_to? && parent?
+          parent_item = active_admin_config.belongs_to_config.target.menu_item
+          if current_menu.include? parent_item
+            parent_item
+          else
+            active_admin_config.menu_item
+          end
         else
           active_admin_config.menu_item
         end

data/lib/active_admin/batch_actions/resource_extension.rb CHANGED

@@ -51,8 +51,8 @@ module ActiveAdmin
       end
       # Path to the batch action itself
-      def batch_action_path
-        "batch_action_#{route_collection_path}".to_sym
+      def batch_action_path(params = {})
+        [route_collection_path(params), "batch_action"].join("/")
       end
       private
@@ -62,16 +62,17 @@ module ActiveAdmin
         destroy_options = {
           :priority => 100,
           :confirm => proc { I18n.t('active_admin.batch_actions.delete_confirmation', :plural_model => active_admin_config.plural_resource_label.downcase) },
-          :if => proc{ controller.action_methods.include?('destroy') }
+          :if => proc{ controller.action_methods.include?('destroy') && authorized?(ActiveAdmin::Auth::DESTROY, active_admin_config.resource_class) }
         }
         add_batch_action :destroy, proc { I18n.t('active_admin.delete') }, destroy_options do |selected_ids|
           active_admin_config.resource_class.find(selected_ids).each { |r| r.destroy }
-          redirect_to collection_path, :notice => I18n.t("active_admin.batch_actions.succesfully_destroyed",
-                                                         :count => selected_ids.count,
-                                                         :model => active_admin_config.resource_label.downcase,
-                                                         :plural_model => active_admin_config.plural_resource_label.downcase)
+          redirect_to active_admin_config.route_collection_path(params),
+                      :notice => I18n.t("active_admin.batch_actions.succesfully_destroyed",
+                                        :count => selected_ids.count,
+                                        :model => active_admin_config.resource_label.downcase,
+                                        :plural_model => active_admin_config.plural_resource_label.downcase)
         end
       end

data/lib/active_admin/batch_actions/views/batch_action_form.rb CHANGED

@@ -13,7 +13,7 @@ module ActiveAdmin
         options[:id] ||= "collection_selection"
         # Open a form
-        text_node form_tag(send(active_admin_config.batch_action_path), :id => options[:id])
+        text_node form_tag(active_admin_config.batch_action_path(params), :id => options[:id])
         input(:name => :batch_action, :id => :batch_action, :type => :hidden)
         super(options)

data/lib/active_admin/cancan_adapter.rb ADDED

@@ -0,0 +1,40 @@
+require 'cancan'
+# Add a setting to the application to configure the ability
+ActiveAdmin::Application.inheritable_setting :cancan_ability_class, "Ability"
+module ActiveAdmin
+  class CanCanAdapter < AuthorizationAdapter
+    def authorized?(action, subject = nil)
+      cancan_ability.can?(action, subject)
+    end
+    def cancan_ability
+      @cancan_ability ||= initialize_cancan_ability
+    end
+    def scope_collection(collection)
+      collection.accessible_by(cancan_ability)
+    end
+    private
+    # The setting allows the class to be stored as a string
+    # to enable reloading in development.
+    def initialize_cancan_ability
+      ability_class_name = resource.namespace.cancan_ability_class
+      if ability_class_name.is_a?(String)
+        ability_class = ActiveSupport::Dependencies.constantize(ability_class_name)
+      else
+        ability_class = ability_class_name
+      end
+      ability_class.new(user)
+    end
+  end
+end

data/lib/active_admin/dashboards.rb CHANGED

@@ -58,11 +58,10 @@ module ActiveAdmin
         dashboard_path = namespace.root? ? :dashboard_path : "#{namespace.name}_dashboard_path".to_sym
-        item = MenuItem.new  :id => "dashboard",
-                             :label => proc{ I18n.t("active_admin.dashboard") },
-                             :url => dashboard_path,
-                             :priority => 1
-        menu.add item
+        menu.add :id => "dashboard",
+                 :label => proc{ I18n.t("active_admin.dashboard") },
+                 :url => dashboard_path,
+                 :priority => 1
       end
     end
   end