acts_as_authoritah 1.0.5 → 2.0.0

data/spec/acts_as_authoritah/spreadsheets/spreadsheet_row_parser_spec.rb

@@ -0,0 +1,24 @@
+require 'spec_helper'
+
+describe ActsAsAuthoritah::SpreadsheetRowParser do
+  before :each do 
+    @valid_row = ["scope1::scope2", "Dummy", "edit", "test", "x", "X", nil]  
+  end
+  
+  it "should take a valid row and return the scope" do
+    ActsAsAuthoritah::SpreadsheetRowParser.new(@valid_row).scope.should eq "scope1::scope2"
+  end
+  
+  it "should take a valid row and return the controller" do
+    ActsAsAuthoritah::SpreadsheetRowParser.new(@valid_row).controller.should eq "Dummy"
+  end
+  
+  it "should take a valid row and return the action" do
+    ActsAsAuthoritah::SpreadsheetRowParser.new(@valid_row).action.should eq "edit"
+  end
+  
+  it "should take a valid row and return the access rights" do
+    ActsAsAuthoritah::SpreadsheetRowParser.new(@valid_row).access_rights.should eq [true, true, false]
+  end
+
+end

data/spec/acts_as_authoritah/spreadsheets/spreadsheet_wrapper_spec.rb

@@ -0,0 +1,15 @@
+require 'spec_helper'
+
+describe ActsAsAuthoritah::SpreadsheetWrapper do
+  it "should be able to open a spreadsheet and convert to an array of AccessRules" do
+    ActsAsAuthoritah::SpreadsheetWrapper.new("spec/data/default.xls").to_access_rules.first.class.should eq ActsAsAuthoritah::AccessRule
+  end
+  
+  it "ssadf" do
+    access_rules = ActsAsAuthoritah::SpreadsheetWrapper.new("spec/data/default.xls").to_access_rules
+    ActsAsAuthoritah::AccessControlList.new(access_rules).store.should eq({
+      "scope1::scope2::DummyController#edit"=>{"admin"=>true, "anonymous"=>false, "super_admin"=>true}, 
+      "scope3::scope4::AnotherController#update"=>{"admin"=>false, "anonymous"=>true, "super_admin"=>true}
+      })
+  end
+end

data/spec/spec_helper.rb

@@ -0,0 +1,5 @@
+$LOAD_PATH.unshift File.join(File.dirname(__FILE__), '..', 'lib')
+require 'acts_as_authoritah' 
+
+RSpec.configure do |config|
+end

metadata

@@ -1,97 +1,116 @@
---- !ruby/object:Gem::Specification 
+--- !ruby/object:Gem::Specification
 name: acts_as_authoritah
-version: !ruby/object:Gem::Version 
-  hash: 29
+version: !ruby/object:Gem::Version
+  version: 2.0.0
   prerelease: 
-  segments: 
-  - 1
-  - 0
-  - 5
-  version: 1.0.5
 platform: ruby
-authors: 
-- BangTheTable
+authors:
 - Unnikrishnan KP
 autorequire: 
 bindir: bin
 cert_chain: []
-
-date: 2010-08-10 00:00:00 +05:30
-default_executable: 
-dependencies: 
-- !ruby/object:Gem::Dependency 
-  name: spreadsheet
+date: 2012-04-04 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: rspec
+  requirement: &2151808300 !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
   prerelease: false
-  requirement: &id001 !ruby/object:Gem::Requirement 
+  version_requirements: *2151808300
+- !ruby/object:Gem::Dependency
+  name: rake
+  requirement: &2151807780 !ruby/object:Gem::Requirement
     none: false
-    requirements: 
-    - - ">="
-      - !ruby/object:Gem::Version 
-        hash: 3
-        segments: 
-        - 0
-        version: "0"
-  type: :runtime
-  version_requirements: *id001
-description: role based access rights for a user specified via spreadsheet
-email: devteam@bangthetable.com, unni.tallman@gmail.com
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: *2151807780
+description: Define user capabilities in your app
+email:
+- unni.tallman@gmail.com
 executables: []
-
 extensions: []
-
-extra_rdoc_files: 
-- LICENSE
-- README.rdoc
-files: 
-- .document
+extra_rdoc_files: []
+files:
 - .gitignore
+- .rspec
+- Gemfile
 - LICENSE
-- README.rdoc
+- README.md
 - Rakefile
-- VERSION
 - acts_as_authoritah.gemspec
 - lib/acts_as_authoritah.rb
-- lib/loader.rb
-- lib/handler.rb
-- lib/access_rights.rb
-- lib/access_control.rb
-- lib/custom_exceptions.rb
-- test/acts_as_authoritah_test.rb
-- test/test_helper.rb
-has_rdoc: true
-homepage: https://github.com/bangthetable/acts_as_authoritah/
+- lib/acts_as_authoritah/access_control_list.rb
+- lib/acts_as_authoritah/access_rule.rb
+- lib/acts_as_authoritah/core.rb
+- lib/acts_as_authoritah/identifier_parser.rb
+- lib/acts_as_authoritah/matchers/controller_matcher.rb
+- lib/acts_as_authoritah/matchers/direct_matcher.rb
+- lib/acts_as_authoritah/matchers/scope_matcher.rb
+- lib/acts_as_authoritah/spreadsheets/access_rights_mapper.rb
+- lib/acts_as_authoritah/spreadsheets/spreadsheet_header_parser.rb
+- lib/acts_as_authoritah/spreadsheets/spreadsheet_reader.rb
+- lib/acts_as_authoritah/spreadsheets/spreadsheet_row_parser.rb
+- lib/acts_as_authoritah/spreadsheets/spreadsheet_wrapper.rb
+- lib/acts_as_authoritah/version.rb
+- spec/acts_as_authoritah/access_control_list_spec.rb
+- spec/acts_as_authoritah/access_rule_spec.rb
+- spec/acts_as_authoritah/core_spec.rb
+- spec/acts_as_authoritah/identifier_parser_spec.rb
+- spec/acts_as_authoritah/matchers/controller_matcher_spec.rb
+- spec/acts_as_authoritah/matchers/direct_matcher_spec.rb
+- spec/acts_as_authoritah/matchers/scope_matcher_spec.rb
+- spec/acts_as_authoritah/spreadsheets/access_rights_mapper_spec.rb
+- spec/acts_as_authoritah/spreadsheets/spreadsheet_header_parser_spec.rb
+- spec/acts_as_authoritah/spreadsheets/spreadsheet_reader_spec.rb
+- spec/acts_as_authoritah/spreadsheets/spreadsheet_row_parser_spec.rb
+- spec/acts_as_authoritah/spreadsheets/spreadsheet_wrapper_spec.rb
+- spec/data/default.xls
+- spec/spec_helper.rb
+homepage: ''
 licenses: []
-
 post_install_message: 
-rdoc_options: 
-- --charset=UTF-8
-require_paths: 
+rdoc_options: []
+require_paths:
 - lib
-required_ruby_version: !ruby/object:Gem::Requirement 
+required_ruby_version: !ruby/object:Gem::Requirement
   none: false
-  requirements: 
-  - - ">="
-    - !ruby/object:Gem::Version 
-      hash: 3
-      segments: 
-      - 0
-      version: "0"
-required_rubygems_version: !ruby/object:Gem::Requirement 
+  requirements:
+  - - ! '>='
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
   none: false
-  requirements: 
-  - - ">="
-    - !ruby/object:Gem::Version 
-      hash: 3
-      segments: 
-      - 0
-      version: "0"
+  requirements:
+  - - ! '>='
+    - !ruby/object:Gem::Version
+      version: '0'
 requirements: []
-
 rubyforge_project: 
-rubygems_version: 1.4.2
+rubygems_version: 1.8.17
 signing_key: 
 specification_version: 3
-summary: role based access rights for a user specified via spreadsheet
-test_files: 
-- test/acts_as_authoritah_test.rb
-- test/test_helper.rb
+summary: Define user capabilities in your app
+test_files:
+- spec/acts_as_authoritah/access_control_list_spec.rb
+- spec/acts_as_authoritah/access_rule_spec.rb
+- spec/acts_as_authoritah/core_spec.rb
+- spec/acts_as_authoritah/identifier_parser_spec.rb
+- spec/acts_as_authoritah/matchers/controller_matcher_spec.rb
+- spec/acts_as_authoritah/matchers/direct_matcher_spec.rb
+- spec/acts_as_authoritah/matchers/scope_matcher_spec.rb
+- spec/acts_as_authoritah/spreadsheets/access_rights_mapper_spec.rb
+- spec/acts_as_authoritah/spreadsheets/spreadsheet_header_parser_spec.rb
+- spec/acts_as_authoritah/spreadsheets/spreadsheet_reader_spec.rb
+- spec/acts_as_authoritah/spreadsheets/spreadsheet_row_parser_spec.rb
+- spec/acts_as_authoritah/spreadsheets/spreadsheet_wrapper_spec.rb
+- spec/data/default.xls
+- spec/spec_helper.rb

data/.document

@@ -1,5 +0,0 @@
-README.rdoc
-lib/**/*.rb
-bin/*
-features/**/*.feature
-LICENSE

data/README.rdoc

@@ -1,123 +0,0 @@
-= acts_as_authoritah
-
-INSTALLATION
-
-gem install acts_as_authoritah
-
-Rails 2.*
-Add in environemnt.rb
-  config.gem 'acts_as_authoritah'
-
-Rails 3.*
-Add in Gemfile
-  gem 'acts_as_authoritah'
-
-= A sample blogging app.
-
- - Creating blog posts.
- - Editing blog posts.
- - Commenting on blog posts.
-
-A blog post when first created will be in unpublished state. The post can be published later.
-
-User Roles and capabilities.
-
-- Author
-   He can create blog posts
-   He can edit posts
-   He can view blog posts
-   He cannot add comments
-- Registered user (who has signed up and logged-in)
-   He can view blog posts
-   He can comment on blog posts
-   He cannot create blog posts
-   He cannot edit blog posts
-- anonymous user 
-   He can view blog posts
-   He cannot add comments
-   He cannot create blog posts
-   He cannot edit blog posts
-- admin
-   unrestricted access to everything.
-
-
-When post is unpublished
-
-- Logged-in user (who has signed up)
-    He cannot comment on blog posts
-    He cannot view blog posts.
-
-
-= Getting this done with ActsAsAuthoritah
-
-1. Create an excel sheet (or download a sample https://github.com/bangthetable/acts_as_authoritah/blob/master/sample/default.xls)
-   and save it at config/acl/default.xls. When the post is unpublished, there are two rules which are different from the default set of rules.
-   We need to add these two rules alone in config/acl/unpublished.xls https://github.com/bangthetable/acts_as_authoritah/blob/master/sample/unpublished.xls
-
-2. Add the following line to your User model (or to whichever is your equivalent of User model)
-
-    acts_as_authoritah :acl_folder => File.join(RAILS_ROOT,"config","acl")
-
-3. Add 'include ActsAsAuthoritah' in ApplicationController
-
-4. ActsAsAuthoritah needs a wrapper around your 'current_user' method (name may differ based on the authentication system you use), to make it return an empty User object when
-   user is not logged in.
-
-   A sample - 
-
-     def present_user
-       current_user.to_s == "false" ? User.new : current_user
-     end
-
-5. In your User model, you need to define a 'usertype' method which should return the role of that user (same as in the first row of the spreadsheet).
-
-   A sample -
-
-     def usertype(args={})
-       return role.name if role
-       return "anonymous" if new_record?
-       return "registered"
-     end
-
-   Implementation of usertype method can vary, based on the role-system you are following. Just make sure it always returns role of the user (string), which should match with the roles
-   specified in the first row of the spreadsheet.
-
-
-6. in Post model
-
-     def status
-       published? ? nil : 'unpublished'
-     end
-
-   This will be used to let authoritah know when a post in in unpublished state, so that authoritah can override the default rules with those in unpublished.xls
-
-7. For access control of methods in PostController and CommentController, put these two files in lib/access_control/
-   https://github.com/bangthetable/acts_as_authoritah/blob/master/sample/comment_controller_access.rb
-   https://github.com/bangthetable/acts_as_authoritah/blob/master/sample/post_controller_access.rb
-
-8. To make sure that links are shown only to appropriate users, add lines like these in in the views.
-
-     <% if present_user.can_post_a_comment?(:context => @post.status) %>
-     <%= link_to 'Add a comment', {:controller => 'comment', :action => 'new', :post_id => @post.id} %>
-     <% end%>
-
-9. Thats all - your application is access controlled by ActsAsAuthoritah now.
-
-   - You can grant/revoke access to different features to different roles just by editing the spreadsheets.
-   - You can add a new user-role by adding a column in the spreadsheets.
-   - If your application needs to have one more context (say, archived posts), you can do that by adding one more spreadsheet called archived.xls.
-
-== Note on Patches/Pull Requests
- 
-* Fork the project.
-* Make your feature addition or bug fix.
-* Add tests for it. This is important so I don't break it in a
-  future version unintentionally.
-* Commit, do not mess with rakefile, version, or history.
-  (if you want to have your own version, that is fine but
-   bump version in a commit by itself I can ignore when I pull)
-* Send me a pull request. Bonus points for topic branches.
-
-== Copyright
-
-Copyright (c) 2010 Bang The Table. See LICENSE for details.

data/VERSION

@@ -1 +0,0 @@
-1.0.1

data/lib/access_control.rb

@@ -1,30 +0,0 @@
-Dir[File.join(Dir.pwd,'lib','access_control','*.rb')].each {|f| require f}
-
-module AccessControls
-  def self.access_control(controller)
-    params = controller.params
-    access_control_method = params[:action]
-    begin
-      access_module = (controller.class.to_s + "Access").constantize
-    rescue => e
-      if e.to_s =~ /uninitialized constant/
-        Rails.logger.info "\nAccess control module for #{controller.class.to_s} is not defined yet\n"
-        return true
-      else
-        raise
-      end
-    end
-    
-    begin
-      return access_module.send(access_control_method,controller)
-    rescue => e
-      if e.to_s =~ /undefined method/
-        Rails.logger.info "#{e.to_s}\nAccess control method '#{access_control_method}' is not defined yet in " +
-                          controller.class.to_s + "Access" + "module\n"
-        return true
-      else
-        raise
-      end
-    end
-  end
-end

data/lib/access_rights.rb

@@ -1,88 +0,0 @@
-module ActsAsAuthoritah
-  def deny_unauthorized_access
-    if File.exists?("#{Rails.public_path}/401.html") and !request.xhr?
-      render :file => "#{Rails.public_path}/401.html", :status => :unauthorized and return
-    else
-      render :text => "access denied", :status => :unauthorized and return 
-    end
-  end
-  
-  module AccessRights
-    ACL     = Hash.new
-    Default = Hash.new  
-    Urls    = {}
-    
-    def self.feature_list
-      Default.keys.collect(&:downcase)
-    end
-    
-    def self.urls(context)
-      h = {}
-      ACL[context].keys.collect(&:downcase).each do |feature|
-        h[feature] = access_url(feature)
-      end
-      h
-    end
-    
-    def self.access_url(feature)
-      Urls[feature.downcase]
-    end
-        
-    def self.contexts
-      ACL.keys.collect(&:downcase)
-    end
-    
-    def self.load_all_files(dir,default_file="default.xls")
-      Dir.xls_files(dir).each do |file|
-        acl_type = file.split(".").first
-        ACL[acl_type] = load(File.join(dir,file)) 
-      end
-      
-      (ACL[default_file.split(".").first] || {}).each_pair do |key,value|
-        Default[key] = value
-      end
-    end
-    
-    def self.load(file)
-      hash = {}
-      book = Spreadsheet.open file
-      sheet = book.worksheets.first
-      
-      urls_column_index = -1
-      
-      usertypes = []
-      
-      sheet.each do |row|
-        if row[0] == 'name'
-          k = 2
-          while true
-            usertype = row[k]
-            break unless usertype
-            
-            usertypes << usertype unless usertype.downcase == "url"
-            urls_column_index = k if usertype.downcase == "url"
-            
-            k += 1
-          end
-          usertypes = usertypes.collect(&:downcase)
-          next
-        end
-        
-        h = Hash.new
-        feature_name = row[0]
-        
-        next unless feature_name
-        feature_name.strip!
-        
-        Urls[feature_name] = row[urls_column_index] unless urls_column_index == -1
-        
-        usertypes.each_with_index do |key,i|
-          value = (row[i+2] and row[i+2].include?('x')) ? true : false
-          h[key]=value
-        end  
-        hash[feature_name] = h
-      end
-      return hash
-    end
-  end
-end