RubyGems - ae_declarative_authorization - Versions diffs - 0.7.0 → 0.7.1 - Mend

ae_declarative_authorization 0.7.0 → 0.7.1

Files changed (50) hide show

checksums.yaml +4 -4
data/Appraisals +21 -21
data/CHANGELOG +189 -189
data/Gemfile +7 -7
data/Gemfile.lock +45 -45
data/LICENSE.txt +20 -20
data/README.md +620 -620
data/README.rdoc +597 -597
data/Rakefile +33 -33
data/authorization_rules.dist.rb +20 -20
data/declarative_authorization.gemspec +24 -24
data/gemfiles/rails4252.gemfile +10 -10
data/gemfiles/rails4271.gemfile +10 -10
data/gemfiles/rails507.gemfile +11 -11
data/init.rb +5 -5
data/lib/declarative_authorization.rb +18 -18
data/lib/declarative_authorization/authorization.rb +821 -821
data/lib/declarative_authorization/helper.rb +78 -78
data/lib/declarative_authorization/in_controller.rb +713 -713
data/lib/declarative_authorization/in_model.rb +156 -156
data/lib/declarative_authorization/maintenance.rb +215 -215
data/lib/declarative_authorization/obligation_scope.rb +345 -345
data/lib/declarative_authorization/railsengine.rb +5 -5
data/lib/declarative_authorization/reader.rb +549 -549
data/lib/declarative_authorization/test/helpers.rb +261 -261
data/lib/declarative_authorization/version.rb +3 -3
data/lib/generators/authorization/install/install_generator.rb +77 -77
data/lib/generators/authorization/rules/rules_generator.rb +13 -13
data/lib/generators/authorization/rules/templates/authorization_rules.rb +27 -27
data/lib/tasks/authorization_tasks.rake +89 -89
data/test/authorization_test.rb +1121 -1121
data/test/controller_filter_resource_access_test.rb +573 -573
data/test/controller_test.rb +478 -478
data/test/database.yml +3 -3
data/test/dsl_reader_test.rb +178 -178
data/test/functional/filter_access_to_with_id_in_scope_test.rb +88 -88
data/test/functional/no_filter_access_to_test.rb +79 -79
data/test/functional/params_block_arity_test.rb +39 -39
data/test/helper_test.rb +248 -248
data/test/maintenance_test.rb +46 -46
data/test/model_test.rb +1840 -1840
data/test/schema.sql +60 -60
data/test/test_helper.rb +174 -174
data/test/test_support/minitest_compatibility.rb +26 -26
metadata +3 -9
data/gemfiles/rails4252.gemfile.lock +0 -126
data/gemfiles/rails4271.gemfile.lock +0 -126
data/gemfiles/rails507.gemfile.lock +0 -136
data/log/test.log +0 -34715
data/test/profiles/access_checking +0 -46

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: 986933d4ef222a8c62ca2b3f42edf51d379636df
-  data.tar.gz: 5bed59d0cf5723655bf4c44b31118693065c0fcb
+  metadata.gz: d154bd06e272d4e570722690dffd08ee0d9a3c3c
+  data.tar.gz: e5987932a1c42640b75de15346af47f47fe35446
 SHA512:
-  metadata.gz: eda5080a6039a2ac986e371d64d39336156416253ae8a9a1d1eef1a54a282c8192371992717f41038746b96efe10b80943f20dd9914ee8e5d70833ceb8b8bafb
-  data.tar.gz: 278f92086b45cf826080b29b1f299617cf32698d31f7f3f8549ee07a1c3c0c426261b5957c3f7e31b36d08ffc4ed97d274983184cb9b66ec6a4bb1a6b7d5a71a
+  metadata.gz: c6b7f2f53546e7b3ca256ea7f53bf7dbea174b2be312ce3eb6d353a53767933fbc5f4e157efbf0f9a263de75f1d606d8b15e75b853113e88dcf13507226db3f9
+  data.tar.gz: 5c4af1333c8f53d9ec898c2b807d868d923cd7de9f5cbaaafe0e05f4ebbce92290df33c62a2f9ba96d23ecd3573057a1e08e23454bc77ccc32f90e942fc9a903

data/Appraisals CHANGED Viewed

@@ -1,21 +1,21 @@
-case RUBY_VERSION
-when '2.3.3' then
-  appraise 'rails4252' do
-    gem 'rails', '4.2.5.2'
-  end
-  appraise 'rails4271' do
-    gem 'rails', '4.2.7.1'
-  end
-  appraise 'rails507' do
-    gem 'rails', '5.0.7'
-    gem 'rails-controller-testing'
-  end
-else
-  raise "Unsupported Ruby version #{RUBY_VERSION}"
-end
+case RUBY_VERSION
+when '2.3.3' then
+  appraise 'rails4252' do
+    gem 'rails', '4.2.5.2'
+  end
+  appraise 'rails4271' do
+    gem 'rails', '4.2.7.1'
+  end
+  appraise 'rails507' do
+    gem 'rails', '5.0.7'
+    gem 'rails-controller-testing'
+  end
+else
+  raise "Unsupported Ruby version #{RUBY_VERSION}"
+end

data/CHANGELOG CHANGED Viewed

@@ -1,189 +1,189 @@
-** RELEASE 0.5.7 (Mar 10, 2013)
-* Ruby 2.0 compatibility [jhawthorn]
-** RELEASE 0.5.6 (Sep 23, 2012)
-* Fix handling of stray object associations [jhawthorn]
-* Improve test infrastructure [jhawthorn]
-* Allow decl_auth to be used without ActiveRecord [bterkuile]
-* Rule reloading in development based on changes [urkle/sb]
-** RELEASE 0.5.5 (Jan 10, 2012)
-* Update of handling of association proxies for Rails 3.2
-** RELEASE 0.5.4 (Nov 30, 2011)
-* Cumulative loading of authorization rules [Damian Curso/sb]
-* Improved used_privileges rake task [urkle]
-* Performance improvements [John Hawthorn]
-** RELEASE 0.5.3 (May 25, 2011)
-* Bugfixes and documentation cleanup
-* Rails 3.1.rc1 compatibility [sb]
-* Added has_any_role?, has_any_role_with_hierarchy? [t.pickett66]
-* Allow changing the default role [dbloete]
-** RELEASE 0.5.2 (Dec 31, 2010) **
-* Bugfixes and documentation updates
-** RELEASE 0.5.1 (Sep 12, 2010) **
-** RELEASE 0.5 (July 21, 2010) **
-* Ruby 1.9.2 compatibility [sb]
-* Comparisons in authorization roles: lt, lte, gt, gte [aepstein,hollownest]
-* DSL optimization: allow array being passed to to
-* Omnipotent roles [timcharper]
-* Meaningful error in case of missing authorization rules file [timcharper]
-* Rails 3 support [sb]
-* Support shallow nested resources [jjb]
-* Allow multiple authorization rules files [kaichen]
-** RELEASE 0.4 (November 15, 2009) **
-* Implemented controller namespace handling [sb]
-* Improved if_attribute to allow nesting of has_many associations [sb]
-* Improved if_permitted_to: allow has_many associations and improved context inference [sb]
-* Added option on handling non-existant auto-loaded object [sb]
-* Added with_user as module method [sb]
-* Change support i18n [sb]
-** RELEASE 0.3.2.3 (October 12, 2009) **
-* Switched to gemcutter [sb]
-* Fixed has_role? for guest user. Closes #8 [sb]
-* Fixed unnecessary DB query with named scopes [sb, ledermann]
-* Change support: suggestions: grouping, sorting by affected users [sb]
-* Fixed context inference from AR objects for STI by switching to #class.name.tableize [sb]
-* Allow multiple contexts as arguments to has_permission_on [Jeroen van Dijk]
-** RELEASE 0.3.2.2 (August 27, 2009) **
-* Fix without_access_control test cases [sb]
-* Fixed error on debug logging (Closes #6) [sb]
-* Fixed without_access_control instance method in TestHelper [sb]
-** RELEASE 0.3.2.1 (August 14, 2009) **
-* Fix gemspec for Rdoc generation [sb]
-** RELEASE 0.3.2 (August 13, 2009) **
-* Fix for model-level permitted_to?/! [sb]
-** RELEASE 0.3.1 (August 12, 2009) **
-* Change Support: Suggestion grouping, sort by affected users [sb]
-* Changed context derived from objects to #class.name.tableize to fix STI [sb]
-* Simplified controller authorization with filter_resource_access [sb]
-* Allow passing explicit context in addition to object in permitted_to? [Olly Lylo, sb]
-* Change Supporter: suggest changes to authorization rules [sb]
-* Added permitted_to!/? in model [Eike Carls]
-* New test helper: should_(not_)_be_allowed_to(privilege, object_or_context) [sb]
-** RELEASE 0.3 (April 20, 2009) **
-* New option :join_by for has_permission_on to allow AND'ing of statements in one has_permission_on block [sb]
-* Allow using_access_control to be called directly on ActiveRecord::Base, globally enabling model security [sb]
-* New operator:  intersects_with, comparing two Enumerables in if_attribute [sb]
-* Improved if_permitted_to syntax:  if the attribute is left out, permissions are checked on for the current object [sb]
-* Added #has_role_with_hierarchy? method to retrieve explicit and calculated roles [jeremyf]
-* Added a simple rules analyzer to help improve authorization rules [sb]
-* Gemified plugin.  Needed to restructure the lib path contents [sb]
-* Added handling of Authorization::AuthorizationInController::ClassMethods.filter_access_to parameters that are of the form [:show, :update] instead of just :show, :update. [jeremyf]
-* Added authorization usage helper for checking filter_access_to usage in controllers [sb]
-* Added a authorization rules browser.  See README for more information [sb]
-* Added Model.using_access_control? to check if a model has model security activated [sb]
-* Changed Authorization::ObligationScope#map_table_alias_for [Brian Langenfeld]
-  * Fixed to prevent bad aliases from being produced.
-* Changed Authorization::Attribute#validate? [Brian Langenfeld]
-  * Encountering a nil value when evaluating an attribute now raises a NilAttributeValueError, instead of an AuthorizationError.  We leave it to the caller to decide what to do about it.
-* Changed Authorization::Engine#permit! [Brian Langenfeld]
-  * We now convert incoming privileges to symbols (e.g. 'read' is made equivalent to :read).  This ensures the privileges will match those defined in the authorization rules file.
-  * The method now properly infers context when checking against an association (e.g. user.posts).  We do this by leveraging ActiveRecord builder method 'new' to instantiate a proper object we can work with.
-  * When testing rules for positive results (via Authorization::Attribute#validate?), we now rescue NilAttributeValueError exceptions, simply causing the rule to return a negative result (instead of barfing).
-* Changed Authorization::ObligationScope#rebuild_join_options! [Brian Langenfeld]
-  * If we're dealing with multiple obligations we have to check (i.e. ones that result in OR'd conditions), we now use :include instead of :joins for our generated scope.  This does seem like a kludge, but until ActiveRecord scopes support unions (for checking obligations individually and consolidating the results), we don't have much choice.  Something to revisit later, for sure.
-** RELEASE 0.2 (February 2, 2009) **
-* added negative operators: is_not, not_in, does_not_contain [sb]
-* changed user.roles to user.role_symbols to reduce interferance with associations [sb]
-* Ruby 1.9 and Rails 2.3 compatibility [sb]
-* if_permitted_to for has_permission_on blocks for DRYer auth rules [sb]
-* ObligationScope rewrite of query rewriting [Brian Langenfeld]
-* changed exception hierarchy to begin at StandardError [sb]
-* :is_in operator [sb]
-* added has_role? helper [sb]
-* made plugin thread-safe [sb]
-* added maintenance and test helpers [sb]
-* changed default permission denied response to 403 Forbidden [sb]
-* descriptions for titles and roles [sb]
-* fixed for PostgreSQL [Mark Mansour]
-* improved DSL syntax: allow for array of contexts in has_permission_on [sb]
-** RELEASE 0.1 (August 22, 2008) **
+** RELEASE 0.5.7 (Mar 10, 2013)
+* Ruby 2.0 compatibility [jhawthorn]
+** RELEASE 0.5.6 (Sep 23, 2012)
+* Fix handling of stray object associations [jhawthorn]
+* Improve test infrastructure [jhawthorn]
+* Allow decl_auth to be used without ActiveRecord [bterkuile]
+* Rule reloading in development based on changes [urkle/sb]
+** RELEASE 0.5.5 (Jan 10, 2012)
+* Update of handling of association proxies for Rails 3.2
+** RELEASE 0.5.4 (Nov 30, 2011)
+* Cumulative loading of authorization rules [Damian Curso/sb]
+* Improved used_privileges rake task [urkle]
+* Performance improvements [John Hawthorn]
+** RELEASE 0.5.3 (May 25, 2011)
+* Bugfixes and documentation cleanup
+* Rails 3.1.rc1 compatibility [sb]
+* Added has_any_role?, has_any_role_with_hierarchy? [t.pickett66]
+* Allow changing the default role [dbloete]
+** RELEASE 0.5.2 (Dec 31, 2010) **
+* Bugfixes and documentation updates
+** RELEASE 0.5.1 (Sep 12, 2010) **
+** RELEASE 0.5 (July 21, 2010) **
+* Ruby 1.9.2 compatibility [sb]
+* Comparisons in authorization roles: lt, lte, gt, gte [aepstein,hollownest]
+* DSL optimization: allow array being passed to to
+* Omnipotent roles [timcharper]
+* Meaningful error in case of missing authorization rules file [timcharper]
+* Rails 3 support [sb]
+* Support shallow nested resources [jjb]
+* Allow multiple authorization rules files [kaichen]
+** RELEASE 0.4 (November 15, 2009) **
+* Implemented controller namespace handling [sb]
+* Improved if_attribute to allow nesting of has_many associations [sb]
+* Improved if_permitted_to: allow has_many associations and improved context inference [sb]
+* Added option on handling non-existant auto-loaded object [sb]
+* Added with_user as module method [sb]
+* Change support i18n [sb]
+** RELEASE 0.3.2.3 (October 12, 2009) **
+* Switched to gemcutter [sb]
+* Fixed has_role? for guest user. Closes #8 [sb]
+* Fixed unnecessary DB query with named scopes [sb, ledermann]
+* Change support: suggestions: grouping, sorting by affected users [sb]
+* Fixed context inference from AR objects for STI by switching to #class.name.tableize [sb]
+* Allow multiple contexts as arguments to has_permission_on [Jeroen van Dijk]
+** RELEASE 0.3.2.2 (August 27, 2009) **
+* Fix without_access_control test cases [sb]
+* Fixed error on debug logging (Closes #6) [sb]
+* Fixed without_access_control instance method in TestHelper [sb]
+** RELEASE 0.3.2.1 (August 14, 2009) **
+* Fix gemspec for Rdoc generation [sb]
+** RELEASE 0.3.2 (August 13, 2009) **
+* Fix for model-level permitted_to?/! [sb]
+** RELEASE 0.3.1 (August 12, 2009) **
+* Change Support: Suggestion grouping, sort by affected users [sb]
+* Changed context derived from objects to #class.name.tableize to fix STI [sb]
+* Simplified controller authorization with filter_resource_access [sb]
+* Allow passing explicit context in addition to object in permitted_to? [Olly Lylo, sb]
+* Change Supporter: suggest changes to authorization rules [sb]
+* Added permitted_to!/? in model [Eike Carls]
+* New test helper: should_(not_)_be_allowed_to(privilege, object_or_context) [sb]
+** RELEASE 0.3 (April 20, 2009) **
+* New option :join_by for has_permission_on to allow AND'ing of statements in one has_permission_on block [sb]
+* Allow using_access_control to be called directly on ActiveRecord::Base, globally enabling model security [sb]
+* New operator:  intersects_with, comparing two Enumerables in if_attribute [sb]
+* Improved if_permitted_to syntax:  if the attribute is left out, permissions are checked on for the current object [sb]
+* Added #has_role_with_hierarchy? method to retrieve explicit and calculated roles [jeremyf]
+* Added a simple rules analyzer to help improve authorization rules [sb]
+* Gemified plugin.  Needed to restructure the lib path contents [sb]
+* Added handling of Authorization::AuthorizationInController::ClassMethods.filter_access_to parameters that are of the form [:show, :update] instead of just :show, :update. [jeremyf]
+* Added authorization usage helper for checking filter_access_to usage in controllers [sb]
+* Added a authorization rules browser.  See README for more information [sb]
+* Added Model.using_access_control? to check if a model has model security activated [sb]
+* Changed Authorization::ObligationScope#map_table_alias_for [Brian Langenfeld]
+  * Fixed to prevent bad aliases from being produced.
+* Changed Authorization::Attribute#validate? [Brian Langenfeld]
+  * Encountering a nil value when evaluating an attribute now raises a NilAttributeValueError, instead of an AuthorizationError.  We leave it to the caller to decide what to do about it.
+* Changed Authorization::Engine#permit! [Brian Langenfeld]
+  * We now convert incoming privileges to symbols (e.g. 'read' is made equivalent to :read).  This ensures the privileges will match those defined in the authorization rules file.
+  * The method now properly infers context when checking against an association (e.g. user.posts).  We do this by leveraging ActiveRecord builder method 'new' to instantiate a proper object we can work with.
+  * When testing rules for positive results (via Authorization::Attribute#validate?), we now rescue NilAttributeValueError exceptions, simply causing the rule to return a negative result (instead of barfing).
+* Changed Authorization::ObligationScope#rebuild_join_options! [Brian Langenfeld]
+  * If we're dealing with multiple obligations we have to check (i.e. ones that result in OR'd conditions), we now use :include instead of :joins for our generated scope.  This does seem like a kludge, but until ActiveRecord scopes support unions (for checking obligations individually and consolidating the results), we don't have much choice.  Something to revisit later, for sure.
+** RELEASE 0.2 (February 2, 2009) **
+* added negative operators: is_not, not_in, does_not_contain [sb]
+* changed user.roles to user.role_symbols to reduce interferance with associations [sb]
+* Ruby 1.9 and Rails 2.3 compatibility [sb]
+* if_permitted_to for has_permission_on blocks for DRYer auth rules [sb]
+* ObligationScope rewrite of query rewriting [Brian Langenfeld]
+* changed exception hierarchy to begin at StandardError [sb]
+* :is_in operator [sb]
+* added has_role? helper [sb]
+* made plugin thread-safe [sb]
+* added maintenance and test helpers [sb]
+* changed default permission denied response to 403 Forbidden [sb]
+* descriptions for titles and roles [sb]
+* fixed for PostgreSQL [Mark Mansour]
+* improved DSL syntax: allow for array of contexts in has_permission_on [sb]
+** RELEASE 0.1 (August 22, 2008) **

data/Gemfile CHANGED Viewed

@@ -1,7 +1,7 @@
-source 'http://rubygems.org'
-gemspec
-gem 'appraisal', '~> 2.1'
-gem 'mocha', '~> 1.0', require: false
-gem 'sqlite3'
+source 'http://rubygems.org'
+gemspec
+gem 'appraisal', '~> 2.1'
+gem 'mocha', '~> 1.0', require: false
+gem 'sqlite3'