aegis 1.1.8 → 2.0.0

data/spec/rcov.opts

@@ -0,0 +1,2 @@
+--exclude "spec/*,gems/*"
+--rails

data/spec/spec.opts

@@ -0,0 +1,4 @@
+--colour
+--format progress
+--loadby mtime
+--reverse

data/{test/test_helper.rb → spec/spec_helper.rb}

@@ -1,13 +1,12 @@
+$: << File.join(File.dirname(__FILE__), "/../lib" )
+
 # Set the default environment to sqlite3's in_memory database
 ENV['RAILS_ENV'] ||= 'in_memory'
 
 # Load the Rails environment and testing framework
 require "#{File.dirname(__FILE__)}/app_root/config/environment"
 require "#{File.dirname(__FILE__)}/../lib/aegis"
-require 'test_help'
-require 'action_view/test_case' # Load additional test classes not done automatically by < Rails 2.2.2
-
-require "shoulda"
+require 'spec/rails'
 
 # Undo changes to RAILS_ENV
 silence_warnings {RAILS_ENV = ENV['RAILS_ENV']}
@@ -15,9 +14,7 @@ silence_warnings {RAILS_ENV = ENV['RAILS_ENV']}
 # Run the migrations
 ActiveRecord::Migrator.migrate("#{Rails.root}/db/migrate")
 
-# Set default fixture loading properties
-ActiveSupport::TestCase.class_eval do
-  self.use_transactional_fixtures = true
-  self.use_instantiated_fixtures = false
-  self.fixture_path = "#{File.dirname(__FILE__)}/fixtures"
+Spec::Runner.configure do |config|
+  config.use_transactional_fixtures = true
+  config.use_instantiated_fixtures  = false
 end

metadata

@@ -1,25 +1,21 @@
 --- !ruby/object:Gem::Specification 
 name: aegis
 version: !ruby/object:Gem::Version 
-  hash: 3
-  prerelease: 
-  segments: 
-  - 1
-  - 1
-  - 8
-  version: 1.1.8
+  version: 2.0.0
 platform: ruby
 authors: 
 - Henning Koch
+- Tobias Kraze
 autorequire: 
 bindir: bin
 cert_chain: []
 
-date: 2014-05-28 00:00:00 Z
+date: 2010-05-02 00:00:00 +02:00
+default_executable: 
 dependencies: []
 
-description: Aegis is a role-based permission system, where all users are given a role. It is possible to define detailed and complex permissions for each role very easily.
-email: github@makandra.de
+description: Aegis is an authorization solution for Ruby on Rails that supports roles and a RESTish, resource-style declaration of permission rules.
+email: henning.koch@makandra.de
 executables: []
 
 extensions: []
@@ -27,81 +23,101 @@ extensions: []
 extra_rdoc_files: 
 - README.rdoc
 files: 
+- .gitignore
 - MIT-LICENSE
 - README.rdoc
 - Rakefile
 - VERSION
 - aegis.gemspec
 - lib/aegis.rb
-- lib/aegis/constants.rb
+- lib/aegis/access_denied.rb
+- lib/aegis/action.rb
+- lib/aegis/compiler.rb
 - lib/aegis/has_role.rb
-- lib/aegis/normalization.rb
-- lib/aegis/permission_error.rb
-- lib/aegis/permission_evaluator.rb
+- lib/aegis/parser.rb
 - lib/aegis/permissions.rb
+- lib/aegis/resource.rb
 - lib/aegis/role.rb
+- lib/aegis/sieve.rb
+- lib/rails/action_controller.rb
 - lib/rails/active_record.rb
-- test/app_root/app/controllers/application_controller.rb
-- test/app_root/app/models/old_soldier.rb
-- test/app_root/app/models/permissions.rb
-- test/app_root/app/models/soldier.rb
-- test/app_root/app/models/trust_fund_kid.rb
-- test/app_root/app/models/user.rb
-- test/app_root/app/models/user_subclass.rb
-- test/app_root/app/models/veteran_soldier.rb
-- test/app_root/config/boot.rb
-- test/app_root/config/database.yml
-- test/app_root/config/environment.rb
-- test/app_root/config/environments/in_memory.rb
-- test/app_root/config/environments/mysql.rb
-- test/app_root/config/environments/postgresql.rb
-- test/app_root/config/environments/sqlite.rb
-- test/app_root/config/environments/sqlite3.rb
-- test/app_root/config/routes.rb
-- test/app_root/db/migrate/20090408115228_create_users.rb
-- test/app_root/db/migrate/20090429075648_create_soldiers.rb
-- test/app_root/db/migrate/20091110075648_create_veteran_soldiers.rb
-- test/app_root/db/migrate/20091110075649_create_trust_fund_kids.rb
-- test/app_root/lib/console_with_fixtures.rb
-- test/app_root/log/.gitignore
-- test/app_root/script/console
-- test/has_role_options_test.rb
-- test/has_role_test.rb
-- test/permissions_test.rb
-- test/test_helper.rb
-- test/validation_test.rb
+- spec/action_controller_spec.rb
+- spec/app_root/app/controllers/application_controller.rb
+- spec/app_root/app/controllers/reviews_controller.rb
+- spec/app_root/app/models/permissions.rb
+- spec/app_root/app/models/property.rb
+- spec/app_root/app/models/review.rb
+- spec/app_root/app/models/user.rb
+- spec/app_root/config/boot.rb
+- spec/app_root/config/database.yml
+- spec/app_root/config/environment.rb
+- spec/app_root/config/environments/in_memory.rb
+- spec/app_root/config/environments/mysql.rb
+- spec/app_root/config/environments/postgresql.rb
+- spec/app_root/config/environments/sqlite.rb
+- spec/app_root/config/environments/sqlite3.rb
+- spec/app_root/config/routes.rb
+- spec/app_root/db/migrate/001_create_users.rb
+- spec/app_root/db/migrate/002_create_properties.rb
+- spec/app_root/db/migrate/003_create_reviews.rb
+- spec/app_root/lib/console_with_fixtures.rb
+- spec/app_root/log/.gitignore
+- spec/app_root/script/console
+- spec/controllers/reviews_controller_spec.rb
+- spec/has_role_spec.rb
+- spec/permissions_spec.rb
+- spec/rcov.opts
+- spec/spec.opts
+- spec/spec_helper.rb
+has_rdoc: true
 homepage: http://github.com/makandra/aegis
 licenses: []
 
 post_install_message: 
-rdoc_options: []
-
+rdoc_options: 
+- --charset=UTF-8
 require_paths: 
 - lib
 required_ruby_version: !ruby/object:Gem::Requirement 
-  none: false
   requirements: 
   - - ">="
     - !ruby/object:Gem::Version 
-      hash: 3
-      segments: 
-      - 0
       version: "0"
+  version: 
 required_rubygems_version: !ruby/object:Gem::Requirement 
-  none: false
   requirements: 
   - - ">="
     - !ruby/object:Gem::Version 
-      hash: 3
-      segments: 
-      - 0
       version: "0"
+  version: 
 requirements: []
 
 rubyforge_project: 
-rubygems_version: 1.8.25
+rubygems_version: 1.3.5
 signing_key: 
 specification_version: 3
-summary: Role-based permissions for your user models.
-test_files: []
-
+summary: Complete authorization solution for Rails
+test_files: 
+- spec/app_root/app/models/user.rb
+- spec/app_root/app/models/property.rb
+- spec/app_root/app/models/review.rb
+- spec/app_root/app/models/permissions.rb
+- spec/app_root/app/controllers/application_controller.rb
+- spec/app_root/app/controllers/reviews_controller.rb
+- spec/app_root/config/boot.rb
+- spec/app_root/config/environment.rb
+- spec/app_root/config/environments/in_memory.rb
+- spec/app_root/config/environments/mysql.rb
+- spec/app_root/config/environments/postgresql.rb
+- spec/app_root/config/environments/sqlite.rb
+- spec/app_root/config/environments/sqlite3.rb
+- spec/app_root/config/routes.rb
+- spec/app_root/db/migrate/001_create_users.rb
+- spec/app_root/db/migrate/002_create_properties.rb
+- spec/app_root/db/migrate/003_create_reviews.rb
+- spec/app_root/lib/console_with_fixtures.rb
+- spec/action_controller_spec.rb
+- spec/has_role_spec.rb
+- spec/permissions_spec.rb
+- spec/spec_helper.rb
+- spec/controllers/reviews_controller_spec.rb

data/lib/aegis/constants.rb

@@ -1,6 +0,0 @@
-module Aegis
-  module Constants
-    EVERYONE_ROLE_NAME = :everyone
-    CRUD_VERBS = ["create", "read", "update", "destroy"]
-  end
-end

data/lib/aegis/normalization.rb

@@ -1,26 +0,0 @@
-module Aegis
-  class Normalization
-    
-    VERB_NORMALIZATIONS = {
-      "edit"   => "update",
-      "show"   => "read",
-      "list"   => "read",
-      "view"   => "read",
-      "delete" => "destroy",
-      "remove" => "destroy"
-    }
-    
-    def self.normalize_verb(verb)
-      VERB_NORMALIZATIONS[verb] || verb
-    end
-    
-    def self.normalize_permission(permission)
-      if permission =~ /^([^_]+?)_(.+?)$/
-        verb, target = $1, $2
-        permission = normalize_verb(verb) + "_" + target
-      end
-      permission
-    end
-    
-  end
-end

data/lib/aegis/permission_error.rb

@@ -1,5 +0,0 @@
-module Aegis
-  class PermissionError < StandardError
-
-  end
-end

data/lib/aegis/permission_evaluator.rb

@@ -1,34 +0,0 @@
-module Aegis
-  class PermissionEvaluator
-
-	def initialize(role)
-	  @role = role
-	end
-
-	def evaluate(permissions, rule_args)
-	  @result = @role.allow_by_default?
-	  permissions.each do |permission|
-		instance_exec(*rule_args, &permission)
-	  end
-	  @result
-	end
-
-	def allow(*role_name_or_names, &block)
-	  rule_encountered(role_name_or_names, true, &block)
-	end
-
-	def deny(*role_name_or_names, &block)
-	  rule_encountered(role_name_or_names, false, &block)
-	end
-
-	def rule_encountered(role_name_or_names, is_allow, &block)
-	  role_names = Array(role_name_or_names)
-	  if role_names.include?(@role.name) || role_names.include?(Aegis::Constants::EVERYONE_ROLE_NAME)
-		@result = (block ? block.call : true) 
-		@result = !@result unless is_allow
-	  end
-	end
-
-  end
-end
-

data/test/app_root/app/controllers/application_controller.rb

@@ -1,2 +0,0 @@
-class ApplicationController < ActionController::Base
-end

data/test/app_root/app/models/old_soldier.rb

@@ -1,6 +0,0 @@
-class VeteranSoldier < ActiveRecord::Base
-
-  # Use legacy parameter :name_accessor instead of :accessor
-  has_role :name_accessor => "rank"
-
-end

data/test/app_root/app/models/permissions.rb

@@ -1,49 +0,0 @@
-
-class Permissions < Aegis::Permissions
-
-  role :guest
-  role :student
-  role :admin, :default_permission => :allow
-  
-  permission :use_empty do
-  end
-  
-  permission :use_simple do
-    allow :student
-    deny :admin
-  end
-
-  permission :update_users do
-    allow :student
-    deny :admin
-  end
-  
-  permission :crud_projects do
-    allow :student
-  end
-  
-  permission :edit_drinks do
-    allow :student
-    deny :admin
-  end
-  
-  permission :hug do
-    allow :everyone
-  end
-  
-  permission :divide do |user, left, right|
-    allow :student do
-      right != 0
-    end
-  end
-  
-  permission :draw do
-    allow :everyone
-  end
-  
-  permission :draw do
-    deny :student
-    deny :admin
-  end
-  
-end

data/test/app_root/app/models/soldier.rb

@@ -1,5 +0,0 @@
-class Soldier < ActiveRecord::Base
-
-  has_role :accessor => "rank"
-
-end

data/test/app_root/app/models/trust_fund_kid.rb

@@ -1,5 +0,0 @@
-class TrustFundKid < ActiveRecord::Base
-
-  has_role :default => :admin
-
-end

data/test/app_root/app/models/user_subclass.rb

@@ -1,2 +0,0 @@
-class UserSubclass < User
-end

data/test/app_root/app/models/veteran_soldier.rb

@@ -1,6 +0,0 @@
-class VeteranSoldier < ActiveRecord::Base
-
-  # Using legacy parameter names
-  has_role :name_accessor => "rank"
-
-end

data/test/app_root/config/routes.rb

@@ -1,4 +0,0 @@
-ActionController::Routing::Routes.draw do |map|
-  map.connect ':controller/:action/:id'
-  map.connect ':controller/:action/:id.:format'
-end

data/test/app_root/db/migrate/20090429075648_create_soldiers.rb

@@ -1,14 +0,0 @@
-class CreateSoldiers < ActiveRecord::Migration
-
-  def self.up
-    create_table :soldiers do |t|
-      t.string :rank
-      t.timestamps
-    end
-  end
-
-  def self.down
-    drop_table :soldiers
-  end
-  
-end

data/test/app_root/db/migrate/20091110075648_create_veteran_soldiers.rb

@@ -1,14 +0,0 @@
-class CreateVeteranSoldiers < ActiveRecord::Migration
-
-  def self.up
-    create_table :veteran_soldiers do |t|
-      t.string :rank
-      t.timestamps
-    end
-  end
-
-  def self.down
-    drop_table :veteran_soldiers
-  end
-  
-end

data/test/app_root/db/migrate/20091110075649_create_trust_fund_kids.rb

@@ -1,15 +0,0 @@
-class CreateTrustFundKids < ActiveRecord::Migration
-
-  def self.up
-    create_table :trust_fund_kids do |t|
-      t.string :role_name
-      t.integer :account_balance
-      t.timestamps
-    end
-  end
-
-  def self.down
-    drop_table :trust_fund_kids
-  end
-  
-end

data/test/has_role_options_test.rb

@@ -1,64 +0,0 @@
-require "test/test_helper"
-
-class HasRoleOptionsTest < ActiveSupport::TestCase
-
-  context "A record with a custom role field" do
-
-    setup do 
-      @soldier = Soldier.new
-    end
-    
-    should "allow its role to be written and read" do
-      @soldier.role = "guest"
-      assert_equal :guest, @soldier.role.name
-    end
-    
-    should "store the role name in the custom field" do
-      @soldier.role = "guest"
-      assert_equal "guest", @soldier.rank
-    end
-    
-    should "still work with permissions" do
-      @soldier.role = "guest"
-      assert @soldier.may_hug?
-      assert !@soldier.may_update_users?
-    end
-    
-  end
-
-  context "A record wiring up its role using legacy parameter names" do
-
-    setup do 
-      @vetaran_soldier = VeteranSoldier.new
-    end
-    
-    should "allow its role to be written and read" do
-      @vetaran_soldier.role = "guest"
-      assert_equal :guest, @vetaran_soldier.role.name
-    end
-    
-  end
-  
-  context "A record with a default role" do
-  
-    should "create new instances with that role" do
-      assert_equal :admin, TrustFundKid.new.role.name
-    end
-    
-    should "set that role if the initial role name is blank" do
-      assert_equal :admin, TrustFundKid.new(:role_name => "").role.name
-    end
-  
-    should "ignore the default if another role is given" do
-      assert_equal :student, TrustFundKid.new(:role_name => "student").role.name
-    end
-    
-    should "not update existing records with the default role" do
-      kid = TrustFundKid.create!(:role_name => "student")
-      kid.update_attributes(:account_balance => 10_000_000)
-      assert_equal :student, kid.reload.role.name
-    end
-  
-  end
-
-end