RubyGems - aegis - Versions diffs - 1.1.8 → 2.0.0 - Mend

aegis 1.1.8 → 2.0.0

Files changed (65) hide show

data/.gitignore +4 -0
data/README.rdoc +58 -165
data/Rakefile +20 -12
data/VERSION +1 -1
data/aegis.gemspec +85 -56
data/lib/aegis.rb +9 -6
data/lib/aegis/access_denied.rb +4 -0
data/lib/aegis/action.rb +99 -0
data/lib/aegis/compiler.rb +113 -0
data/lib/aegis/has_role.rb +89 -110
data/lib/aegis/parser.rb +110 -0
data/lib/aegis/permissions.rb +164 -107
data/lib/aegis/resource.rb +158 -0
data/lib/aegis/role.rb +25 -55
data/lib/aegis/sieve.rb +39 -0
data/lib/rails/action_controller.rb +38 -0
data/lib/rails/active_record.rb +1 -5
data/spec/action_controller_spec.rb +100 -0
data/spec/app_root/app/controllers/application_controller.rb +7 -0
data/spec/app_root/app/controllers/reviews_controller.rb +36 -0
data/spec/app_root/app/models/permissions.rb +14 -0
data/spec/app_root/app/models/property.rb +5 -0
data/spec/app_root/app/models/review.rb +5 -0
data/{test → spec}/app_root/app/models/user.rb +1 -2
data/{test → spec}/app_root/config/boot.rb +0 -0
data/{test → spec}/app_root/config/database.yml +0 -0
data/{test → spec}/app_root/config/environment.rb +0 -0
data/{test → spec}/app_root/config/environments/in_memory.rb +0 -0
data/{test → spec}/app_root/config/environments/mysql.rb +0 -0
data/{test → spec}/app_root/config/environments/postgresql.rb +0 -0
data/{test → spec}/app_root/config/environments/sqlite.rb +0 -0
data/{test → spec}/app_root/config/environments/sqlite3.rb +0 -0
data/spec/app_root/config/routes.rb +7 -0
data/{test/app_root/db/migrate/20090408115228_create_users.rb → spec/app_root/db/migrate/001_create_users.rb} +2 -1
data/spec/app_root/db/migrate/002_create_properties.rb +13 -0
data/spec/app_root/db/migrate/003_create_reviews.rb +14 -0
data/{test → spec}/app_root/lib/console_with_fixtures.rb +0 -0
data/{test → spec}/app_root/log/.gitignore +0 -0
data/{test → spec}/app_root/script/console +0 -0
data/spec/controllers/reviews_controller_spec.rb +19 -0
data/spec/has_role_spec.rb +177 -0
data/spec/permissions_spec.rb +550 -0
data/spec/rcov.opts +2 -0
data/spec/spec.opts +4 -0
data/{test/test_helper.rb → spec/spec_helper.rb} +6 -9
metadata +73 -57
data/lib/aegis/constants.rb +0 -6
data/lib/aegis/normalization.rb +0 -26
data/lib/aegis/permission_error.rb +0 -5
data/lib/aegis/permission_evaluator.rb +0 -34
data/test/app_root/app/controllers/application_controller.rb +0 -2
data/test/app_root/app/models/old_soldier.rb +0 -6
data/test/app_root/app/models/permissions.rb +0 -49
data/test/app_root/app/models/soldier.rb +0 -5
data/test/app_root/app/models/trust_fund_kid.rb +0 -5
data/test/app_root/app/models/user_subclass.rb +0 -2
data/test/app_root/app/models/veteran_soldier.rb +0 -6
data/test/app_root/config/routes.rb +0 -4
data/test/app_root/db/migrate/20090429075648_create_soldiers.rb +0 -14
data/test/app_root/db/migrate/20091110075648_create_veteran_soldiers.rb +0 -14
data/test/app_root/db/migrate/20091110075649_create_trust_fund_kids.rb +0 -15
data/test/has_role_options_test.rb +0 -64
data/test/has_role_test.rb +0 -54
data/test/permissions_test.rb +0 -109
data/test/validation_test.rb +0 -55

data/test/has_role_test.rb DELETED Viewed

@@ -1,54 +0,0 @@
-require "test/test_helper"
-class HasRoleTest < ActiveSupport::TestCase
-  context "Objects that have an aegis role" do
-    setup do
-      @guest = User.new(:role_name => "guest")
-      @student = User.new(:role_name => "student")
-      @student_subclass = UserSubclass.new(:role_name => "student")
-      @admin = User.new(:role_name => "admin")
-    end
-    should "know their role" do
-      assert_equal :guest, @guest.role.name
-      assert_equal :student, @student.role.name
-      assert_equal :student, @student_subclass.role.name
-      assert_equal :admin, @admin.role.name
-    end
-    should "know if they belong to a role" do
-      assert @guest.guest?
-      assert !@guest.student?
-      assert !@guest.admin?
-      assert !@student.guest?
-      assert !@student_subclass.guest?
-      assert @student.student?
-      assert @student_subclass.student?
-      assert !@student.admin?
-      assert !@student_subclass.admin?
-      assert !@admin.guest?
-      assert !@admin.student?
-      assert @admin.admin?
-    end
-    should "still behave as usual when a method ending in a '?' does not map to a role query" do
-      assert_raise NoMethodError do
-        @guest.nonexisting_method?
-      end
-    end
-    should "know that they respond to permission methods" do
-      assert @guest.respond_to?(:may_foo?)
-      assert @guest.respond_to?(:may_foo!)
-    end
-    should "retain the usual respond_to behaviour for non-permission methods" do
-      assert !@guest.respond_to?(:nonexisting_method)
-      assert @guest.respond_to?(:to_s)
-    end
-  end
-end

data/test/permissions_test.rb DELETED Viewed

@@ -1,109 +0,0 @@
-require "test/test_helper"
-class PermissionsTest < ActiveSupport::TestCase
-  context "Aegis permissions" do
-    setup do
-      @guest = User.new(:role_name => "guest")
-      @student = User.new(:role_name => "student")
-      @student_subclass = UserSubclass.new(:role_name => "student")
-      @admin = User.new(:role_name => "admin")
-    end
-    should "use the default permission for actions without any allow or grant directives" do
-      assert !@guest.may_use_empty?
-      assert !@student.may_use_empty?
-      assert !@student_subclass.may_use_empty?
-      assert @admin.may_use_empty?
-    end
-    should "understand simple allow and deny directives" do
-      assert !@guest.may_use_simple?
-      assert @student.may_use_simple?
-      assert @student_subclass.may_use_simple?
-      assert !@admin.may_use_simple?
-    end
-    should 'raise exceptions when a denied action is queried with an exclamation mark' do
-      assert_raise Aegis::PermissionError do
-        @guest.may_use_simple!
-      end
-      assert_raise Aegis::PermissionError do
-        @admin.may_use_simple!
-      end
-    end
-    should 'do nothing if an allowed action is queried with an exclamation mark' do
-      assert_nothing_raised do
-        @student.may_use_simple!
-        @student_subclass.may_use_simple!
-      end
-    end
-    should "implicate the singular form of an action described in plural form" do
-      assert !@guest.may_update_users?
-      assert !@guest.may_update_user?("foo")
-      assert @student.may_update_users?
-      assert @student_subclass.may_update_users?
-      assert @student.may_update_user?("foo")
-      assert @student_subclass.may_update_user?("foo")
-      assert !@admin.may_update_users?
-      assert !@admin.may_update_user?("foo")
-    end
-    should 'implicate create, read, update and destroy forms for actions named "crud_..."' do
-      assert @student.may_create_projects?
-      assert @student_subclass.may_create_projects?
-      assert @student.may_read_projects?
-      assert @student_subclass.may_read_projects?
-      assert @student.may_update_projects?
-      assert @student_subclass.may_update_projects?
-      assert @student.may_destroy_projects?
-      assert @student_subclass.may_destroy_projects?
-    end
-    should 'perform normalization of CRUD verbs (e.g. "edit" and "update")' do
-      assert !@guest.may_edit_drinks?
-      assert @student.may_edit_drinks?
-      assert @student_subclass.may_edit_drinks?
-      assert !@admin.may_edit_drinks?
-      assert !@guest.may_update_drinks?
-      assert @student.may_update_drinks?
-      assert @student_subclass.may_update_drinks?
-      assert !@admin.may_update_drinks?
-    end
-    should "be able to grant or deny actions to all roles using :everyone" do
-      assert @guest.may_hug?
-      assert @student.may_hug?
-      assert @student_subclass.may_hug?
-      assert @admin.may_hug?
-    end
-    should "allow the definition of parametrized actions" do
-      assert !@guest.may_divide?(10, 2)
-      assert @student.may_divide?(10, 2)
-      assert @student_subclass.may_divide?(10, 2)
-      assert !@student.may_divide?(10, 0)
-      assert !@student_subclass.may_divide?(10, 0)
-      assert @admin.may_divide?(10, 2)
-      assert @admin.may_divide?(10, 0)
-    end
-    should 'use default permissions for undefined actions' do
-      !@student.may_do_undefined_stuff?("foo")
-      !@student_subclass.may_do_undefined_stuff?("foo")
-      @admin.may_do_undefined_stuff?("foo")
-    end
-    should 'overshadow previous action definitions with the same name' do
-      assert @guest.may_draw?
-      assert !@student.may_draw?
-      assert !@student_subclass.may_draw?
-      assert !@admin.may_draw?
-    end
-  end
-end

data/test/validation_test.rb DELETED Viewed

@@ -1,55 +0,0 @@
-require "test/test_helper"
-class ValidationTest < ActiveSupport::TestCase
-  context "A model that has and validates its role" do
-    setup do
-      @user = User.new()
-    end
-    context "that has a role_name mapping to a role" do
-      setup do
-        @user.role_name = "admin"
-      end
-      should "be valid" do
-        assert @user.valid?
-      end
-    end
-    context "that has a blank role_name" do
-      setup do
-        @user.role_name = ""
-      end
-      should "not be valid" do
-        assert !@user.valid?
-      end
-    end
-    context "that has a role_name not mapping to a role" do
-      setup do
-        @user.role_name = "nonexisting_role_name"
-      end
-      should "not be valid" do
-        assert !@user.valid?
-      end
-    end
-    should "use add the default inclusion error message on role_name" do
-      @user.role_name = ""
-      @user.valid?
-      assert_equal I18n.translate('activerecord.errors.messages.inclusion'), @user.errors.on(:role_name)
-    end
-  end
-end