allowy 0.1.2 → 0.1.3

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (7) hide show
  1. data/README.md +22 -2
  2. data/lib/allowy.rb +1 -0
  3. data/lib/allowy/context.rb +48 -0
  4. data/lib/allowy/controller_extensions.rb +1 -24
  5. data/lib/allowy/version.rb +1 -1
  6. data/spec/context_spec.rb +58 -0
  7. metadata +17 -14
data/README.md CHANGED
@@ -31,7 +31,7 @@ So I decided to put up allowy to solve those issue for me.
31
31
  Add it to your Rails application's `Gemfile`:
32
32
 
33
33
  ```ruby
34
- gem 'alowy'
34
+ gem 'allowy'
35
35
  ```
36
36
 
37
37
  Then `bundle install`.
@@ -93,7 +93,7 @@ If you want to change the context in Rails then just override it in the controll
93
93
  ```ruby
94
94
  class PagesController < ApplicationController
95
95
  def allowy_context
96
- {realy: 'anything', can_be: 'here', event: params}
96
+ {realy: 'anything', can_be: 'here', even: params}
97
97
  end
98
98
  end
99
99
  ```
@@ -217,8 +217,28 @@ describe PagesController do
217
217
  post(:create).should be_success
218
218
  end
219
219
  end
220
+
221
+ ```
222
+
223
+ But if you don't want to stub the context because you access its `can?`, `cannot?` or `authorize!` methods
224
+ (allwing permission delegation) then you can simply mix the `Allowy::Context` in:
225
+
226
+ ```ruby
227
+ class ControllerLikeContext
228
+ include Alllowy::Context
229
+ attr_accessor :current_user
230
+
231
+ def initialize(user)
232
+ @current_user = user
233
+ end
234
+ end
235
+
236
+ # Then you can simply instantiate it to check the permissions:
237
+ ControllerLikeContext.new(that_user).should be_able_to :edit, Blog
238
+ ControllerLikeContext.new(this_user).should_not be_able_to :edit, Blog
220
239
  ```
221
240
 
241
+
222
242
  # Development
223
243
 
224
244
 
data/lib/allowy.rb CHANGED
@@ -4,6 +4,7 @@ require 'active_support/inflector'
4
4
  require "allowy/version"
5
5
  require "allowy/access_control"
6
6
  require "allowy/registry"
7
+ require "allowy/context"
7
8
  require "allowy/controller_extensions"
8
9
 
9
10
  module Allowy
data/lib/allowy/context.rb ADDED
@@ -0,0 +1,48 @@
1
+ module Allowy
2
+
3
+ # This module provides the default and common context to for checking the permissions.
4
+ # It is mixed into the Controller in Rails by default and provides an wasy way to reuse it
5
+ # in other parts of the application (in RSpec or Cucumber) without needint a controller.
6
+ # For example, you can use this code in your Cucumber features:
7
+ #
8
+ # @example
9
+ # class CustomContext
10
+ # include Allowy::Context
11
+ # attr_accessor :current_user
12
+ #
13
+ # def initialize(user)
14
+ # @current_user = user
15
+ # end
16
+ #
17
+ # And the you can easily check the permissions simply using something like:
18
+ #
19
+ # @example
20
+ # CustomContext.new(that_user).should be_able_to :create, Blog
21
+ module Context
22
+ extend ActiveSupport::Concern
23
+
24
+ module InstanceMethods
25
+
26
+ def allowy_context
27
+ self
28
+ end
29
+
30
+ def current_allowy
31
+ @current_allowy ||= ::Allowy::Registry.new(allowy_context)
32
+ end
33
+
34
+ def can?(action, subject, *args)
35
+ current_allowy.access_control_for!(subject).can?(action, subject, *args)
36
+ end
37
+
38
+ def cannot?(*args)
39
+ current_allowy.access_control_for!(subject).cannot?(action, subject, *args)
40
+ end
41
+
42
+ def authorize!(action, subject, *args)
43
+ current_allowy.access_control_for!(subject).authorize!(action, subject, *args)
44
+ end
45
+ end
46
+ end
47
+
48
+ end
data/lib/allowy/controller_extensions.rb CHANGED
@@ -3,32 +3,9 @@ module Allowy
3
3
  module ControllerExtensions
4
4
  extend ActiveSupport::Concern
5
5
  included do
6
+ include ::Allowy::Context
6
7
  helper_method :can?, :cannot?
7
8
  end
8
-
9
- module InstanceMethods
10
-
11
- def allowy_context
12
- self
13
- end
14
-
15
- def current_allowy
16
- @current_allowy ||= ::Allowy::Registry.new(allowy_context)
17
- end
18
-
19
- def can?(action, subject, *args)
20
- current_allowy.access_control_for!(subject).can?(action, subject, *args)
21
- end
22
-
23
- def cannot?(*args)
24
- current_allowy.access_control_for!(subject).cannot?(action, subject, *args)
25
- end
26
-
27
- def authorize!(action, subject, *args)
28
- current_allowy.access_control_for!(subject).authorize!(action, subject, *args)
29
- end
30
- end
31
-
32
9
  end
33
10
  end
34
11
 
data/lib/allowy/version.rb CHANGED
@@ -1,3 +1,3 @@
1
1
  module Allowy
2
- VERSION = "0.1.2"
2
+ VERSION = "0.1.3"
3
3
  end
data/spec/context_spec.rb ADDED
@@ -0,0 +1,58 @@
1
+ require 'spec_helper'
2
+
3
+ module Allowy
4
+ module Context
5
+ extend ActiveSupport::Concern
6
+
7
+ module InstanceMethods
8
+
9
+ def allowy_context
10
+ self
11
+ end
12
+
13
+ def current_allowy
14
+ @current_allowy ||= ::Allowy::Registry.new(allowy_context)
15
+ end
16
+
17
+ def can?(action, subject, *args)
18
+ current_allowy.access_control_for!(subject).can?(action, subject, *args)
19
+ end
20
+
21
+ def cannot?(*args)
22
+ current_allowy.access_control_for!(subject).cannot?(action, subject, *args)
23
+ end
24
+
25
+ def authorize!(action, subject, *args)
26
+ current_allowy.access_control_for!(subject).authorize!(action, subject, *args)
27
+ end
28
+ end
29
+ end
30
+
31
+ class SampleContext
32
+ include Context
33
+ end
34
+
35
+ describe Context do
36
+
37
+ subject { SampleContext.new }
38
+ let(:access) { stub }
39
+
40
+ it "should create a registry" do
41
+ Registry.should_receive(:new).with(subject)
42
+ subject.current_allowy
43
+ end
44
+
45
+ it "should be able to check using can?" do
46
+ subject.current_allowy.should_receive(:access_control_for!).with(123).and_return access
47
+ access.should_receive(:can?).with(:edit, 123)
48
+ subject.can?(:edit, 123)
49
+ end
50
+
51
+ it "should call authorize!" do
52
+ access.should_receive(:authorize!).with :edit, 123
53
+ subject.current_allowy.stub(:access_control_for! => access)
54
+ subject.authorize! :edit, 123
55
+ end
56
+ end
57
+ end
58
+
metadata CHANGED
@@ -1,7 +1,7 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: allowy
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.1.2
4
+ version: 0.1.3
5
5
  prerelease:
6
6
  platform: ruby
7
7
  authors:
@@ -9,11 +9,11 @@ authors:
9
9
  autorequire:
10
10
  bindir: bin
11
11
  cert_chain: []
12
- date: 2012-01-18 00:00:00.000000000 Z
12
+ date: 2012-01-23 00:00:00.000000000 Z
13
13
  dependencies:
14
14
  - !ruby/object:Gem::Dependency
15
15
  name: i18n
16
- requirement: &70180722742160 !ruby/object:Gem::Requirement
16
+ requirement: &70143292970420 !ruby/object:Gem::Requirement
17
17
  none: false
18
18
  requirements:
19
19
  - - ! '>='
@@ -21,10 +21,10 @@ dependencies:
21
21
  version: '0'
22
22
  type: :runtime
23
23
  prerelease: false
24
- version_requirements: *70180722742160
24
+ version_requirements: *70143292970420
25
25
  - !ruby/object:Gem::Dependency
26
26
  name: activesupport
27
- requirement: &70180722741040 !ruby/object:Gem::Requirement
27
+ requirement: &70143292969800 !ruby/object:Gem::Requirement
28
28
  none: false
29
29
  requirements:
30
30
  - - ! '>='
@@ -32,10 +32,10 @@ dependencies:
32
32
  version: '0'
33
33
  type: :runtime
34
34
  prerelease: false
35
- version_requirements: *70180722741040
35
+ version_requirements: *70143292969800
36
36
  - !ruby/object:Gem::Dependency
37
37
  name: rspec
38
- requirement: &70180722740180 !ruby/object:Gem::Requirement
38
+ requirement: &70143292969140 !ruby/object:Gem::Requirement
39
39
  none: false
40
40
  requirements:
41
41
  - - ! '>='
@@ -43,10 +43,10 @@ dependencies:
43
43
  version: '0'
44
44
  type: :development
45
45
  prerelease: false
46
- version_requirements: *70180722740180
46
+ version_requirements: *70143292969140
47
47
  - !ruby/object:Gem::Dependency
48
48
  name: pry
49
- requirement: &70180722739280 !ruby/object:Gem::Requirement
49
+ requirement: &70143292968580 !ruby/object:Gem::Requirement
50
50
  none: false
51
51
  requirements:
52
52
  - - ! '>='
@@ -54,10 +54,10 @@ dependencies:
54
54
  version: '0'
55
55
  type: :development
56
56
  prerelease: false
57
- version_requirements: *70180722739280
57
+ version_requirements: *70143292968580
58
58
  - !ruby/object:Gem::Dependency
59
59
  name: guard
60
- requirement: &70180722738300 !ruby/object:Gem::Requirement
60
+ requirement: &70143292967960 !ruby/object:Gem::Requirement
61
61
  none: false
62
62
  requirements:
63
63
  - - ! '>='
@@ -65,10 +65,10 @@ dependencies:
65
65
  version: '0'
66
66
  type: :development
67
67
  prerelease: false
68
- version_requirements: *70180722738300
68
+ version_requirements: *70143292967960
69
69
  - !ruby/object:Gem::Dependency
70
70
  name: guard-rspec
71
- requirement: &70180722737260 !ruby/object:Gem::Requirement
71
+ requirement: &70143292967200 !ruby/object:Gem::Requirement
72
72
  none: false
73
73
  requirements:
74
74
  - - ! '>='
@@ -76,7 +76,7 @@ dependencies:
76
76
  version: '0'
77
77
  type: :development
78
78
  prerelease: false
79
- version_requirements: *70180722737260
79
+ version_requirements: *70143292967200
80
80
  description: Allowy provides CanCan-like way of checking permission but doesn't enforce
81
81
  a tight DSL giving you more control
82
82
  email:
@@ -94,12 +94,14 @@ files:
94
94
  - allowy.gemspec
95
95
  - lib/allowy.rb
96
96
  - lib/allowy/access_control.rb
97
+ - lib/allowy/context.rb
97
98
  - lib/allowy/controller_extensions.rb
98
99
  - lib/allowy/matchers.rb
99
100
  - lib/allowy/registry.rb
100
101
  - lib/allowy/rspec.rb
101
102
  - lib/allowy/version.rb
102
103
  - spec/access_control_spec.rb
104
+ - spec/context_spec.rb
103
105
  - spec/registry_spec.rb
104
106
  - spec/spec_helper.rb
105
107
  homepage: ''
@@ -128,6 +130,7 @@ specification_version: 3
128
130
  summary: Authorization with simplicity and explicitness in mind
129
131
  test_files:
130
132
  - spec/access_control_spec.rb
133
+ - spec/context_spec.rb
131
134
  - spec/registry_spec.rb
132
135
  - spec/spec_helper.rb
133
136
  has_rdoc: