apiphobic-authorization 1.4.0 → 1.7.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: e58d17605d7ccccd2b7c4f269a0a2e9ce436b823eb932239c0c9fc2e3ae52638
-  data.tar.gz: 6af62fc6a6a279ff1a5d35a93cd47f03ddeb35bd7dc5881a78878d7770d772b3
+  metadata.gz: 6545946cd0dd43da1ee7ba9ad6c630c0f621219b50515a11e3e9458ec1c51fd4
+  data.tar.gz: 15192e3bde8064f9f5211512438700accbf8dbbb9b332321706c0e5ac3538c54
 SHA512:
-  metadata.gz: a685c43659747f19cec61d5638b0eb31f585a9f22994180728853269975d302a13dece220a24b863e832ee353e2014b3cd54c05472ab51438c905554c1f873c3
-  data.tar.gz: a12292dfd3e72c1f31bbf12510a9635baabc480ebd4e592b4fd94df310115055cad435ede3d371d8e22e40ea396ce6eabab28aa2588178a81690324bf22a83db
+  metadata.gz: 90ad4d024ba604d3e8aa408f29526c976ea69a1382986225683bbd13033149125f20755566668230b760a52beb2cce0f0d6e13703d189509cf1ec7e7d9a419a4
+  data.tar.gz: d13c43e139feb1958ac9fd62b1cd8941a9a2b52e6c9108b522c04b4a1b6448519b019315396b79028270939645925bf44756b0e7bf528eb454b82918377cdd53

data/LICENSE.txt

@@ -1,4 +1,4 @@
-Copyright (c) 2010-2016 The Kompanee, Ltd
+Copyright (c) 2010-2019 The Kompanee, Ltd
 
 Permission is hereby granted, free of charge, to any person obtaining a copy
 of this software and associated documentation files (the "Software"), to deal

data/lib/apiphobic/authorization/authorizer.rb

@@ -7,21 +7,21 @@ class   Authorizer
                 :parameters,
                 :resource,
                 :token,
-                :user
+                :audience
 
-  # rubocop:disable Metrics/ParameterLists
-  def initialize(action:, token:, user:, issuer:, parameters:, resource:, **other)
+  def initialize(action:, token:, audience:, issuer:, parameters:, resource:, **other) # rubocop:disable Metrics/ParameterLists
     self.action     = action
-    self.token      = token
-    self.user       = user
+    self.audience   = audience
     self.parameters = parameters
     self.resource   = resource
+    self.token      = token
 
     other.each do |name, value|
       public_send("#{name}=", value)
     end
   end
-  # rubocop:enable Metrics/ParameterLists
+
+  alias user audience
 
   def able_to_index?
     false

data/lib/apiphobic/authorization/authorizers/parameters.rb

@@ -4,7 +4,6 @@ require 'apple_core/refinements/deep_dup'
 require 'apiphobic/errors/unpermitted_inclusions'
 require 'apiphobic/errors/unpermitted_sorts'
 
-# rubocop:disable Metrics/ClassLength
 module  Apiphobic
 module  Authorization
 module  Authorizers
@@ -12,9 +11,9 @@ class   Parameters
   using ::AppleCore::Refinements::DeepDup
 
   attr_accessor :action,
+                :audience,
                 :parameters,
-                :token,
-                :user
+                :token
 
   attr_writer   :authorized_attributes,
                 :authorized_filters,
@@ -23,18 +22,18 @@ class   Parameters
                 :authorized_sorts,
                 :ignored_attributes
 
-  # rubocop:disable Metrics/ParameterLists
-  def initialize(action:, token:, user:, issuer:, parameters:, **other)
+  def initialize(action:, token:, audience:, issuer:, parameters:, **other) # rubocop:disable Metrics/ParameterLists
     self.action     = action
+    self.audience   = audience
     self.parameters = parameters.deep_dup
     self.token      = token
-    self.user       = user
 
     other.each do |name, value|
       public_send("#{name}=", value)
     end
   end
-  # rubocop:enable Metrics/ParameterLists
+
+  alias user audience
 
   def authorized_parameters
     @authorized_parameters || [
@@ -92,8 +91,7 @@ class   Parameters
     @ignored_attributes || []
   end
 
-  # rubocop:disable Metrics/AbcSize, Metrics/CyclomaticComplexity
-  def call
+  def call # rubocop:disable Metrics/AbcSize, Metrics/CyclomaticComplexity, Metrics/PerceivedComplexity
     sliced_parameters = authorized_parameters.map { |v| v.is_a?(::Hash) ? v[:name] : v }
 
     parameters.slice!(*sliced_parameters)
@@ -136,7 +134,6 @@ class   Parameters
 
     parameters.permit(*authorization)
   end
-  # rubocop:enable Metrics/AbcSize, Metrics/CyclomaticComplexity
 
   private
 
@@ -195,10 +192,10 @@ class   Parameters
   def authorize_parameter(name:,
                           value:,
                           authorization_parameters:,
-                          authorization_value: nil,
                           raw_parameters:,
-                          allowed_values: nil,
-                          override: {})
+                          authorization_value: nil,
+                          allowed_values:      nil,
+                          override:            {})
 
     value = override_parameter(name:     name,
                                value:    value,
@@ -209,7 +206,7 @@ class   Parameters
 
     if authorization_value
       authorization_parameters[0][name] = authorization_value
-    elsif value.class == ::Array
+    elsif value.instance_of?(::Array)
       authorization_parameters[0][name] = []
     else
       authorization_parameters << name
@@ -252,21 +249,19 @@ class   Parameters
     parameters[:data][:relationships] = raw_parameter_relationships.delete_if(&key_match)
   end
 
-  # rubocop:disable Metrics/CyclomaticComplexity, Metrics/PerceivedComplexity
-  def override_parameter(name:, value:, hash:, override:)
+  def override_parameter(name:, value:, hash:, override:) # rubocop:disable Metrics/AbcSize, Metrics/CyclomaticComplexity, Metrics/PerceivedComplexity
     override = { with: nil, if_admin: false, if_absent: true, if_blank: true }
                  .merge(override)
 
-    return value unless override[:with] &&
-                        (!token.admin? || override[:if_admin]) &&
-                        (hash.has_key?(name) || override[:if_absent]) &&
-                        (!hash.has_key?(name) || !value.nil? || override[:if_blank])
+    return value if !override[:with] ||
+                    (token.admin? && !override[:if_admin]) ||
+                    (!hash.has_key?(name) && !override[:if_absent]) ||
+                    (hash.has_key?(name) && value.nil? && !override[:if_blank])
 
     hash[name] = override[:with]
 
     override[:with]
   end
-  # rubocop:enable Metrics/CyclomaticComplexity, Metrics/PerceivedComplexity
 
   def authorized_data_parameter
     authorization[0][:data][2]
@@ -284,16 +279,14 @@ class   Parameters
     authorization[0][:filter] ||= [{}]
   end
 
-  # rubocop:disable Layout/ExtraSpacing
   def raw_parameter_attributes
     @raw_parameter_attributes ||= begin
-      parameters[:data]              ||= {}
-      parameters[:data][:attributes] ||= {}
+                                    parameters[:data]              ||= {}
+                                    parameters[:data][:attributes] ||= {}
 
-      parameters[:data][:attributes]
-    end
+                                    parameters[:data][:attributes]
+                                  end
   end
-  # rubocop:enable Layout/ExtraSpacing
 
   def raw_parameter_filters
     @raw_parameter_filters ||= parameters[:filter] ||= {}
@@ -305,11 +298,11 @@ class   Parameters
 
   def raw_parameter_relationships
     @raw_parameter_relationships        ||= begin
-      parameters[:data]                 ||= {}
-      parameters[:data][:relationships] ||= {}
+                                              parameters[:data]                 ||= {}
+                                              parameters[:data][:relationships] ||= {}
 
-      parameters[:data][:relationships]
-    end
+                                              parameters[:data][:relationships]
+                                            end
   end
 
   def raw_parameter_sorts
@@ -335,4 +328,3 @@ end
 end
 end
 end
-# rubocop:enable Metrics/ClassLength

data/lib/apiphobic/authorization/authorizers/scope.rb

@@ -9,24 +9,24 @@ class   Scope
   using ::AppleCore::Refinements::String
 
   attr_accessor :action,
-                :token,
-                :user,
+                :audience,
                 :raw_parameters,
-                :scope_root
+                :scope_root,
+                :token
 
-  # rubocop:disable Metrics/ParameterLists
-  def initialize(action:, token:, user:, issuer:, parameters:, scope_root:, **other)
+  def initialize(action:, token:, audience:, issuer:, parameters:, scope_root:, **other) # rubocop:disable Metrics/ParameterLists
     self.action         = action
-    self.token          = token
-    self.user           = user
+    self.audience       = audience
     self.raw_parameters = parameters
     self.scope_root     = scope_root
+    self.token          = token
 
     other.each do |name, value|
       public_send("#{name}=", value)
     end
   end
-  # rubocop:enable Metrics/ParameterLists
+
+  alias user audience
 
   def user_scope
     scope_root.public_send("for_#{user_underscored_class_name}", scope_user_id)
@@ -52,10 +52,12 @@ class   Scope
 
   def user_underscored_class_name
     @user_underscored_class_name ||= begin
-      base_user_class_name         = user.class.name[/([^:]+)\z/, 1]
+                                       base_user_class_name = user
+                                                                .class
+                                                                .name[/([^:]+)\z/, 1]
 
-      base_user_class_name.underscore.downcase
-    end
+                                       base_user_class_name.underscore.downcase
+                                     end
   end
 
   def authorized_scope_id(name:, default:)

data/lib/apiphobic/authorization/resource.rb

@@ -32,7 +32,8 @@ module  Resource
       [
         name_components['root_module'],
         'Authorizers',
-        resource_name,
+        name_components['submodules'],
+        base_resource_name,
         type,
       ]
         .compact
@@ -68,10 +69,10 @@ module  Resource
                                  .class
                                  .authorizer_parameters_class
                                  .new(action:     action_name,
-                                      token:      token,
-                                      user:       authorized_user,
+                                      audience:   authorized_audience,
                                       issuer:     authorized_issuer,
-                                      parameters: params)
+                                      parameters: params,
+                                      token:      token)
                                  .call
   end
 
@@ -84,11 +85,11 @@ module  Resource
                             .class
                             .authorizer_scope_class
                             .new(action:     action_name,
-                                 token:      token,
-                                 user:       authorized_user,
+                                 audience:   authorized_audience,
                                  issuer:     authorized_issuer,
                                  parameters: authorized_parameters,
-                                 scope_root: self.class.authorized_scope_root_class)
+                                 scope_root: self.class.authorized_scope_root_class,
+                                 token:      token)
                             .call
   end
 
@@ -103,11 +104,16 @@ module  Resource
                       .class
                       .authorizer_class
                       .new(action:     action_name,
-                           token:      token,
-                           user:       authorized_user,
+                           audience:   authorized_audience,
                            issuer:     authorized_issuer,
                            parameters: authorized_parameters,
-                           resource:   authorized_resource&.processed)
+                           resource:   authorized_resource&.processed,
+                           token:      token)
+  end
+
+  def authorized_resource_class
+    @authorized_resource_class ||= Object
+                                     .const_get(self.class.singular_resource_class_name)
   end
 
   def authorized_resource
@@ -115,7 +121,7 @@ module  Resource
 
     @authorized_resource ||= \
       ::Apiphobic::Resource::Model
-        .new(resource:   Object.const_get(self.class.singular_resource_class_name),
+        .new(resource:   authorized_resource_class,
              id:         params[:id],
              parameters: authorized_parameters)
   end
@@ -129,8 +135,8 @@ module  Resource
              parameters: authorized_parameters)
   end
 
-  def authorized_user
-    current_user
+  def authorized_audience
+    current_audience
   end
 
   def authorized_issuer

data/lib/apiphobic/authorization/version.rb

@@ -2,6 +2,6 @@
 
 module Apiphobic
 module Authorization
-  VERSION = '1.4.0'
+  VERSION = '1.7.0'
 end
 end

data/lib/apiphobic/errors/unpermitted_inclusions.rb

@@ -19,7 +19,7 @@ class   UnpermittedInclusions < RuntimeError
 
   def detail
     'One or more of the inclusions you attempted to pass via the "include" parameter ' \
-    'are either not available or not authorized.'
+      'are either not available or not authorized.'
   end
 
   def source

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: apiphobic-authorization
 version: !ruby/object:Gem::Version
-  version: 1.4.0
+  version: 1.7.0
 platform: ruby
 authors:
 - thegranddesign
@@ -10,28 +10,34 @@ bindir: bin
 cert_chain:
 - |
   -----BEGIN CERTIFICATE-----
-  MIIDqjCCApKgAwIBAgIBATANBgkqhkiG9w0BAQUFADBNMREwDwYDVQQDDAhydWJ5
-  Z2VtczEjMCEGCgmSJomT8ixkARkWE2xpdmluZ2hpZ2hvbnRoZWJsb2cxEzARBgoJ
-  kiaJk/IsZAEZFgNjb20wHhcNMTcwODAyMjI1OTM1WhcNMTgwODAyMjI1OTM1WjBN
-  MREwDwYDVQQDDAhydWJ5Z2VtczEjMCEGCgmSJomT8ixkARkWE2xpdmluZ2hpZ2hv
-  bnRoZWJsb2cxEzARBgoJkiaJk/IsZAEZFgNjb20wggEiMA0GCSqGSIb3DQEBAQUA
-  A4IBDwAwggEKAoIBAQDtLa7+7p49gW15OgOyRZad/F92iZcMdDjZ2kAxZlviXgVe
-  PCtjfdURobH+YMdt++6eRkE25utIFqHyN51Shxfdc21T3fPQe/ZEoMyiJK4tYzbh
-  7VjNJG4ldvKKpS1p7iVz9imnyTxNwb0JaIOsOFCA04T0u6aCQi2acNvAPLviXk0q
-  xJ/CKjI4QUTZKVrBt8Q1Egrp2yzmEnSNftDuTbBb8m4vDR+w325CwbKCgycHJ1/g
-  YZ3FO76TzJuRVbsYS/bU5XKHVEpkeFmWBqEXsk4DuUIWLa6WZEJcoZf+YP+1pycG
-  7YqSbydpINtEdopD+EEI+g+zNJ4nSI8/eQcQyEjBAgMBAAGjgZQwgZEwCQYDVR0T
-  BAIwADALBgNVHQ8EBAMCBLAwHQYDVR0OBBYEFDWuVrg4ve0vLu71kqiGdyBnzJGV
-  MCsGA1UdEQQkMCKBIHJ1YnlnZW1zQGxpdmluZ2hpZ2hvbnRoZWJsb2cuY29tMCsG
-  A1UdEgQkMCKBIHJ1YnlnZW1zQGxpdmluZ2hpZ2hvbnRoZWJsb2cuY29tMA0GCSqG
-  SIb3DQEBBQUAA4IBAQDJIpHjbBPGiaY4wOHcXlltQ+BMmhWQNh+1fZtyajQd+7Ay
-  fv23mO7Mf25Q38gopQlpaODkfxq54Jt8FvQbr5RYRS4j+JEKb75NgrAtehd8USUd
-  CiJJGH+yvGNWug9IGZCGX91HIbTsLQ5IUUWQasC5jGP8nxXufUr9xgAJZZenewny
-  B2qKu8q1A/kj6cw62RCY7yBmUXxlcJBj8g+JKYAFbYYKUdQSzf50k9IiWLWunJM+
-  Y2GAoHKstmfIVhc4XHOPpmTd2o/C29O9oaRgjrkfQEhF/KvJ/PhoV5hvokzsCyI5
-  iUeXPfvrGD/itYIBCgk+fnzyQQ4QtE5hTQaWQ3o2
+  MIIEyjCCAzKgAwIBAgIBATANBgkqhkiG9w0BAQsFADBVMSIwIAYDVQQDDBlsb2Nh
+  bGV1bmtub3duODEwX3J1YnlnZW1zMRowGAYKCZImiZPyLGQBGRYKcHJvdG9ubWFp
+  bDETMBEGCgmSJomT8ixkARkWA2NvbTAeFw0yMjA3MDkwNTMxMjJaFw0yMzA3MDkw
+  NTMxMjJaMFUxIjAgBgNVBAMMGWxvY2FsZXVua25vd244MTBfcnVieWdlbXMxGjAY
+  BgoJkiaJk/IsZAEZFgpwcm90b25tYWlsMRMwEQYKCZImiZPyLGQBGRYDY29tMIIB
+  ojANBgkqhkiG9w0BAQEFAAOCAY8AMIIBigKCAYEA0otlhSPyU7jLLW1p786Mo/pV
+  5cJ1Ed8D/bJK78PqGFO2h0ZUefupxT5PRMokLYNNGRPopnAAxZ0zVxJ68aOyYCBW
+  Wk3/XFcXCrtk/OcFwLTltgeMjyqCBd/zRRx6CCjY4uOfH0E3n1gQ6Fbmewjg83XJ
+  nOs7Gu/hzj5+feEQ1Exmg6z1oCM/8BTIBtK+p++HvcDK3AhJ7x3fc6P9WS+22w6j
+  7jpi3p9YtoAjrXIzw3lsobiX+bEt+N+T47e8gOATVgapuZ/QmJzNU6LWepehs4V1
+  8J+FUaIMV7nAMKmpkbYL51uHEiGV+HDx1HUdOsCFx8zD4h49KRT2t6AcumJ5P1Cj
+  c7NX2xl85ShHDNNFkozuC2c5cwj6F20EVaVjGwv2OFq0S2tUw9EJXHTN9RpfRUmn
+  IHwS9M4gcJO7IzV39a1YL6+9hrabF4+JTSYDehq8oxTdcOPLYyvH54aJWVqCrnLO
+  KNa/p6hMmwxTWNS5Vz0uxuEGyE9E0tHbtjIs2XX5AgMBAAGjgaQwgaEwCQYDVR0T
+  BAIwADALBgNVHQ8EBAMCBLAwHQYDVR0OBBYEFAK3RicwO0f6+puFN6lRVMOKMJuu
+  MDMGA1UdEQQsMCqBKGxvY2FsZXVua25vd244MTArcnVieWdlbXNAcHJvdG9ubWFp
+  bC5jb20wMwYDVR0SBCwwKoEobG9jYWxldW5rbm93bjgxMCtydWJ5Z2Vtc0Bwcm90
+  b25tYWlsLmNvbTANBgkqhkiG9w0BAQsFAAOCAYEAQwV6pOp5gm8141pyXeQFI/5E
+  rZYO3MvdyZM8O3HMD51LDS8mtMURceaKZM6WTambe2RVX4A++0qUiEnn9K4Fexm/
+  SEGaC/Gp+Fg9D1SKfkdq9bgdIhOEUwiGqjczgzNC806AtWZ+awI940oydFYZlpo0
+  jMQihPPJEqF1U6JBDMZYV5tX/dJYSGRl9L3s1k2tjoN98q+beNaZQDn21Amml4eK
+  KEkMeTTJ2E4GVzR9eKEETLq2LygdUWWZ5NdWOYTxJMdg1GZp3b6X8hJrwfOiizqt
+  /ANlIEh11/pOnWa6WPUVpGIMpYdquvmJXnF2LX6zxkKK1hbrebt+vAEAGczgw1Ri
+  rkLM6y+BHQdkOTj3VG4MjIU8D4h1Z73Exzxds/VbVKMEz+8JrFjGJ/tYa0PZ8U5p
+  3yXL4G6eW3rdBW/OiLF7GgG2o26d02OMzf4+ubUVS5LQDOcd4vgNPLWzJSBt1YIh
+  TgBsED7Me5YdMVXxtTWYsF1VMzaL9hReD3UXGcxe
   -----END CERTIFICATE-----
-date: 2018-07-09 00:00:00.000000000 Z
+date: 2022-07-17 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: apiphobic-resource
@@ -39,14 +45,14 @@ dependencies:
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '1.0'
+        version: '1.2'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '1.0'
+        version: '1.2'
 - !ruby/object:Gem::Dependency
   name: apple_core
   requirement: !ruby/object:Gem::Requirement
@@ -65,50 +71,44 @@ dependencies:
   name: erratum
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: 3.1.1
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '3.1'
+        version: '4.0'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: 3.1.1
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '3.1'
+        version: '4.0'
 - !ruby/object:Gem::Dependency
   name: actionpack
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '5.0'
+        version: '7.0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '5.0'
+        version: '7.0'
 - !ruby/object:Gem::Dependency
   name: rspec
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '3.7'
+        version: '3.11'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '3.7'
+        version: '3.11'
 - !ruby/object:Gem::Dependency
   name: rspeckled
   requirement: !ruby/object:Gem::Requirement
@@ -158,11 +158,18 @@ files:
 - lib/apiphobic/json_api/relationship.rb
 - lib/apiphobic/rails/api_controller_compatibility.rb
 - lib/apiphobic/rails/controller.rb
-homepage: ''
+homepage: https://github.com/thekompanee/apiphobic-authorization
 licenses:
 - MIT
 metadata:
   allowed_push_host: https://rubygems.org
+  bug_tracker_uri: https://github.com/thekompanee/apiphobic-authorization/issues
+  changelog_uri: https://github.com/thekompanee/apiphobic-authorization/blob/master/CHANGELOG.md
+  documentation_uri: https://github.com/thekompanee/apiphobic-authorization/tree/releases/v1.7.0
+  homepage_uri: https://github.com/thekompanee/apiphobic-authorization
+  source_code_uri: https://github.com/thekompanee/apiphobic-authorization
+  wiki_uri: https://github.com/thekompanee/apiphobic-authorization/wiki
+  rubygems_mfa_required: 'true'
 post_install_message: 
 rdoc_options: []
 require_paths:
@@ -178,8 +185,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubyforge_project: 
-rubygems_version: 2.7.7
+rubygems_version: 3.3.7
 signing_key: 
 specification_version: 4
 summary: Authorization for API Requests

metadata.gz.sig

@@ -1,2 +1,2 @@
-d�s��w� V
d]�7h��3a��<�����硁,Q�,p/@�\���!�|�������Ă�I�"3=���Tc?Ӕ(
-�?R�6�#?b|H���a�βԤ7�������,:.l<t�:�䚑��iOE�pK�t_$�z"���8�Wsj	G�'��h���o�`�ػ���gJU���:���F�S�^�^���["���i�4k��}��l�g?�;BTD�~���dGfSq8����ې�%��Z�ّG�l����@�
+:��#�
+��;��K�g�v#r+Z:�8,Ś%�wTK~x*�m�!@�a�s��Nz#�"1R��