authorize_when 0.1.0

data/Manifest

@@ -0,0 +1,7 @@
+README.textile
+Rakefile
+authorize_when.gemspec
+init.rb
+lib/authorize_when.rb
+lib/authorize_when/forbidden_exception.rb
+Manifest

data/README.textile

@@ -0,0 +1,56 @@
+h1. AuthorizeWhen
+
+Super simple authorization system for Rails. *AuthorizeWhen* provides a small DSL to write authorization rules in your controllers.
+Each rule can be declared using the @authorize@ method and consists of a @block@ that must evaluate to @true@ otherwise a @ForbiddenException@ will be thrown.
+
+h2. Use It
+
+<pre>
+class  VideosController
+  authorize :when_not => [:show, :index] { current_user.has_role? :administrator }
+end
+</pre>
+
+
+h2. Installation
+
+h3. As a gem:
+
+Add this line to your @environment.rb@:
+
+<pre>
+ config.gem "authorize_when"
+</pre>
+
+and then do
+
+<pre>
+  rake gems:install
+</pre>
+
+or just
+
+<pre>
+  gem install authorize_when
+</pre>
+
+
+h3. As a plugin
+
+<pre>
+  script/plugin install git://github.com/mcasimir/authorize_when.git
+</pre>
+
+
+h2. Project Details
+
+h3. Roadmap
+  * Add a @forbid@ instance method that raise @ForbiddenException@
+  * Add an _"authorize with schema"_ feature that allows to group and reuse authorization rules
+  * Provide a customizable default way to recover from @ForbiddenException@, eg. redirect to /404
+  * Rescue from every exception in authorize block reraising a new @ForbiddenException@
+
+h3. Copyright
+
+Copyright © 2010 Maurizio Casimirri, released under the LGPL license.
+

data/Rakefile

@@ -0,0 +1,15 @@
+require 'rubygems'
+require 'rake'
+require 'echoe'
+
+Echoe.new('authorize_when', '0.1.0') do |p|
+   p.description     = "Super simple authorization system for Rails"
+   p.url             = "http://github.com/mcasimir/authorize_when"
+   p.author          = "Maurizio Casimirri"
+   p.email           = "maurizio.cas@gmail.com"
+   p.ignore_pattern  = ["tmp/*", "script/*"]
+   p.development_dependencies = []
+end
+
+Dir["#{File.dirname(__FILE__)}/tasks/*.rake"].sort.each { |ext| load ext }
+

data/authorize_when.gemspec

@@ -0,0 +1,30 @@
+# -*- encoding: utf-8 -*-
+
+Gem::Specification.new do |s|
+  s.name = %q{authorize_when}
+  s.version = "0.1.0"
+
+  s.required_rubygems_version = Gem::Requirement.new(">= 1.2") if s.respond_to? :required_rubygems_version=
+  s.authors = ["Maurizio Casimirri"]
+  s.date = %q{2010-07-18}
+  s.description = %q{Super simple authorization system for Rails}
+  s.email = %q{maurizio.cas@gmail.com}
+  s.extra_rdoc_files = ["README.textile", "lib/authorize_when.rb", "lib/authorize_when/forbidden_exception.rb"]
+  s.files = ["README.textile", "Rakefile", "authorize_when.gemspec", "init.rb", "lib/authorize_when.rb", "lib/authorize_when/forbidden_exception.rb", "Manifest"]
+  s.homepage = %q{http://github.com/mcasimir/authorize_when}
+  s.rdoc_options = ["--line-numbers", "--inline-source", "--title", "Authorize_when", "--main", "README.textile"]
+  s.require_paths = ["lib"]
+  s.rubyforge_project = %q{authorize_when}
+  s.rubygems_version = %q{1.3.7}
+  s.summary = %q{Super simple authorization system for Rails}
+
+  if s.respond_to? :specification_version then
+    current_version = Gem::Specification::CURRENT_SPECIFICATION_VERSION
+    s.specification_version = 3
+
+    if Gem::Version.new(Gem::VERSION) >= Gem::Version.new('1.2.0') then
+    else
+    end
+  else
+  end
+end

data/init.rb

@@ -0,0 +1,2 @@
+require 'authorize_when'
+

data/lib/authorize_when.rb

@@ -0,0 +1,48 @@
+# Author::    Maurizio Casimirri (mailto:maurizio.cas@gmail.com)
+# Copyright:: Copyright (c) 2010 Maurizio Casimirri
+
+# This library is free software; you can redistribute it and/or
+# modify it under the terms of the GNU Lesser General Public
+# License as published by the Free Software Foundation; either
+# version 2.1 of the License, or (at your option) any later version.
+
+# This library is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
+# Lesser General Public License for more details.
+
+# You should have received a copy of the GNU Lesser General Public
+# License along with this library; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301  USA
+
+module AuthorizeWhen
+
+
+    def self.included(base)
+        base.extend ClassMethods
+    end
+
+    module ClassMethods
+      def authorize(options = {}, &block)
+
+          filter_options = {}
+          filter_options[:only]   = options[:when]
+          filter_options[:except] = options[:when_not]
+
+          self.send(:before_filter, filter_options) do |controller|
+            if !controller.instance_eval(&block)
+              raise AuthorizeWhen::ForbiddenException
+            end
+          end
+
+      end # ~ authorize
+    end # ~ ClassMethods
+
+
+end
+
+
+class ActionController::Base
+  include AuthorizeWhen
+end
+

data/lib/authorize_when/forbidden_exception.rb

@@ -0,0 +1,22 @@
+# Author::    Maurizio Casimirri (mailto:maurizio.cas@gmail.com)
+# Copyright:: Copyright (c) 2010 Maurizio Casimirri
+
+# This library is free software; you can redistribute it and/or
+# modify it under the terms of the GNU Lesser General Public
+# License as published by the Free Software Foundation; either
+# version 2.1 of the License, or (at your option) any later version.
+
+# This library is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
+# Lesser General Public License for more details.
+
+# You should have received a copy of the GNU Lesser General Public
+# License along with this library; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301  USA
+
+module AuthorizeWhen
+    class ForbiddenException < Exception
+    end
+end
+

metadata

@@ -0,0 +1,81 @@
+--- !ruby/object:Gem::Specification 
+name: authorize_when
+version: !ruby/object:Gem::Version 
+  hash: 27
+  prerelease: false
+  segments: 
+  - 0
+  - 1
+  - 0
+  version: 0.1.0
+platform: ruby
+authors: 
+- Maurizio Casimirri
+autorequire: 
+bindir: bin
+cert_chain: []
+
+date: 2010-07-18 00:00:00 +02:00
+default_executable: 
+dependencies: []
+
+description: Super simple authorization system for Rails
+email: maurizio.cas@gmail.com
+executables: []
+
+extensions: []
+
+extra_rdoc_files: 
+- README.textile
+- lib/authorize_when.rb
+- lib/authorize_when/forbidden_exception.rb
+files: 
+- README.textile
+- Rakefile
+- authorize_when.gemspec
+- init.rb
+- lib/authorize_when.rb
+- lib/authorize_when/forbidden_exception.rb
+- Manifest
+has_rdoc: true
+homepage: http://github.com/mcasimir/authorize_when
+licenses: []
+
+post_install_message: 
+rdoc_options: 
+- --line-numbers
+- --inline-source
+- --title
+- Authorize_when
+- --main
+- README.textile
+require_paths: 
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement 
+  none: false
+  requirements: 
+  - - ">="
+    - !ruby/object:Gem::Version 
+      hash: 3
+      segments: 
+      - 0
+      version: "0"
+required_rubygems_version: !ruby/object:Gem::Requirement 
+  none: false
+  requirements: 
+  - - ">="
+    - !ruby/object:Gem::Version 
+      hash: 11
+      segments: 
+      - 1
+      - 2
+      version: "1.2"
+requirements: []
+
+rubyforge_project: authorize_when
+rubygems_version: 1.3.7
+signing_key: 
+specification_version: 3
+summary: Super simple authorization system for Rails
+test_files: []
+