authorizy 0.5.0 → 0.6.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: d53108a017e691256dd6118c843aa217dc549628499721a2cda193d522289652
-  data.tar.gz: 4799bf0eb35c6f9695fe6b55eceaa4ed29a373fcfc3e7fbebaeee38af40ec4e7
+  metadata.gz: d473bd8a20f491dd718805097a7060d9c3b792657beb535441bdab3d2520e65f
+  data.tar.gz: 8dff226b40401c2acb2b09252022ecbf55c512c93180b61ef72c5d1ac0256692
 SHA512:
-  metadata.gz: ab9a47d232ffd388efbc5a34eb0c8c8560f8ffc854e42683cd305d35af64d1823179946bb09cbb38a735ce50c9a2245e2f0988835cf359c082bf454992dc91fa
-  data.tar.gz: 2d7fdedc111586256e9920fd5041d7b3fff9cb87c6133e8452404b85c372f66ada4828bbf4a5ce9e264dffbd16ee9096a9404cfda4ddec2af9dfb613a916ed1b
+  metadata.gz: 26519151ed8c405d60f11958cb07768b17b2fc9cd0ecc0335473f1b9cee81ea46cff277f7be4fdf9afb1d071e18b26d10a5d66f5954fcf3bff0df9d6dca817a3
+  data.tar.gz: 2ad9b69333e08dd84b0f3124619877af35bf7966c63776d2920ff9b42d4deaee493b515b49714fc8d928884dda2a51ff3f0abb871ede0fdc258a5258a1cd947f

data/CHANGELOG.md

@@ -1,3 +1,10 @@
+# v0.6.0
+
+## Updates
+
+- Set `activesupport` as production dependency
+- Update gemspec to not include specs into the gem
+
 # v0.5.0
 
 ## Fixes

data/README.md

@@ -1,8 +1,8 @@
 # Authorizy
 
-[![CI](https://github.com/wbotelhos/authorizy/workflows/CI/badge.svg)](https://github.com/wbotelhos/authorizy/actions)
+[![Tests](https://github.com/wbotelhos/authorizy/workflows/Tests/badge.svg)](https://github.com/wbotelhos/authorizy/actions?query=workflow:Tests)
 [![Gem Version](https://badge.fury.io/rb/authorizy.svg)](https://badge.fury.io/rb/authorizy)
-[![Maintainability](https://api.codeclimate.com/v1/badges/f312587b4f126bb13e85/maintainability)](https://codeclimate.com/github/wbotelhos/authorizy/maintainability)
+[![Maintainability](https://api.codeclimate.com/v1/badges/22ac7790d35a7c24410e/maintainability)](https://codeclimate.com/github/wbotelhos/authorizy/maintainability)
 [![Coverage](https://codecov.io/gh/wbotelhos/authorizy/branch/main/graph/badge.svg)](https://codecov.io/gh/wbotelhos/authorizy)
 [![Sponsor](https://img.shields.io/badge/sponsor-%3C3-green)](https://github.com/sponsors/wbotelhos)
 

data/lib/authorizy/config.rb

@@ -14,7 +14,7 @@ module Authorizy
 
         return context.render(json: { message: info }, status: 403) if context.request.xhr?
 
-        context.redirect_to(redirect_url.call(context), info: info)
+        context.redirect_to(redirect_url.call(context), info:)
       }
 
       @dependencies = {}

data/lib/authorizy/extension.rb

@@ -18,8 +18,9 @@ module Authorizy
         params['action'] = action
 
         parameters = params.merge(custom_params)
+        cop = authorizy_cop(parameters)
 
-        Authorizy::Core.new(authorizy_user, parameters, session, cop: authorizy_cop(parameters)).access?
+        Authorizy::Core.new(authorizy_user, parameters, session, cop:).access?
       end
 
       private

data/lib/authorizy/rspec.rb

@@ -4,13 +4,13 @@ require 'rspec/expectations'
 
 RSpec::Matchers.define :be_authorized do |controller, action, params: {}, session: {}|
   match do |user|
-    parameters = params.merge(controller: controller, action: action)
+    parameters = params.merge(controller:, action:)
 
     access?(user, parameters, session)
   end
 
   match_when_negated do |user|
-    parameters = params.merge(controller: controller, action: action)
+    parameters = params.merge(controller:, action:)
 
     !access?(user, parameters, session)
   end
@@ -28,7 +28,7 @@ RSpec::Matchers.define :be_authorized do |controller, action, params: {}, sessio
   def access?(user, params, session)
     cop = Authorizy.config.cop.new(user, params, session)
 
-    Authorizy::Core.new(user, params, session, cop: cop).access?
+    Authorizy::Core.new(user, params, session, cop:).access?
   end
 
   def maybe_params_or_session(message, params, session)

data/lib/authorizy/version.rb

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 
 module Authorizy
-  VERSION = '0.5.0'
+  VERSION = '0.6.0'
 end

metadata

@@ -1,135 +1,22 @@
 --- !ruby/object:Gem::Specification
 name: authorizy
 version: !ruby/object:Gem::Version
-  version: 0.5.0
+  version: 0.6.0
 platform: ruby
 authors:
 - Washington Botelho
-autorequire:
 bindir: bin
 cert_chain: []
-date: 2024-02-10 00:00:00.000000000 Z
+date: 2025-04-02 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
-  name: activerecord
+  name: activesupport
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
         version: '0'
-  type: :development
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-- !ruby/object:Gem::Dependency
-  name: codecov
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-  type: :development
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-- !ruby/object:Gem::Dependency
-  name: pg
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-  type: :development
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-- !ruby/object:Gem::Dependency
-  name: pry-byebug
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-  type: :development
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-- !ruby/object:Gem::Dependency
-  name: rake
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-  type: :development
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-- !ruby/object:Gem::Dependency
-  name: rspec-rails
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-  type: :development
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-- !ruby/object:Gem::Dependency
-  name: rubocop-performance
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-  type: :development
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-- !ruby/object:Gem::Dependency
-  name: rubocop-rails
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-  type: :development
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-- !ruby/object:Gem::Dependency
-  name: rubocop-rspec
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-  type: :development
+  type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
@@ -159,44 +46,11 @@ files:
 - lib/generators/authorizy/install_generator.rb
 - lib/generators/authorizy/templates/config/initializers/authorizy.rb
 - lib/generators/authorizy/templates/db/migrate/add_authorizy_on_users.rb
-- spec/authorizy/base_cop/access_question_spec.rb
-- spec/authorizy/config/aliases_spec.rb
-- spec/authorizy/config/cop_spec.rb
-- spec/authorizy/config/current_user_spec.rb
-- spec/authorizy/config/denied_spec.rb
-- spec/authorizy/config/dependencies_spec.rb
-- spec/authorizy/config/field_spec.rb
-- spec/authorizy/config/initialize_spec.rb
-- spec/authorizy/config/redirect_url_spec.rb
-- spec/authorizy/config_spec.rb
-- spec/authorizy/configure_spec.rb
-- spec/authorizy/cop/controller_spec.rb
-- spec/authorizy/cop/model_spec.rb
-- spec/authorizy/cop/namespaced_controller_spec.rb
-- spec/authorizy/core/access_spec.rb
-- spec/authorizy/expander/expand_spec.rb
-- spec/authorizy/extension/authorizy_question_spec.rb
-- spec/authorizy/extension/authorizy_spec.rb
-- spec/authorizy/rspec_spec.rb
-- spec/common_helper.rb
-- spec/spec_helper.rb
-- spec/support/application.rb
-- spec/support/common.rb
-- spec/support/controllers/admin/dummy_controller.rb
-- spec/support/controllers/dummy_controller.rb
-- spec/support/coverage.rb
-- spec/support/i18n.rb
-- spec/support/locales/en.yml
-- spec/support/models/authorizy_cop.rb
-- spec/support/models/empty_cop.rb
-- spec/support/models/user.rb
-- spec/support/routes.rb
-- spec/support/schema.rb
 homepage: https://github.com/wbotelhos/authorizy
 licenses:
 - MIT
-metadata: {}
-post_install_message:
+metadata:
+  rubygems_mfa_required: 'true'
 rdoc_options: []
 require_paths:
 - lib
@@ -211,41 +65,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.4.19
-signing_key:
+rubygems_version: 3.6.6
 specification_version: 4
 summary: A JSON based Authorization.
-test_files:
-- spec/authorizy/base_cop/access_question_spec.rb
-- spec/authorizy/config/aliases_spec.rb
-- spec/authorizy/config/cop_spec.rb
-- spec/authorizy/config/current_user_spec.rb
-- spec/authorizy/config/denied_spec.rb
-- spec/authorizy/config/dependencies_spec.rb
-- spec/authorizy/config/field_spec.rb
-- spec/authorizy/config/initialize_spec.rb
-- spec/authorizy/config/redirect_url_spec.rb
-- spec/authorizy/config_spec.rb
-- spec/authorizy/configure_spec.rb
-- spec/authorizy/cop/controller_spec.rb
-- spec/authorizy/cop/model_spec.rb
-- spec/authorizy/cop/namespaced_controller_spec.rb
-- spec/authorizy/core/access_spec.rb
-- spec/authorizy/expander/expand_spec.rb
-- spec/authorizy/extension/authorizy_question_spec.rb
-- spec/authorizy/extension/authorizy_spec.rb
-- spec/authorizy/rspec_spec.rb
-- spec/common_helper.rb
-- spec/spec_helper.rb
-- spec/support/application.rb
-- spec/support/common.rb
-- spec/support/controllers/admin/dummy_controller.rb
-- spec/support/controllers/dummy_controller.rb
-- spec/support/coverage.rb
-- spec/support/i18n.rb
-- spec/support/locales/en.yml
-- spec/support/models/authorizy_cop.rb
-- spec/support/models/empty_cop.rb
-- spec/support/models/user.rb
-- spec/support/routes.rb
-- spec/support/schema.rb
+test_files: []

data/spec/authorizy/base_cop/access_question_spec.rb

@@ -1,10 +0,0 @@
-# frozen_string_literal: true
-
-RSpec.describe Authorizy::BaseCop, '#access?' do
-  let!(:params) { { 'controller' => 'controller', 'action' => 'action' } }
-  let(:cop) { described_class.new('current_user', params, 'session') }
-
-  it 'returns false as default' do
-    expect(cop.access?).to be(false)
-  end
-end

data/spec/authorizy/config/aliases_spec.rb

@@ -1,13 +0,0 @@
-# frozen_string_literal: true
-
-RSpec.describe Authorizy::Config, '#aliases' do
-  let!(:config) { described_class.new }
-
-  it 'has default value and can receive a new one' do
-    expect(config.aliases).to eq({})
-
-    config.aliases = 'value'
-
-    expect(config.aliases).to eq('value')
-  end
-end

data/spec/authorizy/config/cop_spec.rb

@@ -1,13 +0,0 @@
-# frozen_string_literal: true
-
-RSpec.describe Authorizy::Config, '#cop' do
-  let!(:config) { described_class.new }
-
-  it 'has default value and can receive a new one' do
-    expect(config.cop).to eq(Authorizy::BaseCop)
-
-    config.cop = 'value'
-
-    expect(config.cop).to eq('value')
-  end
-end

data/spec/authorizy/config/current_user_spec.rb

@@ -1,29 +0,0 @@
-# frozen_string_literal: true
-
-RSpec.describe Authorizy::Config, '#current_user' do
-  let!(:config) { described_class.new }
-
-  context 'when uses default value' do
-    context 'when context responds to current_user' do
-      let!(:context) { OpenStruct.new(current_user: 'user') }
-
-      it 'is called' do
-        expect(config.current_user.call(context)).to eq('user')
-      end
-    end
-
-    context 'when context does not respond to current_user' do
-      let!(:context) { 'context' }
-
-      it { expect(config.current_user.call(context)).to be(nil) }
-    end
-  end
-
-  context 'when uses custom value' do
-    it 'executes what you want' do
-      config.current_user = ->(context) { context[:value] }
-
-      expect(config.current_user.call({ value: 'value' })).to eq('value')
-    end
-  end
-end

data/spec/authorizy/config/denied_spec.rb

@@ -1,51 +0,0 @@
-# frozen_string_literal: true
-
-RSpec.describe Authorizy::Config, '#denied' do
-  let!(:config) { described_class.new }
-
-  context 'with default denied callback' do
-    context 'when is a xhr request' do
-      let!(:context) do
-        double('context',
-          params: { controller: 'users', action: 'index' },
-          request: OpenStruct.new(xhr?: true)
-        )
-      end
-
-      it 'renders' do
-        allow(context).to receive(:render)
-
-        config.denied.call(context)
-
-        expect(context).to have_received(:render).with(json: { message: 'Action denied for users#index' }, status: 403)
-      end
-    end
-
-    context 'when is not a xhr request' do
-      let!(:context) do
-        double('context',
-          params: { controller: 'users', action: 'index' },
-          request: OpenStruct.new(xhr?: false),
-          root_url: 'root_url'
-        )
-      end
-
-      it 'redirects' do
-        allow(context).to receive(:redirect_to)
-        allow(context).to receive(:respond_to?).with(:root_url).and_return(true)
-
-        config.denied.call(context)
-
-        expect(context).to have_received(:redirect_to).with('root_url', info: 'Action denied for users#index')
-      end
-    end
-  end
-
-  context 'with custom denied callback' do
-    it 'calls the callback' do
-      config.denied = ->(context) { context[:key] }
-
-      expect(config.denied.call(key: :value)).to eq(:value)
-    end
-  end
-end

data/spec/authorizy/config/dependencies_spec.rb

@@ -1,13 +0,0 @@
-# frozen_string_literal: true
-
-RSpec.describe Authorizy::Config, '#dependencies' do
-  let!(:config) { described_class.new }
-
-  it 'has default value and can receive a new one' do
-    expect(config.dependencies).to eq({})
-
-    config.dependencies = 'value'
-
-    expect(config.dependencies).to eq('value')
-  end
-end

data/spec/authorizy/config/field_spec.rb

@@ -1,29 +0,0 @@
-# frozen_string_literal: true
-
-RSpec.describe Authorizy::Config, '#field' do
-  let!(:config) { described_class.new }
-
-  context 'when uses default value' do
-    context 'when current_user responds to authorizy' do
-      let!(:current_user) { OpenStruct.new(authorizy: { permissions: [%i[users index]] }) }
-
-      it 'is called' do
-        expect(config.field.call(current_user)).to eq(permissions: [%i[users index]])
-      end
-    end
-
-    context 'when current_user does not respond to field' do
-      let!(:current_user) { nil }
-
-      it { expect(config.field.call(current_user)).to eq({}) }
-    end
-  end
-
-  context 'when uses custom value' do
-    it 'executes what you want' do
-      config.field = ->(current_user) { current_user[:value] }
-
-      expect(config.field.call({ value: 'value' })).to eq('value')
-    end
-  end
-end

data/spec/authorizy/config/initialize_spec.rb

@@ -1,7 +0,0 @@
-# frozen_string_literal: true
-
-RSpec.describe Authorizy::Config do
-  it 'starts with a default cop' do
-    expect(described_class.new.cop).to eq(Authorizy::BaseCop)
-  end
-end

data/spec/authorizy/config/redirect_url_spec.rb

@@ -1,31 +0,0 @@
-# frozen_string_literal: true
-
-RSpec.describe Authorizy::Config, '#redirect_url' do
-  let!(:config) { described_class.new }
-
-  context 'when uses default value' do
-    context 'when context responds to root_url' do
-      let!(:context) { OpenStruct.new(root_url: '/root') }
-
-      it 'is called' do
-        expect(config.redirect_url.call(context)).to eq('/root')
-      end
-    end
-
-    context 'when context does not respond to root_url' do
-      let!(:context) { 'context' }
-
-      it 'returns just a slash' do
-        expect(config.redirect_url.call(context)).to eq('/')
-      end
-    end
-  end
-
-  context 'when uses custom value' do
-    it 'executes what you want' do
-      config.redirect_url = ->(context) { context[:key] }
-
-      expect(config.redirect_url.call({ key: :value })).to eq(:value)
-    end
-  end
-end

data/spec/authorizy/config_spec.rb

@@ -1,7 +0,0 @@
-# frozen_string_literal: true
-
-RSpec.describe Authorizy, '.config' do
-  it 'returns the config' do
-    expect(described_class.config).to be_an_instance_of(Authorizy::Config)
-  end
-end

data/spec/authorizy/configure_spec.rb

@@ -1,9 +0,0 @@
-# frozen_string_literal: true
-
-RSpec.describe Authorizy, '.configure' do
-  it 'yields the config' do
-    described_class.configure do |config|
-      expect(config).to be_an_instance_of(Authorizy::Config)
-    end
-  end
-end

data/spec/authorizy/cop/controller_spec.rb

@@ -1,41 +0,0 @@
-# frozen_string_literal: true
-
-require 'support/models/authorizy_cop'
-require 'support/models/empty_cop'
-require 'support/controllers/dummy_controller'
-
-RSpec.describe DummyController, '#authorizy', type: :controller do
-  let!(:user) { User.new }
-
-  context 'when cop responds to the controller name' do
-    context 'when method resturns false' do
-      it 'denies the access' do
-        config_mock(cop: AuthorizyCop, current_user: user) do
-          get :action, params: { access: false }
-        end
-
-        expect(response).to redirect_to('/')
-      end
-    end
-
-    context 'when method resturns true' do
-      it 'does not deny the access' do
-        config_mock(cop: AuthorizyCop, current_user: user) do
-          get :action, params: { access: true }
-        end
-
-        expect(response.body).to eq('{"message":"authorized"}')
-      end
-    end
-  end
-
-  context 'when cop does not respond to the controller name' do
-    it 'denies the access' do
-      config_mock(cop: EmptyCop, current_user: user) do
-        get :action
-      end
-
-      expect(response).to redirect_to('/')
-    end
-  end
-end

data/spec/authorizy/cop/model_spec.rb

@@ -1,16 +0,0 @@
-# frozen_string_literal: true
-
-require 'support/models/authorizy_cop'
-
-RSpec.describe AuthorizyCop do
-  let!(:params) { { controller: 'controller', action: 'action' } }
-  let(:cop) { described_class.new('current_user', params, 'session') }
-
-  it 'adds private attributes readers' do
-    expect(cop.fetch_action).to       eq('action')
-    expect(cop.fetch_controller).to   eq('controller')
-    expect(cop.fetch_current_user).to eq('current_user')
-    expect(cop.fetch_params).to       eq(controller: 'controller', action: 'action')
-    expect(cop.fetch_session).to      eq('session')
-  end
-end

data/spec/authorizy/cop/namespaced_controller_spec.rb

@@ -1,41 +0,0 @@
-# frozen_string_literal: true
-
-require 'support/models/authorizy_cop'
-require 'support/models/empty_cop'
-require 'support/controllers/admin/dummy_controller'
-
-RSpec.describe Admin::DummyController, '#authorizy', type: :controller do
-  let!(:user) { User.new }
-
-  context 'when cop responds to the controller name' do
-    context 'when method resturns false' do
-      it 'denies the access' do
-        config_mock(cop: AuthorizyCop, current_user: user) do
-          get :action, params: { admin: false }
-        end
-
-        expect(response).to redirect_to('/')
-      end
-    end
-
-    context 'when method resturns true' do
-      it 'denies the access' do
-        config_mock(cop: AuthorizyCop, current_user: user) do
-          get :action, params: { admin: true }
-        end
-
-        expect(response.body).to eq('{"message":"authorized"}')
-      end
-    end
-  end
-
-  context 'when cop does not respond to the controller name' do
-    it 'denies the access' do
-      config_mock(cop: EmptyCop, current_user: user) do
-        get :action
-      end
-
-      expect(response).to redirect_to('/')
-    end
-  end
-end