bali 2.4.0 → 6.0.0rc1

data/lib/bali/role.rb

@@ -0,0 +1,79 @@
+class Bali::Role
+  RIGHTS = [
+    INHERIT = :inherit,
+    DEFAULT_DENY = :default_deny,
+    DEFAULT_ALLOW = :default_allow
+  ].freeze
+
+  attr_accessor :subtarget
+  attr_accessor :cans, :cants
+
+  attr_accessor :can_all
+  alias :can_all? :can_all
+
+  attr_accessor :right_level
+
+  def self.formalize(object)
+    case object
+    when String then [object]
+    when Symbol then [object]
+    when NilClass then [object]
+    when Array then object
+    else
+      kls_name = object.class.to_s
+      method_name = Bali::TRANSLATED_SUBTARGET_ROLES[kls_name]
+      roles = method_name ? formalize(object.send(method_name)) : formalize(nil)
+
+      roles
+    end
+  end
+
+  def initialize(subtarget)
+    @subtarget = subtarget&.to_sym
+    @right_level = INHERIT
+
+    @cans = {}
+    @cants = {}
+  end
+
+  def can_all?
+    right_level == DEFAULT_ALLOW
+  end
+
+  def cant_all?
+    right_level == DEFAULT_DENY
+  end
+
+  def can_all=(bool)
+    case bool
+    when true then @right_level = DEFAULT_ALLOW
+    else @right_level = DEFAULT_DENY
+    end
+  end
+
+  def << rule
+    # operation cant be defined twice
+    operation = rule.operation.to_sym
+
+    return if cants[operation] && cans[operation]
+
+    if rule.term == :cant
+      cants[operation] = rule
+      cans.delete operation
+    else
+      cans[operation] = rule
+      cants.delete operation
+    end
+  end
+
+  def find_rule(term, operation)
+    case term
+    when :can then cans[operation.to_sym]
+    when :cant then cants[operation.to_sym]
+    end
+  end
+
+  def rules
+    cans.values + cants.values
+  end
+end

data/lib/bali/rule.rb

@@ -0,0 +1,17 @@
+# This class represents a rule.
+#   can :delete
+# A rule can also contains conditional part
+class Bali::Rule
+  attr_reader :term
+  attr_reader :operation
+  attr_accessor :conditional
+
+  def initialize(term, operation)
+    @term = term
+    @operation = operation
+  end
+
+  def conditional?
+    @is_conditional ||= !!conditional
+  end
+end

data/lib/bali/ruler.rb

@@ -0,0 +1,36 @@
+# This class represents all roles, and its rules, for a resource
+class Bali::Ruler
+  attr_reader :model_class
+  attr_accessor :roles
+
+  private :model_class
+
+  def self.for(record_class)
+    rule_class = Bali::RULE_CLASS_MAP[record_class.to_s]
+
+    if rule_class.nil?
+      rule_class_maker_str = record_class.to_s + Bali.config.suffix
+      rule_class_maker = rule_class_maker_str.safe_constantize
+
+      if rule_class_maker && rule_class_maker.ancestors.include?(Bali::Rules)
+        rule_class = rule_class_maker.ruler
+        Bali::RULE_CLASS_MAP[record_class.to_s] = rule_class
+      end
+    end
+
+    rule_class
+  end
+
+  def initialize(model_class)
+    @model_class = model_class
+    @roles = {}
+  end
+
+  def << role
+    @roles[role.subtarget] = role
+  end
+
+  def [] role
+    @roles[role&.to_sym]
+  end
+end

data/lib/bali/rules.rb

@@ -0,0 +1,68 @@
+class Bali::Rules
+  class << self
+    attr_writer :current_role
+    attr_reader :ruler
+  end
+
+  def self.model_class
+    class_name = to_s
+    suffix = Bali.config.suffix
+    rule_class_maker_str = class_name[0...class_name.length - suffix.length]
+    rule_class_maker_str.constantize
+  end
+
+  def self.can(*args, &block)
+    add :can, *args, block
+  end
+
+  def self.cant(*args, &block)
+    add :cant, *args, block
+  end
+
+  def self.cant_all(*args)
+    current_role.can_all = false
+  end
+
+  def self.can_all(*args)
+    current_role.can_all = true
+  end
+
+  def self.role(*roles)
+    roles.each do |role|
+      if Symbol === role || String === role || NilClass === role
+        set_role role
+        yield
+      else
+        raise Bali::DslError, "Cannot define role using #{param.class}. " +
+          "Please use either a Symbol, a String or nil"
+      end
+    end
+  end
+
+  def self.current_role
+    @current_role ||= set_role nil
+  end
+
+  def self.ruler
+    @ruler ||= begin
+      rule_class = Bali::Ruler.new(model_class)
+      Bali::RULE_CLASS_MAP[model_class.to_s] = rule_class
+      rule_class
+    end
+  end
+
+  def self.set_role(role)
+    role = ruler[role] || Bali::Role.new(role)
+    ruler << role
+    @current_role = role
+  end
+
+  def self.add(term, *operations, block)
+    operations.each do |operation|
+      rule = Bali::Rule.new(term, operation)
+      rule.conditional = block if block
+      current_role << rule
+    end
+  end
+
+end

data/lib/bali/tasks/bali/print_rules.rake

@@ -0,0 +1,9 @@
+namespace :bali do
+  desc "Print all rules nicely"
+  task print_rules: :environment do
+    rules_path = Bali.config.rules_path
+    Dir.glob("#{rules_path}/**/*.rb").each { |f| load f }
+
+    $stdout.puts Bali::Printer.pretty_print
+  end
+end

data/lib/bali/version.rb

@@ -1,3 +1,3 @@
 module Bali
-  VERSION = "2.4.0"
+  VERSION = "6.0.0rc1"
 end

data/lib/generators/rails/USAGE

@@ -0,0 +1,8 @@
+Description:
+    Stubs out a rule class in app/rules directory.
+
+Examples:
+    `rails g rules book`
+
+    This creates:
+        app/rules/book_rules.rb

data/lib/generators/rails/rules_generator.rb

@@ -0,0 +1,17 @@
+# frozen_string_literal: true
+
+module Rails
+  module Generators
+    class RulesGenerator < NamedBase
+      source_root File.expand_path("templates", __dir__)
+      check_class_collision suffix: Bali.config.suffix
+
+      def create_decorator_file
+        template "rules.rb",
+          File.join(Bali.config.rules_path, "#{file_name}_#{Bali.config.suffix.downcase}.rb")
+      end
+
+      hook_for :test_framework
+    end
+  end
+end

data/lib/generators/rails/templates/rules.rb

@@ -0,0 +1,4 @@
+# frozen_string_literal: true
+
+class <%= class_name %><%= Bali.config.suffix %> < Bali::Rules
+end

data/lib/generators/rspec/rules_generator.rb

@@ -0,0 +1,12 @@
+module Rspec
+  module Generators
+    class RulesGenerator < ::Rails::Generators::NamedBase
+      source_root File.expand_path("templates", __dir__)
+
+      def create_spec_file
+        template "rules_spec.rb",
+          File.join("spec/rules", class_path, "#{file_name}_#{Bali.config.suffix.downcase}_spec.rb")
+      end
+    end
+  end
+end

data/lib/generators/rspec/templates/rules_spec.rb

@@ -0,0 +1,7 @@
+# frozen_string_literal: true
+
+require '<%= File.exists?('spec/rails_helper.rb') ? 'rails_helper' : 'spec_helper' %>'
+
+RSpec.describe <%= class_name %><%= Bali.config.suffix %> do
+
+end

metadata

@@ -1,97 +1,156 @@
 --- !ruby/object:Gem::Specification
 name: bali
 version: !ruby/object:Gem::Version
-  version: 2.4.0
+  version: 6.0.0rc1
 platform: ruby
 authors:
-- Adam Pahlevi
+- Adam Notodikromo
 autorequire: 
 bindir: exe
 cert_chain: []
-date: 2016-03-01 00:00:00.000000000 Z
+date: 2020-04-26 00:00:00.000000000 Z
 dependencies:
+- !ruby/object:Gem::Dependency
+  name: zeitwerk
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '2'
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '2.2'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '2'
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '2.2'
+- !ruby/object:Gem::Dependency
+  name: rails
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 5.0.0
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 5.0.0
 - !ruby/object:Gem::Dependency
   name: bundler
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - ~>
+    - - ">="
       - !ruby/object:Gem::Version
-        version: '1.9'
+        version: '0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - ~>
+    - - ">="
       - !ruby/object:Gem::Version
-        version: '1.9'
+        version: '0'
 - !ruby/object:Gem::Dependency
   name: rake
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - ~>
+    - - "~>"
       - !ruby/object:Gem::Version
         version: '10.0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - ~>
+    - - "~>"
       - !ruby/object:Gem::Version
         version: '10.0'
 - !ruby/object:Gem::Dependency
   name: rspec
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - ~>
+    - - "~>"
       - !ruby/object:Gem::Version
-        version: '3.3'
+        version: '3.9'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - ~>
+    - - "~>"
       - !ruby/object:Gem::Version
-        version: '3.3'
-description: ! "Bali (Bulwark Authorization Library) is a universal authorization
-  library, in the sense that \n                          it does not assume you to
-  use specific Ruby library/gem/framework."
+        version: '3.9'
+- !ruby/object:Gem::Dependency
+  name: pry-byebug
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: simplecov
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+description: Bali (Bulwark Authorization Library) is a to-the-point authorization
+  library for Rails.
 email:
-- adam.pahlevi@gmail.com
+- abaihaqi@acm.org
 executables: []
 extensions: []
 extra_rdoc_files: []
 files:
-- .gitignore
-- .rspec
-- .travis.yml
+- ".gitignore"
+- ".rspec"
+- ".travis.yml"
 - Gemfile
 - Rakefile
 - bali.gemspec
 - bin/console
 - bin/setup
 - lib/bali.rb
-- lib/bali/dsl/map_rules_dsl.rb
-- lib/bali/dsl/rules_for_dsl.rb
-- lib/bali/foundations/all_foundations.rb
-- lib/bali/foundations/exceptions/authorization_error.rb
-- lib/bali/foundations/exceptions/bali_error.rb
-- lib/bali/foundations/exceptions/dsl_error.rb
-- lib/bali/foundations/exceptions/objection_error.rb
-- lib/bali/foundations/judger/judge.rb
-- lib/bali/foundations/judger/negative_judge.rb
-- lib/bali/foundations/judger/positive_judge.rb
-- lib/bali/foundations/role_extractor.rb
-- lib/bali/foundations/rule/rule.rb
-- lib/bali/foundations/rule/rule_class.rb
-- lib/bali/foundations/rule/rule_group.rb
-- lib/bali/integrators/all_integrators.rb
-- lib/bali/integrators/rule_class_integrator.rb
-- lib/bali/integrators/rule_group_integrator.rb
-- lib/bali/integrators/rule_integrator.rb
-- lib/bali/objector.rb
+- lib/bali/activerecord.rb
+- lib/bali/authorizer.rb
+- lib/bali/config.rb
+- lib/bali/dsl_error.rb
+- lib/bali/error.rb
+- lib/bali/judge.rb
 - lib/bali/printer.rb
+- lib/bali/railtie.rb
+- lib/bali/role.rb
+- lib/bali/rule.rb
+- lib/bali/ruler.rb
+- lib/bali/rules.rb
+- lib/bali/tasks/bali/print_rules.rake
 - lib/bali/version.rb
-homepage: https://github.com/saveav/bali
+- lib/generators/rails/USAGE
+- lib/generators/rails/rules_generator.rb
+- lib/generators/rails/templates/rules.rb
+- lib/generators/rspec/rules_generator.rb
+- lib/generators/rspec/templates/rules_spec.rb
+homepage: https://github.com/adamnoto/bali
 licenses:
 - MIT
 metadata: {}
@@ -101,19 +160,17 @@ require_paths:
 - lib
 required_ruby_version: !ruby/object:Gem::Requirement
   requirements:
-  - - ! '>='
+  - - ">="
     - !ruby/object:Gem::Version
       version: '0'
 required_rubygems_version: !ruby/object:Gem::Requirement
   requirements:
-  - - ! '>='
+  - - ">"
     - !ruby/object:Gem::Version
-      version: '0'
+      version: 1.3.1
 requirements: []
-rubyforge_project: 
-rubygems_version: 2.4.8
+rubygems_version: 3.0.3
 signing_key: 
 specification_version: 4
-summary: Bali is a powerful, framework-agnostic, thread-safe Ruby language authorization
-  library
+summary: A to-the-point authorization library for Rails
 test_files: []