RubyGems - bali - Versions diffs - 2.4.0 → 6.0.1 - Mend

bali 2.4.0 → 6.0.1

Files changed (54) hide show

checksums.yaml +5 -13
data/.gitignore +2 -0
data/.rspec +1 -0
data/.travis.yml +44 -2
data/gemfiles/Gemfile-rails.5.0.x +7 -0
data/gemfiles/Gemfile-rails.5.1.x +6 -0
data/gemfiles/Gemfile-rails.5.2.x +6 -0
data/gemfiles/Gemfile-rails.6.0.x +5 -0
data/gemfiles/Gemfile-rails.edge +14 -0
data/lib/bali.rb +33 -22
data/lib/bali/config.rb +12 -0
data/lib/bali/dsl_error.rb +3 -0
data/lib/bali/{foundations/exceptions/bali_error.rb → error.rb} +0 -0
data/lib/bali/judge.rb +221 -0
data/lib/bali/printer.rb +42 -31
data/lib/bali/rails/action_controller.rb +17 -0
data/lib/bali/rails/action_view.rb +12 -0
data/lib/bali/rails/active_record.rb +11 -0
data/lib/bali/railtie.rb +13 -0
data/lib/bali/role.rb +110 -0
data/lib/bali/rspec/able_to_matcher.rb +39 -0
data/lib/bali/rule.rb +17 -0
data/lib/bali/ruler.rb +38 -0
data/lib/bali/rules.rb +51 -0
data/lib/bali/statics/active_record.rb +2 -0
data/lib/bali/statics/authorizer.rb +65 -0
data/lib/bali/statics/record.rb +13 -0
data/lib/bali/statics/scope_ruler.rb +39 -0
data/lib/bali/tasks/bali/print_rules.rake +9 -0
data/lib/bali/version.rb +1 -1
data/lib/generators/rails/USAGE +8 -0
data/lib/generators/rails/rules_generator.rb +17 -0
data/lib/generators/rails/templates/rules.rb +4 -0
data/lib/generators/rspec/rules_generator.rb +12 -0
data/lib/generators/rspec/templates/rules_spec.rb +7 -0
metadata +131 -49
data/lib/bali/dsl/map_rules_dsl.rb +0 -75
data/lib/bali/dsl/rules_for_dsl.rb +0 -130
data/lib/bali/foundations/all_foundations.rb +0 -17
data/lib/bali/foundations/exceptions/authorization_error.rb +0 -38
data/lib/bali/foundations/exceptions/dsl_error.rb +0 -3
data/lib/bali/foundations/exceptions/objection_error.rb +0 -3
data/lib/bali/foundations/judger/judge.rb +0 -329
data/lib/bali/foundations/judger/negative_judge.rb +0 -40
data/lib/bali/foundations/judger/positive_judge.rb +0 -41
data/lib/bali/foundations/role_extractor.rb +0 -61
data/lib/bali/foundations/rule/rule.rb +0 -55
data/lib/bali/foundations/rule/rule_class.rb +0 -54
data/lib/bali/foundations/rule/rule_group.rb +0 -91
data/lib/bali/integrators/all_integrators.rb +0 -8
data/lib/bali/integrators/rule_class_integrator.rb +0 -27
data/lib/bali/integrators/rule_group_integrator.rb +0 -29
data/lib/bali/integrators/rule_integrator.rb +0 -56
data/lib/bali/objector.rb +0 -173

checksums.yaml CHANGED

@@ -1,15 +1,7 @@
 ---
-!binary "U0hBMQ==":
-  metadata.gz: !binary |-
-    M2I3NWNjNmVlNWM4YzQyMGU0YzAyNzBmZGJmNTBjMTUxMGYxOWMxYg==
-  data.tar.gz: !binary |-
-    MzhkMjlhYzA4NDU3M2M4ODE1ODkxZTU0ZDA3NDJjZGUwODNmOTZhYg==
+SHA256:
+  metadata.gz: 5f2c3170fb8da9fc0a76becddae855901f97cef723cd9db86073e0e2c15d177c
+  data.tar.gz: e9555504164bfb3155d281cfbf4d40629c347d178b76b7eaed2c83caacdcfc4a
 SHA512:
-  metadata.gz: !binary |-
-    MTJhOTRkODJhMWM5OTIzNjA0NTQ0OWVjMTMzOTgwZDFlZDBhZjQzNjQ0N2Y2
-    YWViMDExYzMyZjI5Y2YyOTYxNDdhZWJmYWU5YTVlNDYwODgwZDA1NDhhZWRm
-    NTliMTI1ZGEyMjNjY2QyNGEwNTM5YjNjNDc5OGIxYjk2MTYyNTI=
-  data.tar.gz: !binary |-
-    NTMzMzBjNTczZmM2MDE1YmI0NjA0ZjY1MDRhZGZmNWRiNTRjZGYzMDRmMWI4
-    Zjk4ZTEzNGZkZDg0NzFmZjg0YjYwNDQ2OGVlYjgwNzkwNTY4MGFlZDE1NjI3
-    ZDI1ZjlhNmFhODA4OGQzZDFhMjBkNjdjMjk1ZTI0YTkzZmQ4MTY=
+  metadata.gz: d2241cfc888b7b1c3ea4210c6a0dfc26ba790e8c190631b86d616000fbe4e927bea425f73b1547025c849f9ffc6b01c9f5389129ba9707258c79bf6a31c2c248
+  data.tar.gz: 472f04be142d2e7c42549f2927218c3ca57e880c11c86f2a6d409d0682ea76303299a33f065e070fa8ab38821a408a5ad37507f5d7189210d5baf68c231d4be4

data/.gitignore CHANGED

@@ -7,10 +7,12 @@
 /pkg/
 /spec/reports/
 /tmp/
+/spec/test_app/tmp
 *.swp
 *.swo
 *.gemspec
 *.gem
+*.log
 plugins

data/.rspec CHANGED

@@ -1,2 +1,3 @@
 --format documentation
 --color
+--require spec_helper

data/.travis.yml CHANGED

@@ -1,4 +1,46 @@
 language: ruby
+env:
+  global:
+    - CC_TEST_REPORTER_ID=76cedf4d3aa437009b269ff68b901102ca24baeb46245eb94fca42e21bba20a7
 rvm:
-  - 2.2.2
-before_install: gem install bundler -v 1.10.6
+ - 2.6.5
+before_install:
+  - curl -L https://codeclimate.com/downloads/test-reporter/test-reporter-latest-linux-amd64 > ./cc-test-reporter
+  - chmod +x ./cc-test-reporter
+  - ./cc-test-reporter before-build
+  - sudo apt update -qq
+  - gem i bundler -v '<2'
+cache: bundler
+script:
+  - bundle exec rspec
+after_script:
+  - ./cc-test-reporter after-build --exit-code $TRAVIS_TEST_RESULT
+matrix:
+  include:
+    - rvm: 2.7.0
+      gemfile: gemfiles/Gemfile-rails.6.0.x
+    - rvm: 2.6.3
+      gemfile: gemfiles/Gemfile-rails.6.0.x
+    - rvm: 2.6.3
+      gemfile: gemfiles/Gemfile-rails.5.2.x
+    - rvm: 2.4.4
+      gemfile: gemfiles/Gemfile-rails.5.2.x
+    - rvm: 2.6.3
+      gemfile: gemfiles/Gemfile-rails.5.1.x
+    - rvm: 2.6.3
+      gemfile: gemfiles/Gemfile-rails.5.0.x
+    - rvm: 2.4.4
+      gemfile: gemfiles/Gemfile-rails.5.0.x
+    - rvm: ruby-head
+      gemfile: gemfiles/Gemfile-rails.edge
+  allow_failures:
+    - rvm: ruby-head
+    - gemfile: gemfiles/Gemfile-rails.edge

data/gemfiles/Gemfile-rails.5.0.x ADDED

@@ -0,0 +1,7 @@
+source 'https://rubygems.org'
+gemspec path: '..'
+gem 'rails', '~> 5.0.0'
+gem 'rspec-rails', '~> 3.9'
+gem 'sqlite3', '< 1.4'

data/gemfiles/Gemfile-rails.5.1.x ADDED

@@ -0,0 +1,6 @@
+source 'https://rubygems.org'
+gemspec path: '..'
+gem 'rails', '~> 5.1.0'
+gem 'rspec-rails', '~> 3.9'

data/gemfiles/Gemfile-rails.5.2.x ADDED

@@ -0,0 +1,6 @@
+source 'https://rubygems.org'
+gemspec path: '..'
+gem 'rails', git: 'https://github.com/rails/rails', branch: '5-2-stable'
+gem 'rspec-rails', '~> 3.9'

data/gemfiles/Gemfile-rails.6.0.x ADDED

@@ -0,0 +1,5 @@
+source 'https://rubygems.org'
+gemspec path: '..'
+gem 'rails', '~> 6.0.0'

data/gemfiles/Gemfile-rails.edge ADDED

@@ -0,0 +1,14 @@
+source 'https://rubygems.org'
+gemspec path: '..'
+git_source(:github) do |repo_name|
+  repo_name = "#{repo_name}/#{repo_name}" unless repo_name.include?("/")
+  "https://github.com/#{repo_name}.git"
+end
+github 'rails/rails' do
+  gem 'rails'
+end
+gem 'rspec-rails', '~> 4.0'

data/lib/bali.rb CHANGED

@@ -1,33 +1,44 @@
 require_relative "bali/version"
-# load the DSL syntax maker definition, ordered by proper order of invocation
-require_relative "bali/dsl/map_rules_dsl"
-require_relative "bali/dsl/rules_for_dsl"
-require_relative "bali/objector"
-require_relative "bali/printer"
+begin
+  require "rails"
+  require "rails/generators"
+rescue LoadError => e
+  # ignores
+end
-require_relative "bali/foundations/all_foundations"
-require_relative "bali/integrators/all_integrators"
+require "zeitwerk"
+loader = Zeitwerk::Loader.for_gem
+loader.ignore("#{__dir__}/generators")
+loader.ignore("#{__dir__}/bali/rails")
+loader.ignore("#{__dir__}/bali/rspec")
+loader.setup
 module Bali
-  # mapping class to a RuleClass
-  RULE_CLASS_MAP = {}
+  extend self
+  def config
+    @config ||= Bali::Config.new
+  end
-  # {
-  #   User: :roles,
-  #   AdminUser: :admin_roles
-  # }
-  TRANSLATED_SUBTARGET_ROLES = {}
+  def configure
+    yield config
+  end
-  extend self
-  def map_rules(&block)
-    dsl_map_rules = Bali::MapRulesDsl.new
-    dsl_map_rules.instance_eval(&block)
+  if defined? Rails
+    require "bali/railtie"
+    require "bali/rails/action_controller"
+    require "bali/rails/action_view"
+    require "bali/rails/active_record"
   end
-  def clear_rules
-    Bali::RULE_CLASS_MAP.clear
-    true
+  if defined? RSpec
+    begin
+      require "rspec/matchers"
+      require "bali/rspec/able_to_matcher"
+    rescue LoadError => e
+    end
   end
 end
+loader.eager_load

data/lib/bali/config.rb ADDED

@@ -0,0 +1,12 @@
+class Bali::Config
+  attr_accessor :rules_path
+  attr_accessor :suffix
+  def initialize
+    if Rails.respond_to?(:root) && Rails.root
+      @rules_path = Rails.root.join("app", "rules")
+    end
+    @suffix = "Rules"
+  end
+end

data/lib/bali/dsl_error.rb ADDED

@@ -0,0 +1,3 @@
+# Error class to represent incorrect usage of syntax
+class Bali::DslError < Bali::Error
+end

data/lib/bali/{foundations/exceptions/bali_error.rb → error.rb} RENAMED

File without changes

data/lib/bali/judge.rb ADDED

@@ -0,0 +1,221 @@
+class Bali::Judge
+  # Fuzy value is possible when the evaluation is not yet clear cut, for example in this case:
+  #
+  # role :finance do
+  #   cant :view
+  # end
+  #
+  # others do
+  #   can :view
+  #   can :index
+  # end
+  #
+  # Checking cant view for finance role results in a definite false, but
+  # checking on index for the same role results in FUZY_TRUE. Eventually, all FUZY value will be
+  # normal TRUE or FALSE if no definite counterpart is found.
+  FUZY_FALSE = -2
+  FUZY_TRUE = 2
+  DEFINITE_FALSE = -1
+  DEFINITE_TRUE = 1
+  attr_accessor :term,
+    :actor,
+    :role,
+    :operation,
+    :record,
+    :should_cross_check
+  class << self
+    def default_judgement_value(term)
+      case term
+      when :can then false
+      when :cant then true
+      end
+    end
+    def check(term, actor_or_roles, operation, record)
+      if operation.nil?
+        # eg: user.can? :sign_in
+        operation = actor_or_roles
+        actor_or_roles = nil
+      end
+      judgement_value = default_value = default_judgement_value(term)
+      roles = Bali::Role.formalize actor_or_roles
+      roles.each do |role|
+        judge = Bali::Judge.new(
+          term: term,
+          role: role,
+          actor: actor_or_roles,
+          operation: operation,
+          record: record
+        )
+        judgement_value = judge.judgement
+        break if judgement_value != default_value
+      end
+      judgement_value
+    end
+  end
+  def initialize(term:,
+    actor:,
+    role:,
+    operation:,
+    record:,
+    should_cross_check: true)
+    @term = term
+    @role = role
+    @actor = actor
+    @operation = operation
+    @record = record
+    @should_cross_check = should_cross_check
+  end
+  def judgement
+    judgement = natural_value if no_rule_group?
+    if judgement.nil? && rule.nil?
+      cross_check_value = nil
+      # default if can? for undefined rule is false, after related clause
+      # cant be found in cant?
+      cross_check_value = cross_check_judge.judgement if should_cross_check
+      # if cross check value nil, then the reverse rule is not defined,
+      # let's determine whether they can do anything or not
+      if cross_check_value.nil?
+        judgement = deduce_from_defined_disposition
+      else
+        # process value from cross checking
+        if otherly_rule && (cross_check_value == FUZY_FALSE || cross_check_value == FUZY_TRUE)
+          # give chance to check at others block
+          @rule = otherly_rule
+        else
+          judgement = reverse_value(cross_check_value)
+        end
+      end
+    end
+    judgement ||= deduce_by_evaluation ||
+      deduce_from_fuzy_rules ||
+      natural_value
+    return !should_cross_check ?
+      judgement :
+      # translate response for value above to traditional true/false
+      # holy judgement refer to non-standard true/false being used inside Bali
+      # which need to be translated from other beings to know
+      judgement > 0
+  end
+  private
+    def record_class
+      record.is_a?(Class) ? record : record.class
+    end
+    def ruler
+      @ruler ||= Bali::Ruler.for record_class
+    end
+    def rule_group_for(role)
+      ruler.nil? ? nil : ruler[role]
+    end
+    def rule_group
+      @rule_group ||= rule_group_for role
+    end
+    def other_rule_group
+      @other_rule_group ||= rule_group_for nil
+    end
+    def no_rule_group?
+      rule_group.nil? && other_rule_group.nil?
+    end
+    def rule
+      # rule group may be nil, for when user checking for undefined rule group
+      @rule ||= rule_group ? rule_group.find_rule(term, operation) : nil
+    end
+    def otherly_rule
+      @otherly_rule ||= other_rule_group ? other_rule_group.find_rule(term, operation) : nil
+    end
+    def cross_check_judge
+      @cross_check_judge ||= begin
+        Bali::Judge.new(
+          term: reversed_term,
+          role: role,
+          operation: operation,
+          record: record,
+          should_cross_check: false,
+          actor: actor
+        )
+      end
+    end
+    def reversed_term
+      case term
+      when :can then :cant
+      when :cant then :can
+      end
+    end
+    def natural_value
+      term == :cant ? DEFINITE_TRUE : DEFINITE_FALSE
+    end
+    def reverse_value(value)
+      case value
+      when DEFINITE_TRUE then DEFINITE_FALSE
+      when DEFINITE_FALSE then DEFINITE_TRUE
+      when FUZY_FALSE then FUZY_TRUE
+      when FUZY_TRUE then FUZY_FALSE
+      end
+    end
+    def evaluate(rule, actor, record)
+      conditional = rule.conditional
+      evaluation  = case conditional.arity
+                    when 0 then conditional.()
+                    when 1 then conditional.(record)
+                    when 2 then conditional.(record, actor)
+                    end
+      evaluation ? DEFINITE_TRUE : DEFINITE_FALSE
+    end
+    def deduce_by_evaluation
+      return unless rule
+      rule.conditional? ?
+        evaluate(rule, actor, record) :
+        judgement = DEFINITE_TRUE
+    end
+    def deduce_from_defined_disposition
+      return unless rule_group
+      if rule_group.can_all?
+        reverse_value(natural_value)
+      elsif rule_group.cant_all?
+        natural_value
+      end
+    end
+    def deduce_from_fuzy_rules
+      reversed_otherly_rule = other_rule_group.find_rule(reversed_term, operation)
+      if reversed_otherly_rule
+        term == :cant ? FUZY_TRUE : FUZY_FALSE
+      end
+    end
+end

data/lib/bali/printer.rb CHANGED

@@ -2,62 +2,73 @@ require "stringio"
 require "date"
 # module that would allow all defined rules to be printed for check
-module Bali::Printer
-  module_function
+class Bali::Printer
+  include Singleton
   SEPARATOR = " " * 6
   SUBTARGET_TITLE_SEPARATOR = SEPARATOR + ("-" * 80) + "\n"
-  def pretty_print
+  def self.printable
+    instance.printable
+  end
+  def self.pretty_print
+    printable
+  end
+  def load_rule_classes
+    return unless Bali.config.rules_path.present?
+    Dir["#{Bali.config.rules_path}/**/*.rb"].each do |rule_class_path|
+      require rule_class_path
+    end
+  rescue LoadError
+    # ignore
+  end
+  def printable
+    load_rule_classes
     output = StringIO.new
     # build up the string for pretty printing rules
-    Bali::RULE_CLASS_MAP.each do |klass, rule_class|
-      output << "===== #{klass.to_s} =====\n\n"
-      rule_class.rule_groups.each do |subtarget, rule_group|
-        print_rule_group(rule_group, output)
-      end
+    rule_classes = ObjectSpace.each_object(Class).select { |cls| cls < Bali::Rules }
+    rule_classes.sort! { |a, b| a.to_s <=> b.to_s }
+    rule_classes.each do |rule_class|
+      output << "===== #{rule_class.model_class} =====\n\n"
-      if rule_class.others_rule_group.rules.any?
-        print_rule_group(rule_class.others_rule_group, output)
+      rule_class.ruler.roles.each do |subtarget, role|
+        print_role role, output
       end
       output << "\n\n"
     end
-    output << "\n\n"
-    output << DateTime.now.strftime("Printed at %d-%m-%Y %I:%M%p %Z")
+    output << DateTime.now.strftime("Printed at %Y-%m-%d %I:%M%p %Z")
     output.string
   end
-  def print_rule_group(rule_group, target_io)
-    target = rule_group.target.to_s
-    subtarget = rule_group.subtarget.to_s.capitalize
-    subtarget = "Others" if subtarget == "__*__"
-    is_zeus = rule_group.zeus?
-    is_plant = rule_group.plant?
+  def print_role role, target_io
+    subtarget = role.name.to_s.capitalize
+    subtarget = "By default" if subtarget.blank?
+    can_all = role.can_all?
     counter = 0
-    target_io << "#{SEPARATOR}#{subtarget}, can all: #{is_zeus}, cannot all: #{is_plant}\n"
+    target_io << "#{SEPARATOR}#{subtarget}\n"
     target_io << SUBTARGET_TITLE_SEPARATOR
-    if is_zeus
+    if can_all
       target_io << "#{SEPARATOR}  #{counter+=1}. #{subtarget} can do anything except if explicitly stated otherwise\n"
-    elsif is_plant
-      target_io << "#{SEPARATOR}  #{counter+=1}. #{subtarget} cannot do anything except if explicitly stated otherwise\n"
     end
-    rule_group.rules.each do |rule|
+    role.rules.each do |rule|
       written_rule = StringIO.new
-      written_rule << "#{SEPARATOR}  #{counter+=1}. #{subtarget} #{rule.auth_val} #{rule.operation} #{target}"
-      if rule.has_decider?
+      written_rule << "#{SEPARATOR}  #{counter+=1}. #{subtarget} #{rule.term} #{rule.operation}"
+      if rule.conditional?
         written_rule << ", with condition"
       end
       written_rule << "\n"
       target_io << written_rule.string
     end
-    target_io << "\n"
   end
 end