bsm-sso-client 0.7.4 → 0.7.5

data/lib/bsm/sso/client.rb

@@ -21,6 +21,7 @@ module Bsm
       autoload :UrlHelpers, 'bsm/sso/client/url_helpers'
       autoload :FailureApp, 'bsm/sso/client/failure_app'
       autoload :Cached, 'bsm/sso/client/cached'
+      autoload :Ability, 'bsm/sso/client/ability'
 
       mattr_accessor :secret
       @@secret = nil

data/lib/bsm/sso/client/ability.rb

@@ -0,0 +1,78 @@
+begin
+  require 'cancan/ability'
+rescue LoadError => e
+  warn "\n [!] Please install `cancan` Gem to use the Ability module\n"
+  raise
+end
+
+module Bsm::Sso::Client::Ability
+  extend ActiveSupport::Concern
+
+  included do
+    include CanCan::Ability
+  end
+
+  module ClassMethods
+
+    # @return [Hash] roles, scoped by user type
+    def roles
+      private_instance_methods(false).inject({}) do |result, name|
+        prefix, scope, name = name.to_s.split('__')
+        next result unless prefix == "as" && scope && name
+
+        result[scope.to_sym] ||= []
+        result[scope.to_sym] << name
+        result
+      end
+    end
+
+    # Ability definition helper
+    # @param [Symbol] scope the user scope
+    # @param [String] name the role name
+    def as(scope, name, &block)
+      method_name = :"as__#{scope}__#{name}"
+
+      define_method(method_name) do
+        return false if self.scope != scope || applied.include?(name.to_s)
+        applied.add(name.to_s)
+        instance_eval(&block)
+        true
+      end
+      private method_name
+    end
+
+  end
+
+  # @attr_reader [User] current user record
+  attr_reader :user
+
+  # Construstor
+  # @param [User] current user record
+  def initialize(user)
+    @user = user
+    @user.roles.each do |name|
+      same_as(name)
+    end
+    if @user.level >= 90
+      same_as(:administrator)
+    end
+  end
+
+  # @return [Symbol] the user scope
+  def scope
+    @scope ||= (user.respond_to?(:employee?) && user.employee? ? :employee : :client)
+  end
+
+  # @return [Set] applied roles
+  def applied
+    @applied ||= Set.new
+  end
+
+  # Runs a role method
+  # @param [String] name the role name
+  def same_as(name)
+    method = :"as__#{scope}__#{name}"
+    send(method) if respond_to?(method, true)
+  end
+
+end

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: bsm-sso-client
 version: !ruby/object:Gem::Version
-  version: 0.7.4
+  version: 0.7.5
   prerelease: 
 platform: ruby
 authors:
@@ -9,7 +9,7 @@ authors:
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2012-08-24 00:00:00.000000000 Z
+date: 2012-08-30 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: railties
@@ -82,7 +82,7 @@ dependencies:
     requirements:
     - - ! '>='
       - !ruby/object:Gem::Version
-        version: 0.14.0
+        version: 0.16.0
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
@@ -90,7 +90,23 @@ dependencies:
     requirements:
     - - ! '>='
       - !ruby/object:Gem::Version
-        version: 0.14.0
+        version: 0.16.0
+- !ruby/object:Gem::Dependency
+  name: cancan
+  requirement: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: 1.6.8
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: 1.6.8
 - !ruby/object:Gem::Dependency
   name: activerecord
   requirement: !ruby/object:Gem::Requirement
@@ -215,6 +231,7 @@ files:
 - lib/bsm/sso/client/strategies/http_auth.rb
 - lib/bsm/sso/client/cached.rb
 - lib/bsm/sso/client/failure_app.rb
+- lib/bsm/sso/client/ability.rb
 - lib/bsm/sso/client/abstract_resource.rb
 - lib/bsm/sso/client/railtie.rb
 - lib/bsm/sso/client/user_methods.rb
@@ -250,3 +267,4 @@ signing_key:
 specification_version: 3
 summary: BSM's internal SSO client
 test_files: []
+has_rdoc: