bsm-sso-client 0.7.8 → 0.7.9

data/lib/bsm/sso/client.rb

@@ -22,6 +22,7 @@ module Bsm
       autoload :FailureApp, 'bsm/sso/client/failure_app'
       autoload :Cached, 'bsm/sso/client/cached'
       autoload :Ability, 'bsm/sso/client/ability'
+      autoload :AuthorizedController, 'bsm/sso/client/authorized_controller'
 
       mattr_accessor :secret
       @@secret = nil

data/lib/bsm/sso/client/authorized_controller.rb

@@ -0,0 +1,42 @@
+begin
+  require 'inherited_resources'
+rescue LoadError => e
+  warn "\n [!] Please install `inherited_resources` Gem to use the AuthorizedController\n"
+  raise
+end
+
+class Bsm::Sso::Client::AuthorizedController < InheritedResources::Base
+
+  before_filter :authorize_inherited_resource!
+
+  protected
+
+    # Override. Apply `accessible_by` scope if #scope_accessible? applies
+    def apply_scopes(*)
+      relation = super
+      relation = relation.accessible_by(current_ability) if scope_accessible?
+      relation
+    end
+
+    # Callback. Default authorization of inherited resources
+    def authorize_inherited_resource!
+      authorize! :show, parent if parent?
+      authorize! authorizable_action, authorize_resource? ? resource : resource_class
+    end
+
+    # @return [Boolean] true if a single resource is to be authorized, false if the whole resource class
+    def authorize_resource?
+      !!(resources_configuration[:self][:singleton] || params[:id])
+    end
+
+    # @return [Boolean] true if accessible_by scope should be applied
+    def scope_accessible?
+      !authorize_resource? && ['new', 'create'].exclude?(action_name)
+    end
+
+    # @return [Symbol] resource permission name, defaults to the action name
+    def authorizable_action
+      action_name.to_sym
+    end
+
+end

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: bsm-sso-client
 version: !ruby/object:Gem::Version
-  version: 0.7.8
+  version: 0.7.9
   prerelease: 
 platform: ruby
 authors:
@@ -9,7 +9,7 @@ authors:
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2012-09-19 00:00:00.000000000 Z
+date: 2012-10-29 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: railties
@@ -219,28 +219,45 @@ dependencies:
     - - ! '>='
       - !ruby/object:Gem::Version
         version: '0'
+- !ruby/object:Gem::Dependency
+  name: inherited_resources
+  requirement: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
 description: ''
 email: dimitrij@blacksquaremedia.com
 executables: []
 extensions: []
 extra_rdoc_files: []
 files:
-- lib/bsm/sso/client.rb
-- lib/bsm/sso/client/strategies/ticket.rb
-- lib/bsm/sso/client/strategies/base.rb
-- lib/bsm/sso/client/strategies/http_auth.rb
-- lib/bsm/sso/client/cached.rb
-- lib/bsm/sso/client/failure_app.rb
-- lib/bsm/sso/client/ability.rb
+- lib/bsm/sso/client/test_helpers.rb
 - lib/bsm/sso/client/abstract_resource.rb
-- lib/bsm/sso/client/railtie.rb
+- lib/bsm/sso/client/ability.rb
+- lib/bsm/sso/client/user.rb
+- lib/bsm/sso/client/cached.rb
 - lib/bsm/sso/client/user_methods.rb
-- lib/bsm/sso/client/test_helpers.rb
 - lib/bsm/sso/client/url_helpers.rb
-- lib/bsm/sso/client/user.rb
 - lib/bsm/sso/client/warden_ext.rb
+- lib/bsm/sso/client/authorized_controller.rb
 - lib/bsm/sso/client/strategies.rb
+- lib/bsm/sso/client/failure_app.rb
+- lib/bsm/sso/client/railtie.rb
 - lib/bsm/sso/client/cached/active_record.rb
+- lib/bsm/sso/client/strategies/ticket.rb
+- lib/bsm/sso/client/strategies/http_auth.rb
+- lib/bsm/sso/client/strategies/base.rb
+- lib/bsm/sso/client.rb
 - lib/bsm-sso-client.rb
 homepage: https://github.com/bsm/sso-client
 licenses: []