cancan_edit 0.0.1

data/VERSION

@@ -0,0 +1 @@
+0.0.1

data/cancan_edit.gemspec

@@ -0,0 +1,12 @@
+Gem::Specification.new do |s|
+  s.name = 'cancan_edit'
+  s.version = File.read "VERSION"
+  s.summary = "cancan ability for views"
+  s.authors = "Serkan Gonuler"
+  s.email = "serkangonuler@gmail.com"
+  s.homepage = 'http://github.com/lisica/cancan_edit' 
+  s.files       = Dir["lib/**/*"] << "VERSION" << "readme.markdown" << "cancan_edit.gemspec" 
+ 
+  s.add_development_dependency 'rspec', '~> 2.6.0'
+  s.add_dependency  "cancan", '~> 1.6.7'
+end

data/lib/cancan_edit.rb

@@ -0,0 +1,5 @@
+require "cancan"
+require "cancan_edit/edit_ability"
+require "cancan_edit/edit_additions"
+require "cancan_edit/edit_rule"
+require "cancan_edit/controller_additions"

data/lib/cancan_edit/controller_additions.rb

@@ -0,0 +1,22 @@
+module CanCan
+  module ControllerAdditions
+    def self.included(base)
+      base.helper_method :can_edit?, :cannot_edit?
+    end
+
+    def can_edit?(*args)
+      current_ability.can_edit?(*args)
+    end
+    
+    def cannot_edit?(*args)
+      current_ability.cannot_edit?(*args)
+    end  
+  end
+end
+
+if defined? ActionController
+  ActionController::Base.class_eval do
+    include CanCan::ControllerAdditions
+  end
+end
+

data/lib/cancan_edit/edit_ability.rb

@@ -0,0 +1,55 @@
+module CanCan
+  
+  module EditAbility
+    
+    def can_edit?(field, subject, *extra_args)
+      match = relevant_edit_rules_for_match(field, subject).detect do |rule|
+        rule.matches_conditions?(field, subject, extra_args)
+      end
+      match ? match.base_behavior : false
+    end
+
+    def cannot_edit?(*args)
+      !can_edit?(*args)
+    end
+      
+    def can_edit(field = nil, subject = nil, conditions = nil, &block)
+      edit_rules << EditRule.new(true, field, subject, conditions, block)
+    end
+    
+    def cannot_edit(field = nil, subject = nil, conditions = nil, &block)
+      edit_rules << EditRule.new(false, field, subject, conditions, block)
+    end
+    
+    def has_block?(field, subject)
+      relevant_rules(field, subject).any?(&:only_block?)
+    end
+
+    def has_raw_sql?(field, subject)
+      relevant_rules(field, subject).any?(&:only_raw_sql?)
+    end
+
+  private
+    
+    def edit_rules
+      @edit_rules ||= []
+    end
+    
+    def relevant_edit_rules(field, subject)
+      edit_rules.reverse.select do |edit_rule|     
+        edit_rule.expanded_fields = edit_rule.fields
+        edit_rule.relevant? field, subject
+      end
+    end
+    
+    
+    def relevant_edit_rules_for_match(field, subject)
+      relevant_edit_rules(field, subject).each do |rule|
+        if rule.only_raw_sql?
+          raise Error, "The can? and cannot? call cannot be used with a raw sql 'can' definition. The checking code cannot be determined for #{field.inspect} #{subject.inspect}"
+        end
+      end
+    end
+
+  end
+end

data/lib/cancan_edit/edit_additions.rb

@@ -0,0 +1,38 @@
+class ActionView::Helpers::FormBuilder
+  (field_helpers - %w(label check_box radio_button fields_for hidden_field apply_form_for_options!)).each do |selector|
+    class_eval <<-RUBY_EVAL, __FILE__, __LINE__ + 1
+      def #{selector}_with_cancan(method, options = {}) 
+        options.merge!({:disabled => true}) unless (@template.can_edit? method.to_sym, @object)
+        #{selector}_without_cancan(method, options)       
+      end
+    RUBY_EVAL
+  alias_method_chain selector.to_sym, :cancan
+  end
+  
+  def check_box_with_cancan(method, options = {}, checked_value = "1", unchecked_value = "0")
+    options.merge!({:disabled => true}) unless (@template.can_edit? method.to_sym, @object) 
+    check_box_without_cancan(method, options, checked_value = "1", unchecked_value = "0")
+  end
+  alias_method_chain :check_box, :cancan
+
+  def radio_button_with_cancan(method, tag_value, options = {})
+    options.merge!({:disabled => true}) unless (@template.can_edit? method.to_sym, @object)
+    radio_button_without_cancan(method, tag_value, options)    
+  end
+  alias_method_chain :radio_button, :cancan
+end
+
+# password_field
+# file_field
+# number_field
+# text_field
+# text_area
+# telephone_field
+# email_field
+# search_field
+# range_field
+# url_field
+# phone_field
+# check_box
+# radio_button
+

data/lib/cancan_edit/edit_rule.rb

@@ -0,0 +1,113 @@
+module CanCan
+  class EditRule 
+    attr_reader :base_behavior, :subjects, :fields, :conditions
+    attr_writer :expanded_fields
+
+    def initialize(base_behavior, field, subject, conditions, block)
+      raise Error, "You are not able to supply a block with a hash of conditions in #{field} #{subject} ability. Use either one." if conditions.kind_of?(Hash) && !block.nil?
+      @match_all = field.nil? && subject.nil?
+      @base_behavior = base_behavior
+      @fields = [field].flatten
+      @subjects = [subject].flatten
+      @conditions = conditions || {}
+      @block = block
+    end
+
+    def relevant?(field, subject)
+      subject = subject.values.first if subject.class == Hash
+      @match_all || (matches_field?(field) && matches_subject?(subject))
+    end
+    
+    def matches_conditions?(field, subject, extra_args)
+      if @match_all
+        call_block_with_all(field, subject, extra_args)
+      elsif @block && !subject_class?(subject)
+        @block.call(subject, *extra_args)
+      elsif @conditions.kind_of?(Hash) && subject.class == Hash
+        nested_subject_matches_conditions?(subject)
+      elsif @conditions.kind_of?(Hash) && !subject_class?(subject)
+        matches_conditions_hash?(subject)
+      else
+        @conditions.empty? ? true : @base_behavior
+      end
+    end
+    
+    def only_block?
+      conditions_empty? && !@block.nil?
+    end
+    
+    def only_raw_sql?
+      @block.nil? && !conditions_empty? && !@conditions.kind_of?(Hash)
+    end
+
+    def conditions_empty?
+      @conditions == {} || @conditions.nil?
+    end
+  
+  private 
+  
+    def subject_class?(subject)
+      klass = (subject.kind_of?(Hash) ? subject.values.first : subject).class
+      klass == Class || klass == Module
+    end
+  
+    def matches_field?(field)
+      @expanded_fields.include?(:manage) || @expanded_fields.include?(field)
+    end
+  
+    def matches_subject?(subject)
+      @subjects.include?(:all) || @subjects.include?(subject) || matches_subject_class?(subject)
+    end
+  
+    def matches_subject_class?(subject)
+      @subjects.any? { |sub| sub.kind_of?(Module) && (subject.kind_of?(sub) || subject.class.to_s == sub.to_s || subject.kind_of?(Module) && subject.ancestors.include?(sub)) }
+    end
+    
+    def matches_conditions_hash?(subject, conditions = @conditions)
+      if conditions.empty?
+        true
+      else
+        if model_adapter(subject).override_conditions_hash_matching? subject, conditions
+          model_adapter(subject).matches_conditions_hash? subject, conditions
+        else
+          conditions.all? do |name, value|
+            if model_adapter(subject).override_condition_matching? subject, name, value
+              model_adapter(subject).matches_condition? subject, name, value
+            else
+              attribute = subject.send(name)
+              if value.kind_of?(Hash)
+                if attribute.kind_of? Array
+                  attribute.any? { |element| matches_conditions_hash? element, value }
+                else
+                  !attribute.nil? && matches_conditions_hash?(attribute, value)
+                end
+              elsif value.kind_of?(Array) || value.kind_of?(Range)
+                value.include? attribute
+              else
+                attribute == value
+              end
+            end
+          end
+        end
+      end
+    end
+
+    def nested_subject_matches_conditions?(subject_hash)
+      parent, child = subject_hash.shift
+      matches_conditions_hash?(parent, @conditions[parent.class.name.downcase.to_sym] || {})
+    end
+
+    def call_block_with_all(field, subject, extra_args)
+      if subject.class == Class
+        @block.call(field, subject, nil, *extra_args)
+      else
+        @block.call(field, subject.class, subject, *extra_args)
+      end
+    end
+    
+    def model_adapter(subject)
+      ModelAdapters::AbstractAdapter.adapter_class(subject_class?(subject) ? subject : subject.class)
+    end
+  end
+end
+

data/readme.markdown

@@ -0,0 +1,59 @@
+#cancan_edit
+`cancan_edit` is a gem for your views, in which you can disable and/or
+enable fields based on permissions.
+
+##Installation
+
+```sh    
+$  gem install cancan_edit
+```
+     
+
+##How to use?
+
+let's assume you have Person model with 
+   
+    first_name, text_field, 
+    last_name, text_field,
+    address, textarea,
+    is_admin, checkbox
+
+and you are using cancan for authorization with 
+    admin
+    photo_editor
+groups.
+
+
+you want an admin group to be able to edit all fields and all models.
+ 
+```ruby
+  can_edit :manage, :all
+```
+
+you want an admin group to be able to change "is_admin" checkbox but
+not photo_editor.    
+
+```ruby
+  class Ability
+    include CanCan::Ability
+    include CanCan::EditAbility
+  
+    def initialize(user)
+      if user.is?("admin")
+        can_edit :manage, Person
+      elsif user.is?("photo_editor") 
+        can_edit :manage, Person
+        cannot_edit [:is_admin] , Person
+      end
+    end
+  end
+```
+
+you can also 
+```ruby
+  can_edit [:first_name, :last_name ], [Person]
+```
+or 
+```
+  cannot_edit [:is_admin ], [Person]
+``` 

metadata

@@ -0,0 +1,103 @@
+--- !ruby/object:Gem::Specification 
+name: cancan_edit
+version: !ruby/object:Gem::Version 
+  hash: 29
+  prerelease: 
+  segments: 
+  - 0
+  - 0
+  - 1
+  version: 0.0.1
+platform: ruby
+authors: 
+- Serkan Gonuler
+autorequire: 
+bindir: bin
+cert_chain: []
+
+date: 2011-10-25 00:00:00 Z
+dependencies: 
+- !ruby/object:Gem::Dependency 
+  name: rspec
+  prerelease: false
+  requirement: &id001 !ruby/object:Gem::Requirement 
+    none: false
+    requirements: 
+    - - ~>
+      - !ruby/object:Gem::Version 
+        hash: 23
+        segments: 
+        - 2
+        - 6
+        - 0
+        version: 2.6.0
+  type: :development
+  version_requirements: *id001
+- !ruby/object:Gem::Dependency 
+  name: cancan
+  prerelease: false
+  requirement: &id002 !ruby/object:Gem::Requirement 
+    none: false
+    requirements: 
+    - - ~>
+      - !ruby/object:Gem::Version 
+        hash: 1
+        segments: 
+        - 1
+        - 6
+        - 7
+        version: 1.6.7
+  type: :runtime
+  version_requirements: *id002
+description: 
+email: serkangonuler@gmail.com
+executables: []
+
+extensions: []
+
+extra_rdoc_files: []
+
+files: 
+- lib/cancan_edit/controller_additions.rb
+- lib/cancan_edit/edit_ability.rb
+- lib/cancan_edit/edit_additions.rb
+- lib/cancan_edit/edit_rule.rb
+- lib/cancan_edit.rb
+- VERSION
+- readme.markdown
+- cancan_edit.gemspec
+homepage: http://github.com/lisica/cancan_edit
+licenses: []
+
+post_install_message: 
+rdoc_options: []
+
+require_paths: 
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement 
+  none: false
+  requirements: 
+  - - ">="
+    - !ruby/object:Gem::Version 
+      hash: 3
+      segments: 
+      - 0
+      version: "0"
+required_rubygems_version: !ruby/object:Gem::Requirement 
+  none: false
+  requirements: 
+  - - ">="
+    - !ruby/object:Gem::Version 
+      hash: 3
+      segments: 
+      - 0
+      version: "0"
+requirements: []
+
+rubyforge_project: 
+rubygems_version: 1.8.10
+signing_key: 
+specification_version: 3
+summary: cancan ability for views
+test_files: []
+