RubyGems - cancancan - Versions diffs - 1.15.0 → 1.16.0 - Mend

cancancan 1.15.0 → 1.16.0

Files changed (41) hide show

checksums.yaml +4 -4
data/.rubocop.yml +38 -0
data/.rubocop_todo.yml +48 -0
data/.travis.yml +8 -2
data/Appraisals +1 -0
data/CHANGELOG.rdoc +5 -0
data/Gemfile +1 -1
data/README.md +58 -41
data/Rakefile +7 -3
data/cancancan.gemspec +13 -12
data/gemfiles/activerecord_4.2.gemfile +1 -0
data/lib/cancan.rb +2 -2
data/lib/cancan/ability.rb +26 -24
data/lib/cancan/controller_additions.rb +33 -23
data/lib/cancan/controller_resource.rb +83 -56
data/lib/cancan/exceptions.rb +1 -1
data/lib/cancan/matchers.rb +2 -2
data/lib/cancan/model_adapters/abstract_adapter.rb +8 -8
data/lib/cancan/model_adapters/active_record_4_adapter.rb +48 -35
data/lib/cancan/model_adapters/active_record_adapter.rb +18 -17
data/lib/cancan/model_adapters/mongoid_adapter.rb +26 -21
data/lib/cancan/model_adapters/sequel_adapter.rb +12 -12
data/lib/cancan/model_additions.rb +0 -1
data/lib/cancan/rule.rb +23 -17
data/lib/cancan/version.rb +1 -1
data/lib/generators/cancan/ability/ability_generator.rb +1 -1
data/spec/cancan/ability_spec.rb +189 -180
data/spec/cancan/controller_additions_spec.rb +77 -64
data/spec/cancan/controller_resource_spec.rb +230 -228
data/spec/cancan/exceptions_spec.rb +20 -20
data/spec/cancan/inherited_resource_spec.rb +21 -21
data/spec/cancan/matchers_spec.rb +12 -12
data/spec/cancan/model_adapters/active_record_4_adapter_spec.rb +38 -32
data/spec/cancan/model_adapters/active_record_adapter_spec.rb +155 -145
data/spec/cancan/model_adapters/default_adapter_spec.rb +2 -2
data/spec/cancan/model_adapters/mongoid_adapter_spec.rb +87 -88
data/spec/cancan/model_adapters/sequel_adapter_spec.rb +44 -47
data/spec/cancan/rule_spec.rb +18 -18
data/spec/spec_helper.rb +2 -2
data/spec/support/ability.rb +0 -1
metadata +60 -19

data/lib/generators/cancan/ability/ability_generator.rb CHANGED

@@ -4,7 +4,7 @@ module Cancan
       source_root File.expand_path('../templates', __FILE__)
       def generate_ability
-        copy_file "ability.rb", "app/models/ability.rb"
+        copy_file 'ability.rb', 'app/models/ability.rb'
       end
     end
   end

data/spec/cancan/ability_spec.rb CHANGED

@@ -1,11 +1,11 @@
-require "spec_helper"
+require 'spec_helper'
 describe CanCan::Ability do
   before(:each) do
     (@ability = double).extend(CanCan::Ability)
   end
-  it "is able to :read anything" do
+  it 'is able to :read anything' do
     @ability.can :read, :all
     expect(@ability.can?(:read, String)).to be(true)
     expect(@ability.can?(:read, 123)).to be(true)
@@ -15,15 +15,15 @@ describe CanCan::Ability do
     expect(@ability.can?(:foodfight, String)).to be(false)
   end
-  it "passes true to `can?` when non false/nil is returned in block" do
+  it 'passes true to `can?` when non false/nil is returned in block' do
     @ability.can :read, :all
-    @ability.can :read, Symbol do |sym|
-      "foo" # TODO test that sym is nil when no instance is passed
+    @ability.can :read, Symbol do |_sym|
+      'foo' # TODO: test that sym is nil when no instance is passed
     end
     expect(@ability.can?(:read, :some_symbol)).to be(true)
   end
-  it "passes nil to a block when no instance is passed" do
+  it 'passes nil to a block when no instance is passed' do
     @ability.can :read, Symbol do |sym|
       expect(sym).to be_nil
       true
@@ -31,7 +31,7 @@ describe CanCan::Ability do
     expect(@ability.can?(:read, Symbol)).to be(true)
   end
-  it "passes to previous rule, if block returns false or nil" do
+  it 'passes to previous rule, if block returns false or nil' do
     @ability.can :read, Symbol
     @ability.can :read, Integer do |i|
       i < 5
@@ -45,30 +45,30 @@ describe CanCan::Ability do
     expect(@ability.can?(:read, 6)).to be(false)
   end
-  it "overrides earlier rules with later ones (even if a different exact subject)" do
+  it 'overrides earlier rules with later ones (even if a different exact subject)' do
     @ability.cannot :read, Numeric
     @ability.can :read, Integer
     expect(@ability.can?(:read, 6)).to be(true)
   end
-  it "performs can(_, :all) before other checks when can(_, :all) is defined before" do
+  it 'performs can(_, :all) before other checks when can(_, :all) is defined before' do
     @ability.can :manage, :all
     @ability.can :edit, String do |_string|
-      fail 'Performed a check for :edit before the check for :all'
+      raise 'Performed a check for :edit before the check for :all'
     end
     expect { @ability.can? :edit, 'a' }.to_not raise_exception
   end
-  it "performs can(_, :all) before other checks when can(_, :all) is defined after" do
+  it 'performs can(_, :all) before other checks when can(_, :all) is defined after' do
     @ability.can :edit, String do |_string|
-      fail 'Performed a check for :edit before the check for :all'
+      raise 'Performed a check for :edit before the check for :all'
     end
     @ability.can :manage, :all
     expect { @ability.can? :edit, 'a' }.to_not raise_exception
   end
-  it "does not pass class with object if :all objects are accepted" do
+  it 'does not pass class with object if :all objects are accepted' do
     @ability.can :preview, :all do |object|
       expect(object).to eq(123)
       @block_called = true
@@ -77,43 +77,44 @@ describe CanCan::Ability do
     expect(@block_called).to be(true)
   end
-  it "does not call block when only class is passed, only return true" do
+  it 'does not call block when only class is passed, only return true' do
     @block_called = false
-    @ability.can :preview, :all do |object|
+    @ability.can :preview, :all do |_object|
       @block_called = true
     end
     expect(@ability.can?(:preview, Hash)).to be(true)
     expect(@block_called).to be(false)
   end
-  it "passes only object for global manage actions" do
+  it 'passes only object for global manage actions' do
     @ability.can :manage, String do |object|
-      expect(object).to eq("foo")
+      expect(object).to eq('foo')
       @block_called = true
     end
-    expect(@ability.can?(:stuff, "foo")).to be(true)
+    expect(@ability.can?(:stuff, 'foo')).to be(true)
     expect(@block_called).to be(true)
   end
-  it "makes alias for update or destroy actions to modify action" do
-    @ability.alias_action :update, :destroy, :to => :modify
+  it 'makes alias for update or destroy actions to modify action' do
+    @ability.alias_action :update, :destroy, to: :modify
     @ability.can :modify, :all
     expect(@ability.can?(:update, 123)).to be(true)
     expect(@ability.can?(:destroy, 123)).to be(true)
   end
-  it "allows deeply nested aliased actions" do
-    @ability.alias_action :increment, :to => :sort
-    @ability.alias_action :sort, :to => :modify
+  it 'allows deeply nested aliased actions' do
+    @ability.alias_action :increment, to: :sort
+    @ability.alias_action :sort, to: :modify
     @ability.can :modify, :all
     expect(@ability.can?(:increment, 123)).to be(true)
   end
-  it "raises an Error if alias target is an exist action" do
-    expect { @ability.alias_action :show, :to => :show }.to raise_error(CanCan::Error, "You can't specify target (show) as alias because it is real action name")
+  it 'raises an Error if alias target is an exist action' do
+    expect { @ability.alias_action :show, to: :show }
+      .to raise_error(CanCan::Error, "You can't specify target (show) as alias because it is real action name")
   end
-  it "always calls block with arguments when passing no arguments to can" do
+  it 'always calls block with arguments when passing no arguments to can' do
     @ability.can do |action, object_class, object|
       expect(action).to eq(:foo)
       expect(object_class).to eq(123.class)
@@ -124,7 +125,7 @@ describe CanCan::Ability do
     expect(@block_called).to be(true)
   end
-  it "passes nil to object when comparing class with can check" do
+  it 'passes nil to object when comparing class with can check' do
     @ability.can do |action, object_class, object|
       expect(action).to eq(:foo)
       expect(object_class).to eq(Hash)
@@ -135,247 +136,250 @@ describe CanCan::Ability do
     expect(@block_called).to be(true)
   end
-  it "automatically makes alias for index and show into read calls" do
+  it 'automatically makes alias for index and show into read calls' do
     @ability.can :read, :all
     expect(@ability.can?(:index, 123)).to be(true)
     expect(@ability.can?(:show, 123)).to be(true)
   end
-  it "automatically makes alias for new and edit into create and update respectively" do
+  it 'automatically makes alias for new and edit into create and update respectively' do
     @ability.can :create, :all
     @ability.can :update, :all
     expect(@ability.can?(:new, 123)).to be(true)
     expect(@ability.can?(:edit, 123)).to be(true)
   end
-  it "does not respond to prepare (now using initialize)" do
+  it 'does not respond to prepare (now using initialize)' do
     expect(@ability).to_not respond_to(:prepare)
   end
-  it "offers cannot? method which is simply invert of can?" do
+  it 'offers cannot? method which is simply invert of can?' do
     expect(@ability.cannot?(:tie, String)).to be(true)
   end
-  it "is able to specify multiple actions and match any" do
+  it 'is able to specify multiple actions and match any' do
     @ability.can [:read, :update], :all
     expect(@ability.can?(:read, 123)).to be(true)
     expect(@ability.can?(:update, 123)).to be(true)
     expect(@ability.can?(:count, 123)).to be(false)
   end
-  it "is able to specify multiple classes and match any" do
+  it 'is able to specify multiple classes and match any' do
     @ability.can :update, [String, Range]
-    expect(@ability.can?(:update, "foo")).to be(true)
+    expect(@ability.can?(:update, 'foo')).to be(true)
     expect(@ability.can?(:update, 1..3)).to be(true)
     expect(@ability.can?(:update, 123)).to be(false)
   end
-  it "checks if there is a permission for any of given subjects" do
+  it 'checks if there is a permission for any of given subjects' do
     @ability.can :update, [String, Range]
-    expect(@ability.can?(:update, {:any => ["foo", 1..3]})).to be(true)
-    expect(@ability.can?(:update, {:any => [1..3, "foo"]})).to be(true)
-    expect(@ability.can?(:update, {:any => [123, "foo"]})).to be(true)
-    expect(@ability.can?(:update, {:any => [123, 1.0]})).to be(false)
+    expect(@ability.can?(:update, any: ['foo', 1..3])).to be(true)
+    expect(@ability.can?(:update, any: [1..3, 'foo'])).to be(true)
+    expect(@ability.can?(:update, any: [123, 'foo'])).to be(true)
+    expect(@ability.can?(:update, any: [123, 1.0])).to be(false)
   end
-  it "lists all permissions" do
+  it 'lists all permissions' do
     @ability.can :manage, :all
     @ability.can :learn, Range
     @ability.cannot :read, String
     @ability.cannot :read, Hash
     @ability.cannot :preview, Array
-    expected_list = {:can => {:manage => ["all"],
-                              :learn => ["Range"]
-                             },
-                     :cannot => {:read => ["String", "Hash"],
-                                 :index => ["String", "Hash"],
-                                 :show => ["String", "Hash"],
-                                 :preview => ["Array"]
-                                }
-                    }
+    expected_list = { can: { manage: ['all'],
+                             learn: ['Range'] },
+                      cannot: { read: %w(String Hash),
+                                index: %w(String Hash),
+                                show: %w(String Hash),
+                                preview: ['Array'] } }
     expect(@ability.permissions).to eq(expected_list)
   end
-  it "supports custom objects in the rule" do
+  it 'supports custom objects in the rule' do
     @ability.can :read, :stats
     expect(@ability.can?(:read, :stats)).to be(true)
     expect(@ability.can?(:update, :stats)).to be(false)
     expect(@ability.can?(:read, :nonstats)).to be(false)
-    expect(@ability.can?(:read, {:any => [:stats, :nonstats]})).to be(true)
-    expect(@ability.can?(:read, {:any => [:nonstats, :neitherstats]})).to be(false)
+    expect(@ability.can?(:read, any: [:stats, :nonstats])).to be(true)
+    expect(@ability.can?(:read, any: [:nonstats, :neitherstats])).to be(false)
   end
-  it "checks ancestors of class" do
+  it 'checks ancestors of class' do
     @ability.can :read, Numeric
     expect(@ability.can?(:read, Integer)).to be(true)
     expect(@ability.can?(:read, 1.23)).to be(true)
-    expect(@ability.can?(:read, "foo")).to be(false)
-    expect(@ability.can?(:read, {:any => [Integer, String]})).to be(true)
+    expect(@ability.can?(:read, 'foo')).to be(false)
+    expect(@ability.can?(:read, any: [Integer, String])).to be(true)
   end
   it "supports 'cannot' method to define what user cannot do" do
     @ability.can :read, :all
     @ability.cannot :read, Integer
-    expect(@ability.can?(:read, "foo")).to be(true)
+    expect(@ability.can?(:read, 'foo')).to be(true)
     expect(@ability.can?(:read, 123)).to be(false)
-    expect(@ability.can?(:read, {:any => ["foo", "bar"]})).to be(true)
-    expect(@ability.can?(:read, {:any => [123, "foo"]})).to be(false)
-    expect(@ability.can?(:read, {:any => [123, 456]})).to be(false)
+    expect(@ability.can?(:read, any: %w(foo bar))).to be(true)
+    expect(@ability.can?(:read, any: [123, 'foo'])).to be(false)
+    expect(@ability.can?(:read, any: [123, 456])).to be(false)
   end
-  it "passes to previous rule, if block returns false or nil" do
+  it 'passes to previous rule, if block returns false or nil' do
     @ability.can :read, :all
     @ability.cannot :read, Integer do |int|
-      int > 10 ? nil : ( int > 5 )
+      int > 10 ? nil : (int > 5)
     end
-    expect(@ability.can?(:read, "foo")).to be(true)
+    expect(@ability.can?(:read, 'foo')).to be(true)
     expect(@ability.can?(:read, 3)).to be(true)
     expect(@ability.can?(:read, 8)).to be(false)
     expect(@ability.can?(:read, 123)).to be(true)
-    expect(@ability.can?(:read, {:any => [123, 8]})).to be(true)
-    expect(@ability.can?(:read, {:any => [8, 9]})).to be(false)
+    expect(@ability.can?(:read, any: [123, 8])).to be(true)
+    expect(@ability.can?(:read, any: [8, 9])).to be(false)
   end
-  it "always returns `false` for single cannot definition" do
+  it 'always returns `false` for single cannot definition' do
     @ability.cannot :read, Integer do |int|
-      int > 10 ? nil : ( int > 5 )
+      int > 10 ? nil : (int > 5)
     end
-    expect(@ability.can?(:read, "foo")).to be(false)
+    expect(@ability.can?(:read, 'foo')).to be(false)
     expect(@ability.can?(:read, 3)).to be(false)
     expect(@ability.can?(:read, 8)).to be(false)
     expect(@ability.can?(:read, 123)).to be(false)
   end
-  it "passes to previous cannot definition, if block returns false or nil" do
+  it 'passes to previous cannot definition, if block returns false or nil' do
     @ability.cannot :read, :all
     @ability.can :read, Integer do |int|
-      int > 10 ? nil : ( int > 5 )
+      int > 10 ? nil : (int > 5)
     end
-    expect(@ability.can?(:read, "foo")).to be(false)
+    expect(@ability.can?(:read, 'foo')).to be(false)
     expect(@ability.can?(:read, 3)).to be(false)
     expect(@ability.can?(:read, 10)).to be(true)
     expect(@ability.can?(:read, 123)).to be(false)
   end
-  it "appends aliased actions" do
-    @ability.alias_action :update, :to => :modify
-    @ability.alias_action :destroy, :to => :modify
+  it 'appends aliased actions' do
+    @ability.alias_action :update, to: :modify
+    @ability.alias_action :destroy, to: :modify
     expect(@ability.aliased_actions[:modify]).to eq([:update, :destroy])
   end
-  it "clears aliased actions" do
-    @ability.alias_action :update, :to => :modify
+  it 'clears aliased actions' do
+    @ability.alias_action :update, to: :modify
     @ability.clear_aliased_actions
     expect(@ability.aliased_actions[:modify]).to be_nil
   end
-  it "passes additional arguments to block from can?" do
+  it 'passes additional arguments to block from can?' do
     @ability.can :read, Integer do |int, x|
       int > x
     end
     expect(@ability.can?(:read, 2, 1)).to be(true)
     expect(@ability.can?(:read, 2, 3)).to be(false)
-    expect(@ability.can?(:read, {:any => [4, 5]}, 3)).to be(true)
-    expect(@ability.can?(:read, {:any => [2, 3]}, 3)).to be(false)
+    expect(@ability.can?(:read, { any: [4, 5] }, 3)).to be(true)
+    expect(@ability.can?(:read, { any: [2, 3] }, 3)).to be(false)
   end
-  it "uses conditions as third parameter and determine abilities from it" do
-    @ability.can :read, Range, :begin => 1, :end => 3
+  it 'uses conditions as third parameter and determine abilities from it' do
+    @ability.can :read, Range, begin: 1, end: 3
     expect(@ability.can?(:read, 1..3)).to be(true)
     expect(@ability.can?(:read, 1..4)).to be(false)
     expect(@ability.can?(:read, Range)).to be(true)
-    expect(@ability.can?(:read, {:any => [1..3, 1..4]})).to be(true)
-    expect(@ability.can?(:read, {:any => [1..4, 2..4]})).to be(false)
+    expect(@ability.can?(:read, any: [1..3, 1..4])).to be(true)
+    expect(@ability.can?(:read, any: [1..4, 2..4])).to be(false)
   end
-  it "allows an array of options in conditions hash" do
-    @ability.can :read, Range, :begin => [1, 3, 5]
+  it 'allows an array of options in conditions hash' do
+    @ability.can :read, Range, begin: [1, 3, 5]
     expect(@ability.can?(:read, 1..3)).to be(true)
     expect(@ability.can?(:read, 2..4)).to be(false)
     expect(@ability.can?(:read, 3..5)).to be(true)
-    expect(@ability.can?(:read, {:any => [2..4, 3..5]})).to be(true)
-    expect(@ability.can?(:read, {:any => [2..4, 2..5]})).to be(false)
+    expect(@ability.can?(:read, any: [2..4, 3..5])).to be(true)
+    expect(@ability.can?(:read, any: [2..4, 2..5])).to be(false)
   end
-  it "allows a range of options in conditions hash" do
-    @ability.can :read, Range, :begin => 1..3
+  it 'allows a range of options in conditions hash' do
+    @ability.can :read, Range, begin: 1..3
     expect(@ability.can?(:read, 1..10)).to be(true)
     expect(@ability.can?(:read, 3..30)).to be(true)
     expect(@ability.can?(:read, 4..40)).to be(false)
   end
-  it "allows a range of time in conditions hash" do
-    @ability.can :read, Range, :begin => 1.day.from_now..3.days.from_now
+  it 'allows a range of time in conditions hash' do
+    @ability.can :read, Range, begin: 1.day.from_now..3.days.from_now
     expect(@ability.can?(:read, 1.day.from_now..10.days.from_now)).to be(true)
     expect(@ability.can?(:read, 2.days.from_now..20.days.from_now)).to be(true)
     expect(@ability.can?(:read, 4.days.from_now..40.days.from_now)).to be(false)
   end
-  it "allows nested hashes in conditions hash" do
-    @ability.can :read, Range, :begin => { :to_i => 5 }
+  it 'allows nested hashes in conditions hash' do
+    @ability.can :read, Range, begin: { to_i: 5 }
     expect(@ability.can?(:read, 5..7)).to be(true)
     expect(@ability.can?(:read, 6..8)).to be(false)
   end
   it "matches any element passed in to nesting if it's an array (for has_many associations)" do
-    @ability.can :read, Range, :to_a => { :to_i => 3 }
+    @ability.can :read, Range, to_a: { to_i: 3 }
     expect(@ability.can?(:read, 1..5)).to be(true)
     expect(@ability.can?(:read, 4..6)).to be(false)
   end
-  it "accepts a set as a condition value" do
-    expect(object_with_foo_2 = double(:foo => 2)).to receive(:foo)
-    expect(object_with_foo_3 = double(:foo => 3)).to receive(:foo)
-    @ability.can :read, Object, :foo => [1, 2, 5].to_set
+  it 'accepts a set as a condition value' do
+    expect(object_with_foo_2 = double(foo: 2)).to receive(:foo)
+    expect(object_with_foo_3 = double(foo: 3)).to receive(:foo)
+    @ability.can :read, Object, foo: [1, 2, 5].to_set
     expect(@ability.can?(:read, object_with_foo_2)).to be(true)
     expect(@ability.can?(:read, object_with_foo_3)).to be(false)
   end
-  it "does not match subjects return nil for methods that must match nested a nested conditions hash" do
-    expect(object_with_foo = double(:foo => :bar)).to receive(:foo)
-    @ability.can :read, Array, :first => { :foo => :bar }
+  it 'does not match subjects return nil for methods that must match nested a nested conditions hash' do
+    expect(object_with_foo = double(foo: :bar)).to receive(:foo)
+    @ability.can :read, Array, first: { foo: :bar }
     expect(@ability.can?(:read, [object_with_foo])).to be(true)
     expect(@ability.can?(:read, [])).to be(false)
   end
-  it "matches strings but not substrings specified in a conditions hash" do
-    @ability.can :read, String, :presence => "declassified"
-    expect(@ability.can?(:read, "declassified")).to be(true)
-    expect(@ability.can?(:read, "classified")).to be(false)
+  it 'matches strings but not substrings specified in a conditions hash' do
+    @ability.can :read, String, presence: 'declassified'
+    expect(@ability.can?(:read, 'declassified')).to be(true)
+    expect(@ability.can?(:read, 'classified')).to be(false)
   end
-  it "does not stop at cannot definition when comparing class" do
+  it 'does not stop at cannot definition when comparing class' do
     @ability.can :read, Range
-    @ability.cannot :read, Range, :begin => 1
+    @ability.cannot :read, Range, begin: 1
     expect(@ability.can?(:read, 2..5)).to be(true)
     expect(@ability.can?(:read, 1..5)).to be(false)
     expect(@ability.can?(:read, Range)).to be(true)
   end
-  it "stops at cannot definition when no hash is present" do
+  it 'stops at cannot definition when no hash is present' do
     @ability.can :read, :all
     @ability.cannot :read, Range
     expect(@ability.can?(:read, 1..5)).to be(false)
     expect(@ability.can?(:read, Range)).to be(false)
   end
-  it "allows to check ability for Module" do
-    module B; end
-    class A; include B; end
+  it 'allows to check ability for Module' do
+    module B
+    end
+    class A
+      include B
+    end
     @ability.can :read, B
     expect(@ability.can?(:read, A)).to be(true)
     expect(@ability.can?(:read, A.new)).to be(true)
   end
-  it "passes nil to a block for ability on Module when no instance is passed" do
-    module B; end
-    class A; include B; end
+  it 'passes nil to a block for ability on Module when no instance is passed' do
+    module B
+    end
+    class A
+      include B
+    end
     @ability.can :read, B do |sym|
       expect(sym).to be_nil
       true
@@ -384,147 +388,152 @@ describe CanCan::Ability do
     expect(@ability.can?(:read, A)).to be(true)
   end
-  it "checks permissions through association when passing a hash of subjects" do
-    @ability.can :read, Range, :string => {:length => 3}
+  it 'checks permissions through association when passing a hash of subjects' do
+    @ability.can :read, Range, string: { length: 3 }
-    expect(@ability.can?(:read, "foo" => Range)).to be(true)
-    expect(@ability.can?(:read, "foobar" => Range)).to be(false)
+    expect(@ability.can?(:read, 'foo' => Range)).to be(true)
+    expect(@ability.can?(:read, 'foobar' => Range)).to be(false)
     expect(@ability.can?(:read, 123 => Range)).to be(true)
-    expect(@ability.can?(:read, {:any => [{"foo" => Range}, {"foobar" => Range}]})).to be(true)
-    expect(@ability.can?(:read, {:any => [{"food" => Range}, {"foobar" => Range}]})).to be(false)
+    expect(@ability.can?(:read, any: [{ 'foo' => Range }, { 'foobar' => Range }])).to be(true)
+    expect(@ability.can?(:read, any: [{ 'food' => Range }, { 'foobar' => Range }])).to be(false)
   end
-  it "checks permissions correctly when passing a hash of subjects with multiple definitions" do
-    @ability.can :read, Range, :string => {:length => 4}
-    @ability.can [:create, :read], Range, :string => {:upcase => 'FOO'}
+  it 'checks permissions correctly when passing a hash of subjects with multiple definitions' do
+    @ability.can :read, Range, string: { length: 4 }
+    @ability.can [:create, :read], Range, string: { upcase: 'FOO' }
-    expect(@ability.can?(:read, "foo" => Range)).to be(true)
-    expect(@ability.can?(:read, "foobar" => Range)).to be(false)
+    expect(@ability.can?(:read, 'foo' => Range)).to be(true)
+    expect(@ability.can?(:read, 'foobar' => Range)).to be(false)
     expect(@ability.can?(:read, 1234 => Range)).to be(true)
-    expect(@ability.can?(:read, {:any => [{"foo" => Range}, {"foobar" => Range}]})).to be(true)
-    expect(@ability.can?(:read, {:any => [{"foo.bar" => Range}, {"foobar" => Range}]})).to be(false)
+    expect(@ability.can?(:read, any: [{ 'foo' => Range }, { 'foobar' => Range }])).to be(true)
+    expect(@ability.can?(:read, any: [{ 'foo.bar' => Range }, { 'foobar' => Range }])).to be(false)
   end
-  it "allows to check ability on Hash-like object" do
-    class Container < Hash; end
+  it 'allows to check ability on Hash-like object' do
+    class Container < Hash
+    end
     @ability.can :read, Container
     expect(@ability.can?(:read, Container.new)).to be(true)
   end
   it "has initial attributes based on hash conditions of 'new' action" do
-    @ability.can :manage, Range, :foo => "foo", :hash => {:skip => "hashes"}
-    @ability.can :create, Range, :bar => 123, :array => %w[skip arrays]
-    @ability.can :new, Range, :baz => "baz", :range => 1..3
-    @ability.cannot :new, Range, :ignore => "me"
-    expect(@ability.attributes_for(:new, Range)).to eq({:foo => "foo", :bar => 123, :baz => "baz"})
+    @ability.can :manage, Range, foo: 'foo', hash: { skip: 'hashes' }
+    @ability.can :create, Range, bar: 123, array: %w(skip arrays)
+    @ability.can :new, Range, baz: 'baz', range: 1..3
+    @ability.cannot :new, Range, ignore: 'me'
+    expect(@ability.attributes_for(:new, Range)).to eq(foo: 'foo', bar: 123, baz: 'baz')
   end
-  it "raises access denied exception if ability us unauthorized to perform a certain action" do
+  it 'raises access denied exception if ability us unauthorized to perform a certain action' do
     begin
-      @ability.authorize! :read, :foo, 1, 2, 3, :message => "Access denied!"
+      @ability.authorize! :read, :foo, 1, 2, 3, message: 'Access denied!'
     rescue CanCan::AccessDenied => e
-      expect(e.message).to eq("Access denied!")
+      expect(e.message).to eq('Access denied!')
       expect(e.action).to eq(:read)
       expect(e.subject).to eq(:foo)
     else
-      fail "Expected CanCan::AccessDenied exception to be raised"
+      raise 'Expected CanCan::AccessDenied exception to be raised'
     end
   end
-  it "does not raise access denied exception if ability is authorized to perform an action and return subject" do
+  it 'does not raise access denied exception if ability is authorized to perform an action and return subject' do
     @ability.can :read, :foo
-    expect {
+    expect do
       expect(@ability.authorize!(:read, :foo)).to eq(:foo)
-    }.to_not raise_error
+    end.to_not raise_error
   end
-  it "knows when block is used in conditions" do
+  it 'knows when block is used in conditions' do
     @ability.can :read, :foo
     expect(@ability).to_not have_block(:read, :foo)
-    @ability.can :read, :foo do |foo|
+    @ability.can :read, :foo do |_foo|
       false
     end
     expect(@ability).to have_block(:read, :foo)
   end
-  it "knows when raw sql is used in conditions" do
+  it 'knows when raw sql is used in conditions' do
     @ability.can :read, :foo
     expect(@ability).to_not have_raw_sql(:read, :foo)
     @ability.can :read, :foo, 'false'
     expect(@ability).to have_raw_sql(:read, :foo)
   end
-  it "raises access denied exception with default message if not specified" do
+  it 'raises access denied exception with default message if not specified' do
     begin
       @ability.authorize! :read, :foo
     rescue CanCan::AccessDenied => e
-      e.default_message = "Access denied!"
-      expect(e.message).to eq("Access denied!")
+      e.default_message = 'Access denied!'
+      expect(e.message).to eq('Access denied!')
     else
-      fail "Expected CanCan::AccessDenied exception to be raised"
+      raise 'Expected CanCan::AccessDenied exception to be raised'
     end
   end
-  it "determines model adapterO class by asking AbstractAdapter" do
-    adapter_class, model_class = double, double
+  it 'determines model adapterO class by asking AbstractAdapter' do
+    adapter_class = double
+    model_class = double
     allow(CanCan::ModelAdapters::AbstractAdapter).to receive(:adapter_class).with(model_class) { adapter_class }
     allow(adapter_class).to receive(:new).with(model_class, []) { :adapter_instance }
     expect(@ability.model_adapter(model_class, :read)).to eq(:adapter_instance)
   end
   it "raises an error when attempting to use a block with a hash condition since it's not likely what they want" do
-    expect {
-      @ability.can :read, Array, :published => true do
+    expect do
+      @ability.can :read, Array, published: true do
         false
       end
-    }.to raise_error(CanCan::Error, "You are not able to supply a block with a hash of conditions in read Array ability. Use either one.")
+    end.to raise_error(CanCan::Error,
+                       'You are not able to supply a block with a hash of conditions in read Array ability. '\
+                       'Use either one.')
   end
-  describe "unauthorized message" do
+  describe 'unauthorized message' do
     after(:each) do
       I18n.backend = nil
     end
-    it "uses action/subject in i18n" do
-      I18n.backend.store_translations :en, :unauthorized => {:update => {:array => "foo"}}
-      expect(@ability.unauthorized_message(:update, Array)).to eq("foo")
-      expect(@ability.unauthorized_message(:update, [1, 2, 3])).to eq("foo")
+    it 'uses action/subject in i18n' do
+      I18n.backend.store_translations :en, unauthorized: { update: { array: 'foo' } }
+      expect(@ability.unauthorized_message(:update, Array)).to eq('foo')
+      expect(@ability.unauthorized_message(:update, [1, 2, 3])).to eq('foo')
       expect(@ability.unauthorized_message(:update, :missing)).to be_nil
     end
-    it "uses symbol as subject directly" do
-      I18n.backend.store_translations :en, :unauthorized => {:has => {:cheezburger => "Nom nom nom. I eated it."}}
-      expect(@ability.unauthorized_message(:has, :cheezburger)).to eq("Nom nom nom. I eated it.")
+    it 'uses symbol as subject directly' do
+      I18n.backend.store_translations :en, unauthorized: { has: { cheezburger: 'Nom nom nom. I eated it.' } }
+      expect(@ability.unauthorized_message(:has, :cheezburger)).to eq('Nom nom nom. I eated it.')
     end
     it "falls back to 'manage' and 'all'" do
-      I18n.backend.store_translations :en, :unauthorized => {
-        :manage => {:all => "manage all", :array => "manage array"},
-        :update => {:all => "update all", :array => "update array"}
+      I18n.backend.store_translations :en, unauthorized: {
+        manage: { all: 'manage all', array: 'manage array' },
+        update: { all: 'update all', array: 'update array' }
       }
-      expect(@ability.unauthorized_message(:update, Array)).to eq("update array")
-      expect(@ability.unauthorized_message(:update, Hash)).to eq("update all")
-      expect(@ability.unauthorized_message(:foo, Array)).to eq("manage array")
-      expect(@ability.unauthorized_message(:foo, Hash)).to eq("manage all")
+      expect(@ability.unauthorized_message(:update, Array)).to eq('update array')
+      expect(@ability.unauthorized_message(:update, Hash)).to eq('update all')
+      expect(@ability.unauthorized_message(:foo, Array)).to eq('manage array')
+      expect(@ability.unauthorized_message(:foo, Hash)).to eq('manage all')
     end
-    it "follows aliased actions" do
-      I18n.backend.store_translations :en, :unauthorized => {:modify => {:array => "modify array"}}
-      @ability.alias_action :update, :to => :modify
-      expect(@ability.unauthorized_message(:update, Array)).to eq("modify array")
-      expect(@ability.unauthorized_message(:edit, Array)).to eq("modify array")
+    it 'follows aliased actions' do
+      I18n.backend.store_translations :en, unauthorized: { modify: { array: 'modify array' } }
+      @ability.alias_action :update, to: :modify
+      expect(@ability.unauthorized_message(:update, Array)).to eq('modify array')
+      expect(@ability.unauthorized_message(:edit, Array)).to eq('modify array')
     end
-    it "has variables for action and subject" do
-      I18n.backend.store_translations :en, :unauthorized => {:manage => {:all => "%{action} %{subject}"}} # old syntax for now in case testing with old I18n
-      expect(@ability.unauthorized_message(:update, Array)).to eq("update array")
-      expect(@ability.unauthorized_message(:update, ArgumentError)).to eq("update argument error")
-      expect(@ability.unauthorized_message(:edit, 1..3)).to eq("edit range")
+    it 'has variables for action and subject' do
+      # old syntax for now in case testing with old I18n
+      I18n.backend.store_translations :en, unauthorized: { manage: { all: '%{action} %{subject}' } }
+      expect(@ability.unauthorized_message(:update, Array)).to eq('update array')
+      expect(@ability.unauthorized_message(:update, ArgumentError)).to eq('update argument error')
+      expect(@ability.unauthorized_message(:edit, 1..3)).to eq('edit range')
     end
   end
-  describe "#merge" do
-    it "adds the rules from the given ability" do
+  describe '#merge' do
+    it 'adds the rules from the given ability' do
       @ability.can :use, :tools
       (another_ability = double).extend(CanCan::Ability)
       another_ability.can :use, :search
@@ -534,7 +543,7 @@ describe CanCan::Ability do
       expect(@ability.send(:rules).size).to eq(2)
     end
-    it "can add an empty ability" do
+    it 'can add an empty ability' do
       (another_ability = double).extend(CanCan::Ability)
       @ability.merge(another_ability)