RubyGems - cancancan - Versions diffs - 1.17.0 → 3.5.0 - Mend

cancancan 1.17.0 → 3.5.0

Files changed (85) hide show

checksums.yaml +5 -5
data/cancancan.gemspec +10 -11
data/init.rb +2 -0
data/lib/cancan/ability/actions.rb +93 -0
data/lib/cancan/ability/rules.rb +96 -0
data/lib/cancan/ability/strong_parameter_support.rb +41 -0
data/lib/cancan/ability.rb +87 -198
data/lib/cancan/class_matcher.rb +30 -0
data/lib/cancan/conditions_matcher.rb +147 -0
data/lib/cancan/config.rb +101 -0
data/lib/cancan/controller_additions.rb +13 -30
data/lib/cancan/controller_resource.rb +33 -225
data/lib/cancan/controller_resource_builder.rb +26 -0
data/lib/cancan/controller_resource_finder.rb +42 -0
data/lib/cancan/controller_resource_loader.rb +120 -0
data/lib/cancan/controller_resource_name_finder.rb +23 -0
data/lib/cancan/controller_resource_sanitizer.rb +32 -0
data/lib/cancan/exceptions.rb +24 -4
data/lib/cancan/matchers.rb +12 -1
data/lib/cancan/model_adapters/abstract_adapter.rb +22 -1
data/lib/cancan/model_adapters/active_record_4_adapter.rb +25 -44
data/lib/cancan/model_adapters/active_record_5_adapter.rb +61 -0
data/lib/cancan/model_adapters/active_record_adapter.rb +157 -83
data/lib/cancan/model_adapters/conditions_extractor.rb +75 -0
data/lib/cancan/model_adapters/conditions_normalizer.rb +49 -0
data/lib/cancan/model_adapters/default_adapter.rb +2 -0
data/lib/cancan/model_adapters/sti_normalizer.rb +47 -0
data/lib/cancan/model_adapters/strategies/base.rb +40 -0
data/lib/cancan/model_adapters/strategies/joined_alias_each_rule_as_exists_subquery.rb +93 -0
data/lib/cancan/model_adapters/strategies/joined_alias_exists_subquery.rb +31 -0
data/lib/cancan/model_adapters/strategies/left_join.rb +11 -0
data/lib/cancan/model_adapters/strategies/subquery.rb +18 -0
data/lib/cancan/model_additions.rb +6 -2
data/lib/cancan/parameter_validators.rb +9 -0
data/lib/cancan/relevant.rb +29 -0
data/lib/cancan/rule.rb +67 -90
data/lib/cancan/rules_compressor.rb +23 -0
data/lib/cancan/sti_detector.rb +12 -0
data/lib/cancan/unauthorized_message_resolver.rb +24 -0
data/lib/cancan/version.rb +3 -1
data/lib/cancan.rb +15 -10
data/lib/cancancan.rb +2 -0
data/lib/generators/cancan/ability/ability_generator.rb +3 -1
data/lib/generators/cancan/ability/templates/ability.rb +9 -9
metadata +64 -86
data/.gitignore +0 -15
data/.rspec +0 -1
data/.rubocop.yml +0 -39
data/.rubocop_todo.yml +0 -54
data/.travis.yml +0 -39
data/Appraisals +0 -105
data/CHANGELOG.rdoc +0 -536
data/CONTRIBUTING.md +0 -23
data/Gemfile +0 -3
data/LICENSE +0 -22
data/README.md +0 -234
data/Rakefile +0 -13
data/gemfiles/activerecord_3.2.gemfile +0 -18
data/gemfiles/activerecord_4.0.gemfile +0 -19
data/gemfiles/activerecord_4.1.gemfile +0 -19
data/gemfiles/activerecord_4.2.gemfile +0 -21
data/gemfiles/activerecord_5.0.gemfile +0 -20
data/gemfiles/mongoid_2.x.gemfile +0 -18
data/gemfiles/sequel_3.x.gemfile +0 -18
data/lib/cancan/inherited_resource.rb +0 -20
data/lib/cancan/model_adapters/active_record_3_adapter.rb +0 -16
data/lib/cancan/model_adapters/mongoid_adapter.rb +0 -80
data/lib/cancan/model_adapters/sequel_adapter.rb +0 -87
data/spec/README.rdoc +0 -27
data/spec/cancan/ability_spec.rb +0 -553
data/spec/cancan/controller_additions_spec.rb +0 -164
data/spec/cancan/controller_resource_spec.rb +0 -645
data/spec/cancan/exceptions_spec.rb +0 -58
data/spec/cancan/inherited_resource_spec.rb +0 -71
data/spec/cancan/matchers_spec.rb +0 -29
data/spec/cancan/model_adapters/active_record_4_adapter_spec.rb +0 -160
data/spec/cancan/model_adapters/active_record_adapter_spec.rb +0 -415
data/spec/cancan/model_adapters/default_adapter_spec.rb +0 -7
data/spec/cancan/model_adapters/mongoid_adapter_spec.rb +0 -246
data/spec/cancan/model_adapters/sequel_adapter_spec.rb +0 -129
data/spec/cancan/rule_spec.rb +0 -52
data/spec/matchers.rb +0 -13
data/spec/spec.opts +0 -2
data/spec/spec_helper.rb +0 -27
data/spec/support/ability.rb +0 -6

data/spec/cancan/model_adapters/sequel_adapter_spec.rb DELETED Viewed

@@ -1,129 +0,0 @@
-require 'spec_helper'
-if defined? CanCan::ModelAdapters::SequelAdapter
-  describe CanCan::ModelAdapters::SequelAdapter do
-    DB = if RUBY_PLATFORM == 'java'
-           Sequel.connect('jdbc:sqlite:db.sqlite3')
-         else
-           Sequel.sqlite
-         end
-    DB.create_table :users do
-      primary_key :id
-      String :name
-    end
-    class User < Sequel::Model
-      one_to_many :articles
-    end
-    DB.create_table :articles do
-      primary_key :id
-      String :name
-      TrueClass :published
-      TrueClass :secret
-      Integer :priority
-      foreign_key :user_id, :users
-    end
-    class Article < Sequel::Model
-      many_to_one :user
-      one_to_many :comments
-    end
-    DB.create_table :comments do
-      primary_key :id
-      TrueClass :spam
-      foreign_key :article_id, :articles
-    end
-    class Comment < Sequel::Model
-      many_to_one :article
-    end
-    before(:each) do
-      Comment.dataset.delete
-      Article.dataset.delete
-      User.dataset.delete
-      (@ability = double).extend(CanCan::Ability)
-    end
-    it 'should be for only sequel model classes' do
-      expect(CanCan::ModelAdapters::SequelAdapter).to_not be_for_class(Object)
-      expect(CanCan::ModelAdapters::SequelAdapter).to be_for_class(Article)
-      expect(CanCan::ModelAdapters::AbstractAdapter.adapter_class(Article)).to eq CanCan::ModelAdapters::SequelAdapter
-    end
-    it 'should find record' do
-      article = Article.create
-      expect(CanCan::ModelAdapters::SequelAdapter.find(Article, article.id)).to eq article
-    end
-    it 'should not fetch any records when no abilities are defined' do
-      Article.create
-      expect(Article.accessible_by(@ability).all).to be_empty
-    end
-    it 'should fetch all articles when one can read all' do
-      @ability.can :read, Article
-      article = Article.create
-      expect(Article.accessible_by(@ability).all).to eq [article]
-    end
-    it 'should fetch only the articles that are published' do
-      @ability.can :read, Article, published: true
-      article1 = Article.create(published: true)
-      Article.create(published: false)
-      expect(Article.accessible_by(@ability).all).to eq [article1]
-    end
-    it 'should fetch any articles which are published or secret' do
-      @ability.can :read, Article, published: true
-      @ability.can :read, Article, secret: true
-      article1 = Article.create(published: true, secret: false)
-      article2 = Article.create(published: true, secret: true)
-      article3 = Article.create(published: false, secret: true)
-      Article.create(published: false, secret: false)
-      expect(Article.accessible_by(@ability).all).to eq([article1, article2, article3])
-    end
-    it 'should fetch only the articles that are published and not secret' do
-      @ability.can :read, Article, published: true
-      @ability.cannot :read, Article, secret: true
-      article1 = Article.create(published: true, secret: false)
-      Article.create(published: true, secret: true)
-      Article.create(published: false, secret: true)
-      Article.create(published: false, secret: false)
-      expect(Article.accessible_by(@ability).all).to eq [article1]
-    end
-    it 'should only read comments for articles which are published' do
-      @ability.can :read, Comment, article: { published: true }
-      comment1 = Comment.create(article: Article.create(published: true))
-      Comment.create(article: Article.create(published: false))
-      expect(Comment.accessible_by(@ability).all).to eq [comment1]
-    end
-    it "should only read comments for articles which are published and user is 'me'" do
-      @ability.can :read, Comment, article: { user: { name: 'me' }, published: true }
-      user1 = User.create(name: 'me')
-      comment1 = Comment.create(article: Article.create(published: true, user: user1))
-      Comment.create(article: Article.create(published: true))
-      Comment.create(article: Article.create(published: false, user: user1))
-      expect(Comment.accessible_by(@ability).all).to eq [comment1]
-    end
-    it 'should allow conditions in SQL and merge with hash conditions' do
-      @ability.can :read, Article, published: true
-      @ability.can :read, Article, ['secret=?', true], &:secret
-      @ability.cannot :read, Article, 'priority > 1' do |article|
-        article.priority > 1
-      end
-      article1 = Article.create(published: true, secret: false, priority: 1)
-      article2 = Article.create(published: true, secret: true, priority: 1)
-      Article.create(published: true, secret: true, priority: 2)
-      Article.create(published: false, secret: false, priority: 2)
-      expect(Article.accessible_by(@ability).all).to eq [article1, article2]
-    end
-  end
-end

data/spec/cancan/rule_spec.rb DELETED Viewed

@@ -1,52 +0,0 @@
-require 'spec_helper'
-require 'ostruct' # for OpenStruct below
-# Most of Rule functionality is tested in Ability specs
-describe CanCan::Rule do
-  before(:each) do
-    @conditions = {}
-    @rule = CanCan::Rule.new(true, :read, Integer, @conditions, nil)
-  end
-  it 'returns no association joins if none exist' do
-    expect(@rule.associations_hash).to eq({})
-  end
-  it 'returns no association for joins if just attributes' do
-    @conditions[:foo] = :bar
-    expect(@rule.associations_hash).to eq({})
-  end
-  it 'returns single association for joins' do
-    @conditions[:foo] = { bar: 1 }
-    expect(@rule.associations_hash).to eq(foo: {})
-  end
-  it 'returns multiple associations for joins' do
-    @conditions[:foo] = { bar: 1 }
-    @conditions[:test] = { 1 => 2 }
-    expect(@rule.associations_hash).to eq(foo: {}, test: {})
-  end
-  it 'returns nested associations for joins' do
-    @conditions[:foo] = { bar: { 1 => 2 } }
-    expect(@rule.associations_hash).to eq(foo: { bar: {} })
-  end
-  it 'returns no association joins if conditions is nil' do
-    rule = CanCan::Rule.new(true, :read, Integer, nil, nil)
-    expect(rule.associations_hash).to eq({})
-  end
-  it 'is not mergeable if conditions are not simple hashes' do
-    meta_where = OpenStruct.new(name: 'metawhere', column: 'test')
-    @conditions[meta_where] = :bar
-    expect(@rule).to be_unmergeable
-  end
-  it 'is not mergeable if conditions is an empty hash' do
-    @conditions = {}
-    expect(@rule).to_not be_unmergeable
-  end
-end

data/spec/matchers.rb DELETED Viewed

@@ -1,13 +0,0 @@
-RSpec::Matchers.define :orderlessly_match do |original_string|
-  match do |given_string|
-    original_string.split('').sort == given_string.split('').sort
-  end
-  failure_message do |given_string|
-    "expected \"#{given_string}\" to have the same characters as \"#{original_string}\""
-  end
-  failure_message_when_negated do |given_string|
-    "expected \"#{given_string}\" not to have the same characters as \"#{original_string}\""
-  end
-end

data/spec/spec.opts DELETED Viewed

	@@ -1,2 +0,0 @@
1	- --color
2	- --backtrace

data/spec/spec_helper.rb DELETED Viewed

@@ -1,27 +0,0 @@
-require 'rubygems'
-require 'bundler/setup'
-Bundler.require
-require 'matchers'
-require 'cancan/matchers'
-# I8n setting to fix deprecation.
-if defined?(I18n) && I18n.respond_to?('enforce_available_locales=')
-  I18n.enforce_available_locales = false
-end
-# Add support to load paths
-$LOAD_PATH.unshift File.expand_path('../support', __FILE__)
-Dir["#{File.dirname(__FILE__)}/support/**/*.rb"].each { |f| require f }
-RSpec.configure do |config|
-  config.filter_run focus: true
-  config.run_all_when_everything_filtered = true
-  config.mock_with :rspec
-  config.order = 'random'
-  config.expect_with :rspec do |c|
-    c.syntax = :expect
-  end
-end

data/spec/support/ability.rb DELETED Viewed

@@ -1,6 +0,0 @@
-class Ability
-  include CanCan::Ability
-  def initialize(user)
-  end
-end