RubyGems - cantango-permits - Versions diffs - 0.1.1 - Mend

cantango-permits 0.1.1

Files changed (166) hide show

data/.rspec +1 -0
data/Gemfile +39 -0
data/Gemfile.lock +155 -0
data/MIT-LICENSE +20 -0
data/README.mdown +362 -0
data/Rakefile +45 -0
data/VERSION +1 -0
data/lib/cantango/executor.rb +5 -0
data/lib/cantango/executor/base.rb +9 -0
data/lib/cantango/executor/permit.rb +7 -0
data/lib/cantango/executor/permit/abstract.rb +27 -0
data/lib/cantango/executor/permit/base.rb +19 -0
data/lib/cantango/executor/permit/special.rb +9 -0
data/lib/cantango/executor/permit_type.rb +50 -0
data/lib/cantango/license.rb +19 -0
data/lib/cantango/license/rules.rb +17 -0
data/lib/cantango/permit.mdown +4 -0
data/lib/cantango/permit.rb +5 -0
data/lib/cantango/permit/account_type.rb +44 -0
data/lib/cantango/permit/attribute.rb +71 -0
data/lib/cantango/permit/base.rb +94 -0
data/lib/cantango/permit/class_methods.rb +49 -0
data/lib/cantango/permit/helper.rb +11 -0
data/lib/cantango/permit/helper/execution.rb +38 -0
data/lib/cantango/permit/helper/host.rb +13 -0
data/lib/cantango/permit/helper/license.rb +34 -0
data/lib/cantango/permit/helper/naming.rb +38 -0
data/lib/cantango/permit/helper/state.rb +21 -0
data/lib/cantango/permit/special.rb +17 -0
data/lib/cantango/permit/user.rb +36 -0
data/lib/cantango/permit/user_type.rb +34 -0
data/lib/cantango/permits.rb +20 -0
data/lib/cantango/permits_ext.rb +7 -0
data/lib/cantango/permits_ext/ability.rb +7 -0
data/lib/cantango/permits_ext/ability/helper.rb +9 -0
data/lib/cantango/permits_ext/ability/helper/permits.rb +8 -0
data/lib/cantango/permits_ext/builder.rb +7 -0
data/lib/cantango/permits_ext/builder/permit.rb +9 -0
data/lib/cantango/permits_ext/builder/permit/account_type.rb +13 -0
data/lib/cantango/permits_ext/builder/permit/base.rb +94 -0
data/lib/cantango/permits_ext/builder/permit/special.rb +13 -0
data/lib/cantango/permits_ext/builder/permit/user_type.rb +7 -0
data/lib/cantango/permits_ext/class_methods.rb +28 -0
data/lib/cantango/permits_ext/config.rb +11 -0
data/lib/cantango/permits_ext/config/engines.rb +9 -0
data/lib/cantango/permits_ext/config/engines/permit.rb +20 -0
data/lib/cantango/permits_ext/config/permits.rb +43 -0
data/lib/cantango/permits_ext/config/permits/accounts.rb +15 -0
data/lib/cantango/permits_ext/config/permits/disabling.rb +22 -0
data/lib/cantango/permits_ext/config/permits/enabling.rb +14 -0
data/lib/cantango/permits_ext/config/permits/execution.rb +21 -0
data/lib/cantango/permits_ext/config/permits/key.rb +19 -0
data/lib/cantango/permits_ext/config/permits/registration.rb +33 -0
data/lib/cantango/permits_ext/config/permits/tracking.rb +19 -0
data/lib/cantango/permits_ext/config/permits/types.rb +25 -0
data/lib/cantango/permits_ext/engine.rb +7 -0
data/lib/cantango/permits_ext/engine/permits.rb +75 -0
data/lib/cantango/permits_ext/factory.rb +7 -0
data/lib/cantango/permits_ext/factory/permits.rb +40 -0
data/lib/cantango/permits_ext/finder.rb +7 -0
data/lib/cantango/permits_ext/finder/base.rb +35 -0
data/lib/cantango/permits_ext/finder/permit.rb +7 -0
data/lib/cantango/permits_ext/finder/permit/account.rb +47 -0
data/lib/cantango/permits_ext/finder/permit/base.rb +53 -0
data/lib/cantango/permits_ext/loader.rb +7 -0
data/lib/cantango/permits_ext/loader/categories.rb +50 -0
data/lib/cantango/permits_ext/loader/license.rb +19 -0
data/lib/cantango/permits_ext/macros.rb +7 -0
data/lib/cantango/permits_ext/macros/permit.rb +32 -0
data/lib/cantango/permits_ext/parser.rb +7 -0
data/lib/cantango/permits_ext/parser/categories.rb +15 -0
data/lib/cantango/permits_ext/registry.rb +7 -0
data/lib/cantango/permits_ext/registry/permit.rb +45 -0
data/lib/generators/cantango/account_permit/account_permit_generator.rb +37 -0
data/lib/generators/cantango/account_permit/templates/account_permit.erb +23 -0
data/lib/generators/cantango/base.rb +71 -0
data/lib/generators/cantango/basic.rb +41 -0
data/lib/generators/cantango/license/license_generator.rb +29 -0
data/lib/generators/cantango/license/templates/license.erb +10 -0
data/lib/generators/cantango/license_base.rb +15 -0
data/lib/generators/cantango/licenses/licenses_generator.rb +26 -0
data/lib/generators/cantango/permit_generator.rb +58 -0
data/lib/generators/cantango/role_permit/role_permit_generator.rb +39 -0
data/lib/generators/cantango/role_permit/templates/account_permit.erb +4 -0
data/lib/generators/cantango/role_permit/templates/role_group_permit.erb +24 -0
data/lib/generators/cantango/role_permit/templates/role_permit.erb +23 -0
data/lib/generators/cantango/role_permits/role_permits_generator.rb +45 -0
data/lib/generators/cantango/user_permit/templates/account_permit.erb +5 -0
data/lib/generators/cantango/user_permit/templates/user_permit.erb +23 -0
data/lib/generators/cantango/user_permit/user_permit_generator.rb +36 -0
data/lib/tasks/permits_tasks.rake +4 -0
data/spec/cantango/ability/helper/permits_spec.rb +14 -0
data/spec/cantango/builder/permit/account_type_spec.rb +25 -0
data/spec/cantango/builder/permit/base_spec.rb +30 -0
data/spec/cantango/builder/permit/special_spec.rb +25 -0
data/spec/cantango/builder/permit/user_type_spec.rb +27 -0
data/spec/cantango/config/engines/permit_spec.rb +14 -0
data/spec/cantango/config/engines_spec.rb +142 -0
data/spec/cantango/config/permit_registry_ex.rb +9 -0
data/spec/cantango/config/permit_registry_spec.rb +8 -0
data/spec/cantango/config/permits/accounts_spec.rb +23 -0
data/spec/cantango/config/permits/disabling_spec.rb +38 -0
data/spec/cantango/config/permits/enabling_spec.rb +19 -0
data/spec/cantango/config/permits/execution_spec.rb +27 -0
data/spec/cantango/config/permits/registration_spec.rb +15 -0
data/spec/cantango/config/permits/tracking_spec.rb +19 -0
data/spec/cantango/config/permits/types_spec.rb +27 -0
data/spec/cantango/config/permits_spec.rb +76 -0
data/spec/cantango/engine/permit_cached_spec.rb +52 -0
data/spec/cantango/engine/permit_spec.rb +58 -0
data/spec/cantango/engine/permit_static_dynamic_spec.rb +65 -0
data/spec/cantango/executor/custom_permit_spec.rb +65 -0
data/spec/cantango/executor/more_permit_spec.rb +45 -0
data/spec/cantango/executor/permit_base_spec.rb +46 -0
data/spec/cantango/executor/permit_spec.rb +53 -0
data/spec/cantango/executor/special_permit_spec.rb +36 -0
data/spec/cantango/factory/permits_spec.rb +70 -0
data/spec/cantango/finder/account_permit_spec.rb +30 -0
data/spec/cantango/finder/permit_spec.rb +23 -0
data/spec/cantango/license/save_license_spec.rb +24 -0
data/spec/cantango/license_spec.rb +0 -0
data/spec/cantango/loader/categories_spec.rb +47 -0
data/spec/cantango/loader/license_spec.rb +7 -0
data/spec/cantango/macros/permit_spec.rb +38 -0
data/spec/cantango/parser/categories_spec.rb +19 -0
data/spec/cantango/permit/account_type_spec.rb +34 -0
data/spec/cantango/permit/attribute_permit_spec.rb +65 -0
data/spec/cantango/permit/base_spec.rb +106 -0
data/spec/cantango/permit/class_methods_spec.rb +34 -0
data/spec/cantango/permit/helper/execution_spec.rb +54 -0
data/spec/cantango/permit/helper/host_spec.rb +29 -0
data/spec/cantango/permit/helper/license_spec.rb +37 -0
data/spec/cantango/permit/helper/naming_spec.rb +56 -0
data/spec/cantango/permit/helper/state_spec.rb +24 -0
data/spec/cantango/permit/special_default_spec.rb +2 -0
data/spec/cantango/permit/special_first_spec.rb +2 -0
data/spec/cantango/permit/user_type_spec.rb +78 -0
data/spec/cantango/registry/permit_spec.rb +67 -0
data/spec/fixtures/config/cantango_permissions.yml +49 -0
data/spec/fixtures/config/categories.yml +6 -0
data/spec/fixtures/config/evaluator_fixtures.yml +18 -0
data/spec/fixtures/config/licenses.yml +4 -0
data/spec/fixtures/config/permissions.yml +60 -0
data/spec/fixtures/config/role_group.yml +4 -0
data/spec/fixtures/config/roles.yml +4 -0
data/spec/fixtures/config/test_permissions.yml +55 -0
data/spec/fixtures/config/user_permissions.yml +8 -0
data/spec/fixtures/models.rb +15 -0
data/spec/fixtures/models/admin.rb +2 -0
data/spec/fixtures/models/admin_account.rb +22 -0
data/spec/fixtures/models/items.rb +11 -0
data/spec/fixtures/models/permission.rb +12 -0
data/spec/fixtures/models/simple_roles.rb +49 -0
data/spec/fixtures/models/user.rb +52 -0
data/spec/fixtures/models/user_account.rb +21 -0
data/spec/fixtures/tango_fixtures.rb +29 -0
data/spec/generators/cantango/account_role_permit_generator_spec.rb +35 -0
data/spec/generators/cantango/account_role_permits_generator_spec.rb +59 -0
data/spec/generators/cantango/license_generator_spec.rb +33 -0
data/spec/generators/cantango/licenses_generator_spec.rb +58 -0
data/spec/generators/cantango/role_permit_generator_spec.rb +35 -0
data/spec/generators/cantango/role_permits_generator_spec.rb +58 -0
data/spec/helpers/current_user_accounts.rb +20 -0
data/spec/helpers/current_users.rb +10 -0
data/spec/spec_helper.rb +24 -0
metadata +325 -0

data/spec/cantango/permit/helper/host_spec.rb ADDED

@@ -0,0 +1,29 @@
+require 'spec_helper'
+require 'fixtures/models'
+class MyOwnPermit < CanTango::Permit::Base
+  include CanTango::Permit::Helper::Host
+end
+class RequestHost
+  attr_accessor :host
+  def initialize host
+    @host = host
+  end
+end
+describe CanTango::Permit::Helper::Naming do
+  before do
+    @localhost_req = RequestHost.new 'localhost'
+    @user = SimpleUser.new
+    @ability = CanTango::Ability::Base.new @user, :request => @localhost_req
+  end
+  subject { MyOwnPermit.new @ability }
+  context 'localhost' do
+    specify { subject.local_host?.should be_true }
+    specify { subject.public_host?.should be_false }
+  end
+end

data/spec/cantango/permit/helper/license_spec.rb ADDED

@@ -0,0 +1,37 @@
+require 'spec_helper'
+require 'fixtures/models'
+class MyOwnPermit < CanTango::Ability::Base
+  include CanTango::Permit::Helper::License
+end
+class BloggingLicense < CanTango::License
+  def initialize ability
+    super
+  end
+  def calc_rules
+    can :edit, Project
+  end
+end
+describe CanTango::Permit::Helper::License do
+  before do
+    @user = User.new 'kris', 'kris@mail.ru', :roles => [:editor]
+  end
+  subject { MyOwnPermit.new @user }
+  describe 'license name' do
+    before do
+      subject.license(:blogging)
+    end
+    specify { subject.rules.should_not be_empty }
+  end
+  describe 'licenses *names' do
+    before do
+      subject.licenses(:blogging)
+    end
+    specify { subject.rules.should_not be_empty }
+  end
+end

data/spec/cantango/permit/helper/naming_spec.rb ADDED

@@ -0,0 +1,56 @@
+require 'spec_helper'
+require 'fixtures/models'
+class MyOwnPermit
+  include CanTango::Permit::Helper::Naming
+  extend CanTango::Permit::Helper::Naming
+end
+class CanTango::Permit::Mine
+  include CanTango::Permit::Helper::Naming
+  extend CanTango::Permit::Helper::Naming
+end
+module AdminPermits
+  class MyOwnPermit
+    include CanTango::Permit::Helper::Naming
+    extend CanTango::Permit::Helper::Naming
+  end
+end
+describe CanTango::Permit::Helper::Naming do
+  subject { MyOwnPermit.new }
+  describe '#permit_name' do
+    describe 'permit_name clazz' do
+      specify { subject.permit_name(MyOwnPermit).should == :my_own }
+    end
+    describe 'permit_name clazz' do
+      specify { CanTango::Permit::Mine.permit_name.should == :mine }
+    end
+    describe 'clazz.permit_name' do
+      specify { MyOwnPermit.permit_name.should == :my_own }
+    end
+  end
+  describe '#account_name' do
+    describe 'account_name clazz' do
+      specify { subject.account_name(MyOwnPermit).should == nil }
+    end
+    describe 'account_name clazz' do
+      specify { MyOwnPermit.account_name.should == nil }
+    end
+    describe 'account_name clazz' do
+      specify { CanTango::Permit::Mine.account_name.should == nil }
+    end
+    context 'wrapped in valid account namespace' do
+      describe 'account_name clazz' do
+        specify { AdminPermits::MyOwnPermit.account_name.should == :admin }
+      end
+    end
+  end
+end

data/spec/cantango/permit/helper/state_spec.rb ADDED

@@ -0,0 +1,24 @@
+require 'spec_helper'
+class MyOwnPermit
+  include CanTango::Permit::Helper::State
+end
+describe CanTango::Permit::Helper::Naming do
+  subject { MyOwnPermit.new }
+  describe '#enable!' do
+    before do
+      subject.enable!
+    end
+    specify { subject.enabled?.should be_true }
+    specify { subject.disabled?.should be_false }
+  end
+  describe '#disable!' do
+    before do
+      subject.disable!
+    end
+    specify { subject.enabled?.should be_false }
+    specify { subject.disabled?.should be_true }
+  end
+end

data/spec/cantango/permit/special_default_spec.rb ADDED

	@@ -0,0 +1,2 @@
1	+ # The special Default permit which will be executed last for any candidate regardless unless break-out
2	+ # has occured

data/spec/cantango/permit/special_first_spec.rb ADDED

	@@ -0,0 +1,2 @@
1	+ # The special First permit to be executed which has the potential to break out of the
2	+ # execution loop on some specific condition

data/spec/cantango/permit/user_type_spec.rb ADDED

@@ -0,0 +1,78 @@
+require 'spec_helper'
+require 'fixtures/models'
+class AdminPermit < CanTango::Permit::UserType
+  def initialize ability
+    super
+  end
+  protected
+  def static_rules
+    can :read, Article
+  end
+end
+describe CanTango::Permit::UserType do
+  before do
+    @user = SimpleUser.new
+    @ability = CanTango::Ability::Base.new @user
+    @permit = AdminPermit.new @ability
+  end
+  subject { @permit }
+  describe 'registration' do
+    describe 'permit types' do
+      specify { CanTango.config.permits.types.registered.should include(:user_type) }
+    end
+    describe 'permits of type' do
+      specify { CanTango.config.permits.registered_for(:user_type, :admin).should == AdminPermit }
+    end
+  end
+  describe 'attributes' do
+    it "should be the permit for the :admin user" do
+      subject.permit_name.should == :admin
+    end
+    it "should have a user candidate" do
+      subject.candidate.should be_a(SimpleUser)
+    end
+    it "should have a user subject" do
+      subject.send(:user).should be_a(SimpleUser)
+    end
+    it "should have an ability" do
+      subject.ability.should be_a(CanTango::Ability::Base)
+    end
+  end
+  context 'config permits' do
+    let(:permits) { CanTango.config.permits }
+    describe 'disable Admin Permit' do
+      before do
+        permits.disable_for :user_type, [:admin, :editor]
+      end
+      it "should have an ability" do
+        subject.disabled?.should be_true
+      end
+    end
+    describe 'enable all Permits' do
+      before do
+        permits.enable_all!
+      end
+      it "should be disabled" do
+        permits.disabled.should be_empty
+        subject.disabled?.should be_false
+      end
+    end
+  end
+end

data/spec/cantango/registry/permit_spec.rb ADDED

@@ -0,0 +1,67 @@
+require 'spec_helper'
+class AdminUserPermit
+end
+class PermitReg
+  include CanTango::Registry::Permit
+end
+describe CanTango::Registry::Permit do
+  before do
+    @reg = PermitReg.new
+    CanTango.config.permits.types.register :user_type
+    # puts CanTango.config.permits.types.inspect
+    permit_registry = @reg.registry_for(:user_type)
+    permit_registry[:admin] = AdminUserPermit
+  end
+  subject { @reg }
+  describe 'registry_for type' do
+    context 'existing type' do
+      specify { subject.registry_for(:user_type).should be_a CanTango::Registry::Hash }
+    end
+    context 'non-existing type' do
+      specify do
+        lambda { subject.registry_for(:unknown) }.should raise_error
+      end
+    end
+  end
+  describe 'registered_for type, name = nil' do
+    context 'existing permit' do
+      specify { subject.registered_for(:user_type, :admin).should == AdminUserPermit }
+    end
+    context 'non-existing permit type' do
+      specify do
+        lambda { subject.registered_for(:not_there, :unknown) }.should raise_error
+      end
+    end
+    context 'non-existing permit' do
+      specify do
+        subject.registered_for(:user_type, :unknown).should be_nil
+      end
+    end
+  end
+  describe 'all' do
+    specify do
+      subject.all.first.registered.admin.should be_true
+    end
+  end
+  describe 'show_all' do
+    before do
+      puts subject.show_all
+    end
+    specify do
+      subject.show_all.should match(/admin/)
+    end
+  end
+end

data/spec/fixtures/config/cantango_permissions.yml ADDED

@@ -0,0 +1,49 @@
+---
+roles:
+  admin:
+    can:
+      manage:
+      - all
+  user:
+    can:
+      read:
+      - ^articles
+      - Post
+      write:
+      - Comment
+    cannot:
+      write:
+      - Article
+role_groups:
+  bloggers:
+    can:
+      read:
+      - Article
+      - Comment
+    cannot:
+      write:
+      - Article
+      - Post
+  editors:
+    can:
+      read:
+      - Article
+      - Comment
+    cannot:
+      write:
+      - Article
+      - Post
+licenses:
+  editors:
+    can:
+      manage:
+      - all
+users:
+  kris@gmail.com:
+    can:
+      read:
+      - Article
+user_types: {}
+account_types: {}

data/spec/fixtures/config/categories.yml ADDED

@@ -0,0 +1,6 @@
+another_articles:
+  [Post, Article]
+articles:
+  [Article, Post, Comment]
+user_models:
+  [Admin, Guest, User]

data/spec/fixtures/config/evaluator_fixtures.yml ADDED

@@ -0,0 +1,18 @@
+bloggers:
+  can:
+    read:
+    - Article
+    - Comment
+  cannot:
+    write:
+    - Article
+    - Post
+editors:
+  can:
+    read:
+    - Article
+    - Comment
+  cannot:
+    write:
+    - Article
+    - Post

data/spec/fixtures/config/licenses.yml ADDED

@@ -0,0 +1,4 @@
+bloggers:
+  can:
+    manage:
+      - Comment

data/spec/fixtures/config/permissions.yml ADDED

@@ -0,0 +1,60 @@
+user_types:
+  admin:
+    can:
+      manage:
+        - all
+account_types:
+  editor:
+    can:
+      manage:
+        - all
+roles:
+  admin:
+    can:
+      manage:
+      - all
+  user:
+    can:
+      read:
+      - Comment
+      - Post
+      - Article
+      - User
+      write:
+      - Article
+      manage:
+      - Comment
+      - Post
+role_groups:
+  bloggers:
+    can:
+      read:
+      - Article
+      - Comment
+    cannot:
+      write:
+      - Article
+      - Post
+  editors:
+    can:
+      read:
+      - Article
+      - Comment
+    cannot:
+      write:
+      - Article
+      - Post
+licenses:
+  editors:
+    can:
+      manage:
+      - all
+users:
+  kris@gmail.com:
+    can:
+    cannot: