RubyGems - cantango-permits - Versions diffs - 0.1.1 - Mend

cantango-permits 0.1.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (166) hide show

data/.rspec +1 -0
data/Gemfile +39 -0
data/Gemfile.lock +155 -0
data/MIT-LICENSE +20 -0
data/README.mdown +362 -0
data/Rakefile +45 -0
data/VERSION +1 -0
data/lib/cantango/executor.rb +5 -0
data/lib/cantango/executor/base.rb +9 -0
data/lib/cantango/executor/permit.rb +7 -0
data/lib/cantango/executor/permit/abstract.rb +27 -0
data/lib/cantango/executor/permit/base.rb +19 -0
data/lib/cantango/executor/permit/special.rb +9 -0
data/lib/cantango/executor/permit_type.rb +50 -0
data/lib/cantango/license.rb +19 -0
data/lib/cantango/license/rules.rb +17 -0
data/lib/cantango/permit.mdown +4 -0
data/lib/cantango/permit.rb +5 -0
data/lib/cantango/permit/account_type.rb +44 -0
data/lib/cantango/permit/attribute.rb +71 -0
data/lib/cantango/permit/base.rb +94 -0
data/lib/cantango/permit/class_methods.rb +49 -0
data/lib/cantango/permit/helper.rb +11 -0
data/lib/cantango/permit/helper/execution.rb +38 -0
data/lib/cantango/permit/helper/host.rb +13 -0
data/lib/cantango/permit/helper/license.rb +34 -0
data/lib/cantango/permit/helper/naming.rb +38 -0
data/lib/cantango/permit/helper/state.rb +21 -0
data/lib/cantango/permit/special.rb +17 -0
data/lib/cantango/permit/user.rb +36 -0
data/lib/cantango/permit/user_type.rb +34 -0
data/lib/cantango/permits.rb +20 -0
data/lib/cantango/permits_ext.rb +7 -0
data/lib/cantango/permits_ext/ability.rb +7 -0
data/lib/cantango/permits_ext/ability/helper.rb +9 -0
data/lib/cantango/permits_ext/ability/helper/permits.rb +8 -0
data/lib/cantango/permits_ext/builder.rb +7 -0
data/lib/cantango/permits_ext/builder/permit.rb +9 -0
data/lib/cantango/permits_ext/builder/permit/account_type.rb +13 -0
data/lib/cantango/permits_ext/builder/permit/base.rb +94 -0
data/lib/cantango/permits_ext/builder/permit/special.rb +13 -0
data/lib/cantango/permits_ext/builder/permit/user_type.rb +7 -0
data/lib/cantango/permits_ext/class_methods.rb +28 -0
data/lib/cantango/permits_ext/config.rb +11 -0
data/lib/cantango/permits_ext/config/engines.rb +9 -0
data/lib/cantango/permits_ext/config/engines/permit.rb +20 -0
data/lib/cantango/permits_ext/config/permits.rb +43 -0
data/lib/cantango/permits_ext/config/permits/accounts.rb +15 -0
data/lib/cantango/permits_ext/config/permits/disabling.rb +22 -0
data/lib/cantango/permits_ext/config/permits/enabling.rb +14 -0
data/lib/cantango/permits_ext/config/permits/execution.rb +21 -0
data/lib/cantango/permits_ext/config/permits/key.rb +19 -0
data/lib/cantango/permits_ext/config/permits/registration.rb +33 -0
data/lib/cantango/permits_ext/config/permits/tracking.rb +19 -0
data/lib/cantango/permits_ext/config/permits/types.rb +25 -0
data/lib/cantango/permits_ext/engine.rb +7 -0
data/lib/cantango/permits_ext/engine/permits.rb +75 -0
data/lib/cantango/permits_ext/factory.rb +7 -0
data/lib/cantango/permits_ext/factory/permits.rb +40 -0
data/lib/cantango/permits_ext/finder.rb +7 -0
data/lib/cantango/permits_ext/finder/base.rb +35 -0
data/lib/cantango/permits_ext/finder/permit.rb +7 -0
data/lib/cantango/permits_ext/finder/permit/account.rb +47 -0
data/lib/cantango/permits_ext/finder/permit/base.rb +53 -0
data/lib/cantango/permits_ext/loader.rb +7 -0
data/lib/cantango/permits_ext/loader/categories.rb +50 -0
data/lib/cantango/permits_ext/loader/license.rb +19 -0
data/lib/cantango/permits_ext/macros.rb +7 -0
data/lib/cantango/permits_ext/macros/permit.rb +32 -0
data/lib/cantango/permits_ext/parser.rb +7 -0
data/lib/cantango/permits_ext/parser/categories.rb +15 -0
data/lib/cantango/permits_ext/registry.rb +7 -0
data/lib/cantango/permits_ext/registry/permit.rb +45 -0
data/lib/generators/cantango/account_permit/account_permit_generator.rb +37 -0
data/lib/generators/cantango/account_permit/templates/account_permit.erb +23 -0
data/lib/generators/cantango/base.rb +71 -0
data/lib/generators/cantango/basic.rb +41 -0
data/lib/generators/cantango/license/license_generator.rb +29 -0
data/lib/generators/cantango/license/templates/license.erb +10 -0
data/lib/generators/cantango/license_base.rb +15 -0
data/lib/generators/cantango/licenses/licenses_generator.rb +26 -0
data/lib/generators/cantango/permit_generator.rb +58 -0
data/lib/generators/cantango/role_permit/role_permit_generator.rb +39 -0
data/lib/generators/cantango/role_permit/templates/account_permit.erb +4 -0
data/lib/generators/cantango/role_permit/templates/role_group_permit.erb +24 -0
data/lib/generators/cantango/role_permit/templates/role_permit.erb +23 -0
data/lib/generators/cantango/role_permits/role_permits_generator.rb +45 -0
data/lib/generators/cantango/user_permit/templates/account_permit.erb +5 -0
data/lib/generators/cantango/user_permit/templates/user_permit.erb +23 -0
data/lib/generators/cantango/user_permit/user_permit_generator.rb +36 -0
data/lib/tasks/permits_tasks.rake +4 -0
data/spec/cantango/ability/helper/permits_spec.rb +14 -0
data/spec/cantango/builder/permit/account_type_spec.rb +25 -0
data/spec/cantango/builder/permit/base_spec.rb +30 -0
data/spec/cantango/builder/permit/special_spec.rb +25 -0
data/spec/cantango/builder/permit/user_type_spec.rb +27 -0
data/spec/cantango/config/engines/permit_spec.rb +14 -0
data/spec/cantango/config/engines_spec.rb +142 -0
data/spec/cantango/config/permit_registry_ex.rb +9 -0
data/spec/cantango/config/permit_registry_spec.rb +8 -0
data/spec/cantango/config/permits/accounts_spec.rb +23 -0
data/spec/cantango/config/permits/disabling_spec.rb +38 -0
data/spec/cantango/config/permits/enabling_spec.rb +19 -0
data/spec/cantango/config/permits/execution_spec.rb +27 -0
data/spec/cantango/config/permits/registration_spec.rb +15 -0
data/spec/cantango/config/permits/tracking_spec.rb +19 -0
data/spec/cantango/config/permits/types_spec.rb +27 -0
data/spec/cantango/config/permits_spec.rb +76 -0
data/spec/cantango/engine/permit_cached_spec.rb +52 -0
data/spec/cantango/engine/permit_spec.rb +58 -0
data/spec/cantango/engine/permit_static_dynamic_spec.rb +65 -0
data/spec/cantango/executor/custom_permit_spec.rb +65 -0
data/spec/cantango/executor/more_permit_spec.rb +45 -0
data/spec/cantango/executor/permit_base_spec.rb +46 -0
data/spec/cantango/executor/permit_spec.rb +53 -0
data/spec/cantango/executor/special_permit_spec.rb +36 -0
data/spec/cantango/factory/permits_spec.rb +70 -0
data/spec/cantango/finder/account_permit_spec.rb +30 -0
data/spec/cantango/finder/permit_spec.rb +23 -0
data/spec/cantango/license/save_license_spec.rb +24 -0
data/spec/cantango/license_spec.rb +0 -0
data/spec/cantango/loader/categories_spec.rb +47 -0
data/spec/cantango/loader/license_spec.rb +7 -0
data/spec/cantango/macros/permit_spec.rb +38 -0
data/spec/cantango/parser/categories_spec.rb +19 -0
data/spec/cantango/permit/account_type_spec.rb +34 -0
data/spec/cantango/permit/attribute_permit_spec.rb +65 -0
data/spec/cantango/permit/base_spec.rb +106 -0
data/spec/cantango/permit/class_methods_spec.rb +34 -0
data/spec/cantango/permit/helper/execution_spec.rb +54 -0
data/spec/cantango/permit/helper/host_spec.rb +29 -0
data/spec/cantango/permit/helper/license_spec.rb +37 -0
data/spec/cantango/permit/helper/naming_spec.rb +56 -0
data/spec/cantango/permit/helper/state_spec.rb +24 -0
data/spec/cantango/permit/special_default_spec.rb +2 -0
data/spec/cantango/permit/special_first_spec.rb +2 -0
data/spec/cantango/permit/user_type_spec.rb +78 -0
data/spec/cantango/registry/permit_spec.rb +67 -0
data/spec/fixtures/config/cantango_permissions.yml +49 -0
data/spec/fixtures/config/categories.yml +6 -0
data/spec/fixtures/config/evaluator_fixtures.yml +18 -0
data/spec/fixtures/config/licenses.yml +4 -0
data/spec/fixtures/config/permissions.yml +60 -0
data/spec/fixtures/config/role_group.yml +4 -0
data/spec/fixtures/config/roles.yml +4 -0
data/spec/fixtures/config/test_permissions.yml +55 -0
data/spec/fixtures/config/user_permissions.yml +8 -0
data/spec/fixtures/models.rb +15 -0
data/spec/fixtures/models/admin.rb +2 -0
data/spec/fixtures/models/admin_account.rb +22 -0
data/spec/fixtures/models/items.rb +11 -0
data/spec/fixtures/models/permission.rb +12 -0
data/spec/fixtures/models/simple_roles.rb +49 -0
data/spec/fixtures/models/user.rb +52 -0
data/spec/fixtures/models/user_account.rb +21 -0
data/spec/fixtures/tango_fixtures.rb +29 -0
data/spec/generators/cantango/account_role_permit_generator_spec.rb +35 -0
data/spec/generators/cantango/account_role_permits_generator_spec.rb +59 -0
data/spec/generators/cantango/license_generator_spec.rb +33 -0
data/spec/generators/cantango/licenses_generator_spec.rb +58 -0
data/spec/generators/cantango/role_permit_generator_spec.rb +35 -0
data/spec/generators/cantango/role_permits_generator_spec.rb +58 -0
data/spec/helpers/current_user_accounts.rb +20 -0
data/spec/helpers/current_users.rb +10 -0
data/spec/spec_helper.rb +24 -0
metadata +325 -0

data/spec/cantango/permit/helper/host_spec.rb ADDED

@@ -0,0 +1,29 @@
+require 'spec_helper'
+require 'fixtures/models'
+class MyOwnPermit < CanTango::Permit::Base
+  include CanTango::Permit::Helper::Host
+end
+class RequestHost
+  attr_accessor :host
+  def initialize host
+    @host = host
+  end
+end
+describe CanTango::Permit::Helper::Naming do
+  before do
+    @localhost_req = RequestHost.new 'localhost'
+    @user = SimpleUser.new
+    @ability = CanTango::Ability::Base.new @user, :request => @localhost_req
+  end
+  subject { MyOwnPermit.new @ability }
+  context 'localhost' do
+    specify { subject.local_host?.should be_true }
+    specify { subject.public_host?.should be_false }
+  end
+end

data/spec/cantango/permit/helper/license_spec.rb ADDED

@@ -0,0 +1,37 @@
+require 'spec_helper'
+require 'fixtures/models'
+class MyOwnPermit < CanTango::Ability::Base
+  include CanTango::Permit::Helper::License
+end
+class BloggingLicense < CanTango::License
+  def initialize ability
+    super
+  end
+  def calc_rules
+    can :edit, Project
+  end
+end
+describe CanTango::Permit::Helper::License do
+  before do
+    @user = User.new 'kris', 'kris@mail.ru', :roles => [:editor]
+  end
+  subject { MyOwnPermit.new @user }
+  describe 'license name' do
+    before do
+      subject.license(:blogging)
+    end
+    specify { subject.rules.should_not be_empty }
+  end
+  describe 'licenses *names' do
+    before do
+      subject.licenses(:blogging)
+    end
+    specify { subject.rules.should_not be_empty }
+  end
+end

data/spec/cantango/permit/helper/naming_spec.rb ADDED

@@ -0,0 +1,56 @@
+require 'spec_helper'
+require 'fixtures/models'
+class MyOwnPermit
+  include CanTango::Permit::Helper::Naming
+  extend CanTango::Permit::Helper::Naming
+end
+class CanTango::Permit::Mine
+  include CanTango::Permit::Helper::Naming
+  extend CanTango::Permit::Helper::Naming
+end
+module AdminPermits
+  class MyOwnPermit
+    include CanTango::Permit::Helper::Naming
+    extend CanTango::Permit::Helper::Naming
+  end
+end
+describe CanTango::Permit::Helper::Naming do
+  subject { MyOwnPermit.new }
+  describe '#permit_name' do
+    describe 'permit_name clazz' do
+      specify { subject.permit_name(MyOwnPermit).should == :my_own }
+    end
+    describe 'permit_name clazz' do
+      specify { CanTango::Permit::Mine.permit_name.should == :mine }
+    end
+    describe 'clazz.permit_name' do
+      specify { MyOwnPermit.permit_name.should == :my_own }
+    end
+  end
+  describe '#account_name' do
+    describe 'account_name clazz' do
+      specify { subject.account_name(MyOwnPermit).should == nil }
+    end
+    describe 'account_name clazz' do
+      specify { MyOwnPermit.account_name.should == nil }
+    end
+    describe 'account_name clazz' do
+      specify { CanTango::Permit::Mine.account_name.should == nil }
+    end
+    context 'wrapped in valid account namespace' do
+      describe 'account_name clazz' do
+        specify { AdminPermits::MyOwnPermit.account_name.should == :admin }
+      end
+    end
+  end
+end

data/spec/cantango/permit/helper/state_spec.rb ADDED

@@ -0,0 +1,24 @@
+require 'spec_helper'
+class MyOwnPermit
+  include CanTango::Permit::Helper::State
+end
+describe CanTango::Permit::Helper::Naming do
+  subject { MyOwnPermit.new }
+  describe '#enable!' do
+    before do
+      subject.enable!
+    end
+    specify { subject.enabled?.should be_true }
+    specify { subject.disabled?.should be_false }
+  end
+  describe '#disable!' do
+    before do
+      subject.disable!
+    end
+    specify { subject.enabled?.should be_false }
+    specify { subject.disabled?.should be_true }
+  end
+end

data/spec/cantango/permit/special_default_spec.rb ADDED

	@@ -0,0 +1,2 @@
1	+ # The special Default permit which will be executed last for any candidate regardless unless break-out
2	+ # has occured

data/spec/cantango/permit/special_first_spec.rb ADDED

	@@ -0,0 +1,2 @@
1	+ # The special First permit to be executed which has the potential to break out of the
2	+ # execution loop on some specific condition

data/spec/cantango/permit/user_type_spec.rb ADDED

@@ -0,0 +1,78 @@
+require 'spec_helper'
+require 'fixtures/models'
+class AdminPermit < CanTango::Permit::UserType
+  def initialize ability
+    super
+  end
+  protected
+  def static_rules
+    can :read, Article
+  end
+end
+describe CanTango::Permit::UserType do
+  before do
+    @user = SimpleUser.new
+    @ability = CanTango::Ability::Base.new @user
+    @permit = AdminPermit.new @ability
+  end
+  subject { @permit }
+  describe 'registration' do
+    describe 'permit types' do
+      specify { CanTango.config.permits.types.registered.should include(:user_type) }
+    end
+    describe 'permits of type' do
+      specify { CanTango.config.permits.registered_for(:user_type, :admin).should == AdminPermit }
+    end
+  end
+  describe 'attributes' do
+    it "should be the permit for the :admin user" do
+      subject.permit_name.should == :admin
+    end
+    it "should have a user candidate" do
+      subject.candidate.should be_a(SimpleUser)
+    end
+    it "should have a user subject" do
+      subject.send(:user).should be_a(SimpleUser)
+    end
+    it "should have an ability" do
+      subject.ability.should be_a(CanTango::Ability::Base)
+    end
+  end
+  context 'config permits' do
+    let(:permits) { CanTango.config.permits }
+    describe 'disable Admin Permit' do
+      before do
+        permits.disable_for :user_type, [:admin, :editor]
+      end
+      it "should have an ability" do
+        subject.disabled?.should be_true
+      end
+    end
+    describe 'enable all Permits' do
+      before do
+        permits.enable_all!
+      end
+      it "should be disabled" do
+        permits.disabled.should be_empty
+        subject.disabled?.should be_false
+      end
+    end
+  end
+end

data/spec/cantango/registry/permit_spec.rb ADDED

@@ -0,0 +1,67 @@
+require 'spec_helper'
+class AdminUserPermit
+end
+class PermitReg
+  include CanTango::Registry::Permit
+end
+describe CanTango::Registry::Permit do
+  before do
+    @reg = PermitReg.new
+    CanTango.config.permits.types.register :user_type
+    # puts CanTango.config.permits.types.inspect
+    permit_registry = @reg.registry_for(:user_type)
+    permit_registry[:admin] = AdminUserPermit
+  end
+  subject { @reg }
+  describe 'registry_for type' do
+    context 'existing type' do
+      specify { subject.registry_for(:user_type).should be_a CanTango::Registry::Hash }
+    end
+    context 'non-existing type' do
+      specify do
+        lambda { subject.registry_for(:unknown) }.should raise_error
+      end
+    end
+  end
+  describe 'registered_for type, name = nil' do
+    context 'existing permit' do
+      specify { subject.registered_for(:user_type, :admin).should == AdminUserPermit }
+    end
+    context 'non-existing permit type' do
+      specify do
+        lambda { subject.registered_for(:not_there, :unknown) }.should raise_error
+      end
+    end
+    context 'non-existing permit' do
+      specify do
+        subject.registered_for(:user_type, :unknown).should be_nil
+      end
+    end
+  end
+  describe 'all' do
+    specify do
+      subject.all.first.registered.admin.should be_true
+    end
+  end
+  describe 'show_all' do
+    before do
+      puts subject.show_all
+    end
+    specify do
+      subject.show_all.should match(/admin/)
+    end
+  end
+end

data/spec/fixtures/config/cantango_permissions.yml ADDED

@@ -0,0 +1,49 @@
+---
+roles:
+  admin:
+    can:
+      manage:
+      - all
+  user:
+    can:
+      read:
+      - ^articles
+      - Post
+      write:
+      - Comment
+    cannot:
+      write:
+      - Article
+role_groups:
+  bloggers:
+    can:
+      read:
+      - Article
+      - Comment
+    cannot:
+      write:
+      - Article
+      - Post
+  editors:
+    can:
+      read:
+      - Article
+      - Comment
+    cannot:
+      write:
+      - Article
+      - Post
+licenses:
+  editors:
+    can:
+      manage:
+      - all
+users:
+  kris@gmail.com:
+    can:
+      read:
+      - Article
+user_types: {}
+account_types: {}

data/spec/fixtures/config/categories.yml ADDED

@@ -0,0 +1,6 @@
+another_articles:
+  [Post, Article]
+articles:
+  [Article, Post, Comment]
+user_models:
+  [Admin, Guest, User]

data/spec/fixtures/config/evaluator_fixtures.yml ADDED

@@ -0,0 +1,18 @@
+bloggers:
+  can:
+    read:
+    - Article
+    - Comment
+  cannot:
+    write:
+    - Article
+    - Post
+editors:
+  can:
+    read:
+    - Article
+    - Comment
+  cannot:
+    write:
+    - Article
+    - Post

data/spec/fixtures/config/licenses.yml ADDED

@@ -0,0 +1,4 @@
+bloggers:
+  can:
+    manage:
+      - Comment

data/spec/fixtures/config/permissions.yml ADDED

@@ -0,0 +1,60 @@
+user_types:
+  admin:
+    can:
+      manage:
+        - all
+account_types:
+  editor:
+    can:
+      manage:
+        - all
+roles:
+  admin:
+    can:
+      manage:
+      - all
+  user:
+    can:
+      read:
+      - Comment
+      - Post
+      - Article
+      - User
+      write:
+      - Article
+      manage:
+      - Comment
+      - Post
+role_groups:
+  bloggers:
+    can:
+      read:
+      - Article
+      - Comment
+    cannot:
+      write:
+      - Article
+      - Post
+  editors:
+    can:
+      read:
+      - Article
+      - Comment
+    cannot:
+      write:
+      - Article
+      - Post
+licenses:
+  editors:
+    can:
+      manage:
+      - all
+users:
+  kris@gmail.com:
+    can:
+    cannot: