RubyGems - consul - Versions diffs - 0.12.0 → 0.12.1 - Mend

consul 0.12.0 → 0.12.1

Potentially problematic release.

This version of consul might be problematic. Click here for more details.

Files changed (10) hide show

checksums.yaml +5 -13
data/README.md +392 -291
data/lib/consul/power.rb +5 -3
data/lib/consul/spec/matchers.rb +3 -1
data/lib/consul/version.rb +1 -1
data/spec/rails-3.0/Gemfile.lock +1 -1
data/spec/rails-3.2/Gemfile.lock +1 -1
data/spec/rails-4.1/Gemfile.lock +1 -1
data/spec/shared/consul/power_spec.rb +12 -0
metadata +14 -130

checksums.yaml CHANGED

@@ -1,15 +1,7 @@
 ---
-!binary "U0hBMQ==":
-  metadata.gz: !binary |-
-    NGJjOTg0MzEzODg3Mzc2Mjk1OGIyYzhmNTRlMDgwYzczZDFjNGY5Mw==
-  data.tar.gz: !binary |-
-    NjEwOTM0ZjMwNzllMWQxMTgzNzZmMDAwZWQ3ODk0NTA0NTU0N2U3YQ==
+SHA1:
+  metadata.gz: 0400eaba4100fccd2fa6ce219fbef662b0539a68
+  data.tar.gz: c37bcc13bc449b5fdbfd75e0cd10921450d93145
 SHA512:
-  metadata.gz: !binary |-
-    NmY4NzcxNDM2YTFmOGQxOGJhNzY2Mzc1M2UyZWFhNzMzZWEwNzVjNjNjYjU5
-    ODg0NTUzNmE4MmI3NzM5YWNmMjkzMjI3NjUzMzA3N2U5ZTZlNjM4YmE1OWJk
-    YTg5NGQ5NjNlYjM3Y2RhODZiZTUyZDNlZWIwZjQ3OGYyNTI2MWM=
-  data.tar.gz: !binary |-
-    Nzg4Nzc2NGU2Y2FlZjA5N2Y1YzBmMGYyZjhlMjIxZTU0ZDgyOGQ3YjZkNTM5
-    MWZkNDA0OTJhNjVjZTVkMTZlM2E0MDg4NWIwODFkZjQ5MGJiYzE4NWEyYTA2
-    ZjQ2NjJjMjc2N2RhZGE1NmZiZWVlZDdmYmY4NmIyOGRmMzQ3Mjg=
+  metadata.gz: c311180fbd19ac398075e151e8b734edca9dabe4a53de83bdf80cbe16498764b3726b856a36d9ab6926e541b9b4f5ddefe52a8aa42173ad204e3e79d6fe5989a
+  data.tar.gz: 5524169c519ddf6461b6c9925e718b0b560408d0514cad3cba6fd881f576963528b2b54d0e417adfa9446c25135b9c924da2ceff70e586145a9b579ca3be5571

data/README.md CHANGED

@@ -23,26 +23,28 @@ Inside your `Power` you can talk about what is accessible for the current user,
 A `Power` might look like this:
-    class Power
-      include Consul::Power
+```rb
+class Power
+  include Consul::Power
-      def initialize(user)
-        @user = user
-      end
+  def initialize(user)
+    @user = user
+  end
-      power :users do
-        User if @user.admin?
-      end
+  power :users do
+    User if @user.admin?
+  end
-      power :notes do
-        Note.by_author(@user)
-      end
+  power :notes do
+    Note.by_author(@user)
+  end
-      power :dashboard do
-        true # not a scope, but a boolean power. This is useful to control access to stuff that doesn't live in the database.
-      end
+  power :dashboard do
+    true # not a scope, but a boolean power. This is useful to control access to stuff that doesn't live in the database.
+  end
-    end
+end
+```
 There are no restrictions on the name or constructor arguments of your this class.
@@ -60,39 +62,51 @@ A typical use case in a Rails application is to restrict access to your ActiveRe
 You do this by making your powers return an ActiveRecord scope (or "relation"):
-    class Power
-      ...
+```rb
+class Power
+  ...
-      power :notes do
-        Note.by_author(@user)
-      end
+  power :notes do
+    Note.by_author(@user)
+  end
-      power :users do
-        User if @user.admin?
-      end
+  power :users do
+    User if @user.admin?
+  end
-    end
+end
+```
 You can now query these powers in order to retrieve the scope:
-    power = Power.new(user)
-    power.notes  # => returns an ActiveRecord::Scope
+```rb
+power = Power.new(user)
+power.notes  # => returns an ActiveRecord::Scope
+```
 Or you can ask if the power is given (meaning it's not `nil`):
-    power.notes? # => returns true if Power#notes returns a scope and not nil
+```rb
+power.notes? # => returns true if Power#notes returns a scope and not nil
+```
 Or you can raise an error unless a power its given, e.g. to guard access into a controller action:
-    power.notes! # => raises Consul::Powerless unless Power#notes returns a scope (even if it's empty)
+```rb
+power.notes! # => raises Consul::Powerless unless Power#notes returns a scope (even if it's empty)
+```
 Or you ask whether a given record is included in its scope (can be [optimized](#optimizing-record-checks-for-scope-powers)):
-    power.note?(Note.last) # => returns whether the given Note is in the Power#notes scope. Caches the result for subsequent queries.
+```rb
+power.note?(Note.last) # => returns whether the given Note is in the Power#notes scope. Caches the result for subsequent queries.
+```
 Or you can raise an error unless a given record is included in its scope:
-    power.note!(Note.last) # => raises Consul::Powerless unless the given Note is in the Power#notes scope
+```rb
+power.note!(Note.last) # => raises Consul::Powerless unless the given Note is in the Power#notes scope
+```
 See our crash course video [Solving bizare authorization requirements with Rails](http://bizarre-authorization.talks.makandra.com/) for many different use cases you can cover with this pattern.
@@ -103,22 +117,24 @@ See our crash course video [Solving bizare authorization requirements with Rails
 If you have different access rights for e.g. viewing or updating posts, simply use different powers:
-    class Power
-      ...
+```rb
+class Power
+  ...
-      power :notes do
-        Note.published
-      end
+  power :notes do
+    Note.published
+  end
-      power :updatable_notes do
-        Note.by_author(@user)
-      end
+  power :updatable_notes do
+    Note.by_author(@user)
+  end
-      power :destroyable_notes do
-        Note if @user.admin?
-      end
+  power :destroyable_notes do
+    Note if @user.admin?
+  end
-    end
+end
+```
 There is also a [shortcut to map different powers to RESTful controller actions](#protect-entry-into-controller-actions).
@@ -128,20 +144,24 @@ There is also a [shortcut to map different powers to RESTful controller actions]
 Boolean powers are useful to control access to stuff that doesn't live in the database:
-    class Power
-      ...
+```rb
+class Power
+  ...
-      power :dashboard do
-        true
-      end
+  power :dashboard do
+    true
+  end
-    end
+end
+```
 You can query it like the other powers:
-    power = Power.new(@user)
-    power.dashboard? # => true
-    power.dashboard! # => raises Consul::Powerless unless Power#dashboard? returns true
+```rb
+power = Power.new(@user)
+power.dashboard? # => true
+power.dashboard! # => raises Consul::Powerless unless Power#dashboard? returns true
+```
 ### Powers that give no access at all
@@ -151,23 +171,27 @@ If you want to express that a user has no access at all, make the respective pow
 Note how the power in the example below returns `nil` unless the user is an admin:
-    class Power
-      ...
+```rb
+class Power
+  ...
-      power :users do
-        User if @user.admin?
-      end
+  power :users do
+    User if @user.admin?
+  end
-    end
+end
+```
 When a non-admin queries the `:users` power, she will get the following behavior:
-    power = Power.new(@user)
-    power.users # => returns nil
-    power.users? # => returns false
-    power.users! # => raises Consul::Powerless
-    power.user?(User.last) # => returns false
-    power.user!(User.last) # => raises Consul::Powerless
+```rb
+power = Power.new(@user)
+power.users # => returns nil
+power.users? # => returns false
+power.users! # => raises Consul::Powerless
+power.user?(User.last) # => returns false
+power.user!(User.last) # => raises Consul::Powerless
+```
@@ -179,97 +203,113 @@ Sometimes you only want to store a method that checks whether a given object is
 To do so, simply define a power that ends in a question mark:
-    class Power
-      ...
+```rb
+class Power
+  ...
-      power :updatable_post? do |post|
-        post.author == @user
-      end
+  power :updatable_post? do |post|
+    post.author == @user
+  end
-    end
+end
+```
 You can query such an power as always:
-    power = Power.new(@user)
-    power.updatable_post?(Post.last) # return true if the author of the post is @user
-    power.updatable_post!(Post.last) # raises Consul::Powerless unless the author of the post is @user
+```rb
+power = Power.new(@user)
+power.updatable_post?(Post.last) # return true if the author of the post is @user
+power.updatable_post!(Post.last) # raises Consul::Powerless unless the author of the post is @user
+```
 ### Other types of powers
 A power can return any type of object. For instance, you often want to return an array:
-    class Power
-      ...
-      power :assignable_note_states do
-        if admin?
-          %w[draft pending published retracted]
-        else
-          %w[draft pending]
-        end
-      end
+```rb
+class Power
+  ...
+  power :assignable_note_states do
+    if admin?
+      %w[draft pending published retracted]
+    else
+      %w[draft pending]
     end
+  end
+end
+```
 You can query it like any other power. E.g. if a non-admin queries this power she will get the following behavior:
-    power.assignable_note_states # => ['draft', 'pending']
-    power.assignable_note_states? # => returns true
-    power.assignable_note_states! # => does nothing (because the power isn't nil)
-    power.assignable_note_state?('draft') # => returns true
-    power.assignable_note_state?('published') # => returns false
-    power.assignable_note_state!('published') # => raises Consul::Powerless
+```rb
+power.assignable_note_states # => ['draft', 'pending']
+power.assignable_note_states? # => returns true
+power.assignable_note_states! # => does nothing (because the power isn't nil)
+power.assignable_note_state?('draft') # => returns true
+power.assignable_note_state?('published') # => returns false
+power.assignable_note_state!('published') # => raises Consul::Powerless
+```
 ### Defining multiple powers at once
 You can define multiple powers at once by giving multiple power names:
-    class Power
-      ...
+```rb
+class Power
+  ...
-      power :destroyable_users, :updatable_users do
-        User if admin?
-      end
+  power :destroyable_users, :updatable_users do
+    User if admin?
+  end
-    end
+end
+```
 ### Powers that require context (arguments)
 Sometimes it can be useful to define powers that require context. To do so, just take an argument in your `power` block:
-    class Power
-      ...
+```rb
+class Power
+  ...
-      power :client_notes do |client|
-        client.notes.where(:state => 'published')
-      end
-    end
+  power :client_notes do |client|
+    client.notes.where(:state => 'published')
+  end
+end
+```
 When querying such a power, you always need to provide the context, e.g.:
-    client = ...
-    note = ...
-    Power.current.client_note?(client, note)
+```rb
+client = ...
+note = ...
+Power.current.client_note?(client, note)
+```
 ### Optimizing record checks for scope powers
 You can query a scope power for a given record, e.g.
-    class Power
-      ...
+```rb
+class Power
+  ...
-      power :posts do |post|
-        Post.where(:author_id => @user.id)
-      end
-    end
+  power :posts do |post|
+    Post.where(:author_id => @user.id)
+  end
+end
-    power = Power.new(@user)
-    power.post?(Post.last)
+power = Power.new(@user)
+power.post?(Post.last)
+```
 What Consul does internally is fetch **all** the IDs of the `power.posts` scope and test if the given
 record's ID is among them. This list of IDs is cached for subsequent calls, so you will only touch the database once.
@@ -279,18 +319,20 @@ however be the point where you want to optimize this.
 What you can do in Consul is to define a second power that checks a given record in plain Ruby:
-    class Power
-      ...
+```rb
+class Power
+  ...
-      power :posts do |post|
-        Post.where(:author_id => @user.id)
-      end
+  power :posts do |post|
+    Post.where(:author_id => @user.id)
+  end
-      power :post? do |post|
-        post.author_id == @user.id
-      end
+  power :post? do |post|
+    post.author_id == @user.id
+  end
-    end
+end
+```
 This way you do not need to touch the database at all.
@@ -300,27 +342,29 @@ Role-based permissions
 Consul has no built-in support for role-based permissions, but you can easily implement it yourself. Let's say your `User` model has a string column `role` which can be `"author"` or `"admin"`:
-    class Power
-      include Consul::Power
+```rb
+class Power
+  include Consul::Power
-      def initialize(user)
-        @user = user
-      end
+  def initialize(user)
+    @user = user
+  end
-      power :notes do
-        case role
-          when :admin then Note
-          when :author then Note.by_author
-        end
-      end
+  power :notes do
+    case role
+      when :admin then Note
+      when :author then Note.by_author
+    end
+  end
-      private
+  private
-      def role
-        @user.role.to_sym
-      end
+  def role
+    @user.role.to_sym
+  end
-    end
+end
+```
 Controller integration
@@ -328,76 +372,90 @@ Controller integration
 It is convenient to expose the power for the current request to the rest of the application. Consul will help you with that if you tell it how to instantiate a power for the current request:
-    class ApplicationController < ActionController::Base
-      include Consul::Controller
+```rb
+class ApplicationController < ActionController::Base
+  include Consul::Controller
-      current_power do
-        Power.new(current_user)
-      end
+  current_power do
+    Power.new(current_user)
+  end
-    end
+end
+```
 You now have a helper method `current_power` for your controller and views. Everywhere else, you can access it from `Power.current`. The power will be instantiated when the request is handed over from routing to `ApplicationController`, and will be nilified once the request was processed.
 You can now use power scopes to control access:
-    class NotesController < ApplicationController
+```rb
+class NotesController < ApplicationController
-      def show
-        @note = current_power.notes.find(params[:id])
-      end
+  def show
+    @note = current_power.notes.find(params[:id])
+  end
-    end
+end
+```
 ### Protect entry into controller actions
 To make sure a power is given before every action in a controller:
-    class NotesController < ApplicationController
-      power :notes
-    end
+```rb
+class NotesController < ApplicationController
+  power :notes
+end
+```
 You can use `:except` and `:only` options like in before filters.
 You can also map different powers to different actions:
-    class NotesController < ApplicationController
-      power :notes, :map => { [:edit, :update, :destroy] => :changeable_notes }
-    end
+```rb
+class NotesController < ApplicationController
+  power :notes, :map => { [:edit, :update, :destroy] => :changeable_notes }
+end
+```
 Actions that are not listed in `:map` will get the default action `:notes`.
 Note that in moderately complex authorization scenarios you will often find yourself writing a map like this:
-    class NotesController < ApplicationController
-      power :notes, :map => {
-        [:edit, :update] => :updatable_notes,
-        [:new, :create] => :creatable_notes,
-        [:destroy] => :destroyable_notes
-      }
-    end
+```rb
+class NotesController < ApplicationController
+  power :notes, :map => {
+    [:edit, :update] => :updatable_notes,
+    [:new, :create] => :creatable_notes,
+    [:destroy] => :destroyable_notes
+  }
+end
+```
 Because this pattern is so common, there is a shortcut `:crud` to do the same:
-    class NotesController < ApplicationController
-      power :crud => :notes
-    end
+```rb
+class NotesController < ApplicationController
+  power :crud => :notes
+end
+```
 And if your power [requires context](#powers-that-require-context-arguments) (is parametrized), you can give it using the `:context` method:
-    class ClientNotesController < ApplicationController
+```rb
+class ClientNotesController < ApplicationController
-      power :client_notes, :context => :load_client
+  power :client_notes, :context => :load_client
-      private
+  private
-      def load_client
-        @client ||= Client.find(params[:client_id])
-      end
+  def load_client
+    @client ||= Client.find(params[:client_id])
+  end
-    end
+end
+```
@@ -405,15 +463,17 @@ And if your power [requires context](#powers-that-require-context-arguments) (is
 It is often convenient to map a power scope to a private controller method:
-    class NotesController < ApplicationController
+```rb
+class NotesController < ApplicationController
-      power :notes, :as => note_scope
+  power :notes, :as => note_scope
-      def show
-        @note = note_scope.find(params[:id])
-      end
+  def show
+    @note = note_scope.find(params[:id])
+  end
-    end
+end
+```
 This is especially useful when you are using a RESTful controller library like [resource_controller](https://github.com/jamesgolick/resource_controller). The mapped method is aware of the `:map` option.
@@ -425,47 +485,53 @@ checks and method mappings: One for the parent resource, another for the child r
 Say you have the following routes:
-    resources :clients do
-      resources :notes
-    end
+```rb
+resources :clients do
+  resources :notes
+end
+```
 And the following power definitions:
-    class Power
-      ...
+```rb
+class Power
+  ...
-      power :clients do |client|
-        Client.active if signed_in?
-      end
+  power :clients do |client|
+    Client.active if signed_in?
+  end
-      power :client_notes do |client|
-        client.notes.where(:state => 'published')
-      end
+  power :client_notes do |client|
+    client.notes.where(:state => 'published')
+  end
-    end
+end
+```
 You can now check and map both powers in the nested `NotesController`:
-    class NotesController < ApplicationController
+```rb
+class NotesController < ApplicationController
-      power :clients, :as => :client_scope
-      power :client_notes, :context => :load_client, :as => :note_scope
+  power :clients, :as => :client_scope
+  power :client_notes, :context => :load_client, :as => :note_scope
-      def show
-        load_note
-      end
+  def show
+    load_note
+  end
-      private
+  private
-      def load_client
-        @client ||= client_scope.find(params[:client_id])
-      end
+  def load_client
+    @client ||= client_scope.find(params[:client_id])
+  end
-      def load_note
-        @note ||= note_scope.find(params[:id])
-      end
+  def load_note
+    @note ||= note_scope.find(params[:id])
+  end
-    end
+end
+```
 Note how we provide the `Client` parameter for the `:client_notes` power by using the `:context => :load_client`
 option in the `power` directive.
@@ -474,16 +540,20 @@ option in the `power` directive.
 You can force yourself to use a `power` check in every controller. This will raise `Consul::UncheckedPower` if you ever forget it:
-    class ApplicationController < ActionController::Base
-      include Consul::Controller
-      require_power_check
-    end
+```rb
+class ApplicationController < ActionController::Base
+  include Consul::Controller
+  require_power_check
+end
+```
 Should you for some obscure reason want to forego the power check:
-    class ApiController < ApplicationController
-      skip_power_check
-    end
+```rb
+class ApiController < ApplicationController
+  skip_power_check
+end
+```
 Validating assignable values
@@ -495,59 +565,68 @@ Consul leverages the [assignable_values](https://github.com/makandra/assignable_
 You can enable the authorization layer by using the macro `authorize_values_for`:
-    class Story < ActiveRecord::Base
-      authorize_values_for :state
-    endy
+```rb
+class Story < ActiveRecord::Base
+  authorize_values_for :state
+end
+```
 The macro defines an accessor `power` on instances of `Story`. If that field is set to a power, the values of `state` will be validated against a whitelist of values provided by that power. If that field is `nil`, the validation is skipped.
 Here is a power implementation that can provide a list of assignable values for the example above:
-    class Power
-      ...
-      def assignable_story_states(story)
-        if admin?
-          ['delivered', 'accepted', 'rejected']
-        else
-          ['delivered']
-        end
-      end
+```rb
+class Power
+  ...
+  def assignable_story_states(story)
+    if admin?
+      ['delivered', 'accepted', 'rejected']
+    else
+      ['delivered']
     end
+  end
+end
+```
 Here you can see how to activate the authorization layer and use the new validations:
-    story = Story.new
-    Power.current = Power.new(:role => :guest) # activate the authorization layer
+```rb
+story = Story.new
+Power.current = Power.new(:role => :guest) # activate the authorization layer
-    story.assignable_states # ['delivered'] # apparently we're not admins
+story.assignable_states # ['delivered'] # apparently we're not admins
-    story.state = 'accepted' # a disallowed value
-    story.valid? # => false
+story.state = 'accepted' # a disallowed value
+story.valid? # => false
-    story.state = 'delivered' # an allowed value
-    story.valid? # => true
+story.state = 'delivered' # an allowed value
+story.valid? # => true
+```
 You can not only authorize scalar attributes like strings or integers that way, you can also authorize `belongs_to` associations:
-    class Story < ActiveRecord::Base
-      belongs_to :project
-      authorize_values_for :project
-    end
+```rb
+class Story < ActiveRecord::Base
+  belongs_to :project
+  authorize_values_for :project
+end
-    class Power
-      ...
+class Power
+  ...
-      power :assignable_story_projects do |story|
-        user.account.projects
-      end
-    end
+  power :assignable_story_projects do |story|
+    user.account.projects
+  end
+end
+```
 The `authorize_values_for` macro comes with many useful options and details best explained in the [assignable_values README](https://github.com/makandra/assignable_values), so head over there for more. The macro is basically a shortcut for this:
-    assignable_values_for :field, :through => lambda { Power.current }
+```rb
+assignable_values_for :field, :through => lambda { Power.current }
+```
 Dynamic power access
 --------------------
@@ -556,15 +635,17 @@ Consul gives you a way to dynamically access and query powers for a given name,
 A common use case for this are generic helper methods, e.g. a method to display an "edit" link for any given record
 if the user is authorized to change that record:
-    module CrudHelper
-      def edit_record_action(record)
-        if current_power.include_record?(:updatable, record)
-          link_to 'Edit', [:edit, record]
-        end
-      end
+```rb
+module CrudHelper
+  def edit_record_action(record)
+    if current_power.include_record?(:updatable, record)
+      link_to 'Edit', [:edit, record]
     end
+  end
+end
+```
 You can find a full list of available dynamic calls below:
@@ -599,43 +680,49 @@ Querying a power that might be nil
 You will often want to access `Power.current` from another model, to e.g. iterate through the list of accessible users:
-    class UserReport
-      def data
-        Power.current.users.collect do |user|
-          [user.name, user.email, user.income]
-        end
-      end
+```rb
+class UserReport
+  def data
+    Power.current.users.collect do |user|
+      [user.name, user.email, user.income]
     end
+  end
+end
+```
 Good practice is for your model to not crash when `Power.current` is `nil`. This is the case when your model isn't
 called as part of processing a browser request, e.g. on the console, during tests and during batch processes.
 In such cases your model should simply skip authorization and assume that all users are accessible:
-    class UserReport
-      def data
-        accessible_users = Power.current.present? ? Power.current.users : User
-        accessible_users.collect do |user|
-          [user.name, user.email, user.income]
-        end
-      end
+```rb
+class UserReport
+  def data
+    accessible_users = Power.current.present? ? Power.current.users : User
+    accessible_users.collect do |user|
+      [user.name, user.email, user.income]
     end
+  end
+end
+```
 Because this pattern is so common, the `Power` class comes with a number of class methods you can use to either query
 `Power.current` or, if it is not set, just assume that everything is accessible:
-    class UserReport
-      def data
-        Power.for_model(User).collect do |user|
-          [user.name, user.email, user.income]
-        end
-      end
+```rb
+class UserReport
+  def data
+    Power.for_model(User).collect do |user|
+      [user.name, user.email, user.income]
     end
+  end
+end
+```
 There is a long selection of class methods that behave neutrally in case `Power.current` is `nil`:
@@ -665,19 +752,23 @@ This section Some hints for testing authorization with Consul.
 You can say this in any controller spec:
-    describe CakesController do
+```rb
+describe CakesController do
-      it { should check_power(:cakes) }
+  it { should check_power(:cakes) }
-    end
+end
+```
 You can test against all options of the `power` macro:
-    describe CakesController do
+```rb
+describe CakesController do
-      it { should check_power(:cakes, :map => { [:edit, :update] => :updatable_cakes }) }
+  it { should check_power(:cakes, :map => { [:edit, :update] => :updatable_cakes }) }
-    end
+end
+```
 ### Temporarily change the current power
@@ -685,28 +776,34 @@ When you set `Power.current` to a power in an RSpec example, you must remember t
 A better way is to use the `.with_power` method to change the current power for the duration of a block:
-    admin = User.new(:role => 'admin')
-    admin_power = Power.new(admin)
+```rb
+admin = User.new(:role => 'admin')
+admin_power = Power.new(admin)
-    Power.with_power(admin_power) do
-      # run code that uses Power.current
-    end
+Power.with_power(admin_power) do
+  # run code that uses Power.current
+end
+```
 `Power.current` will be `nil` (or its former value) after the block has ended.
 A nice shortcut is that when you call `with_power` with an argument that is not already a `Power`, Consul will instantiate a `Power` for you:
-    admin = User.new(:role => 'admin')
+```rb
+admin = User.new(:role => 'admin')
-    Power.with_power(admin) do
-      # run code that uses Power.current
-    end
+Power.with_power(admin) do
+  # run code that uses Power.current
+end
+```
 There is also a method `.without_power` that runs a block without a current Power:
-    Power.without_power do
-      # run code that should not see a Power
-    end
+```rb
+Power.without_power do
+  # run code that should not see a Power
+end
+```
 Installation
@@ -714,7 +811,9 @@ Installation
 Add the following to your `Gemfile`:
-    gem 'consul'
+```
+gem 'consul'
+```
 Now run `bundle install` to lock the gem into your project.
@@ -724,7 +823,9 @@ Development
 Test applications for various Rails versions lives in `spec`. You can run specs from the project root by saying:
-  bundle exec rake all:spec
+```
+bundle exec rake all:spec
+```
 If you would like to contribute: