controller_policies 0.1.0 → 0.2.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: db99c9c096c0c752d9d035f928f7c92e9f6efff716975d2e4672b3c18443b16a
-  data.tar.gz: 01a131a24ad0f546ada81e5d10c1d27564591147c09004a97e6691150d18be71
+  metadata.gz: fa53cf4c7f5bfddf09fdf955300af7495177f5d3410983a43202733504d6169b
+  data.tar.gz: 68c2cc086cb3cf7c49cc711a08f39ffa3ef3708bdb18add637a76e2e562b6e80
 SHA512:
-  metadata.gz: 05ebbc1bad897b0b6fecf8280f625a5f4d73013255c0dee1e7ab5a6e564fc9aedd21772b9b0bd27d159cf698e09377b3b829dcf5ee60584c95a250841536a336
-  data.tar.gz: 5e23aa2064c53ea42acea98b1bffaa89767558e4fe2a7a7938b2331b258f0dc0c661f1b8542d866cacf44ec453a222e34019b0c8b7e1b77e1091be89281b84bd
+  metadata.gz: c36da060a6497a6655e4affc6404142d29055830819a67ffd441aabe401b4ce6fb3c72061b9905e5a7485c9ebfc68cb1451caf5fef64a3ea7dc333d8c4ef4839
+  data.tar.gz: c37a343a64bacc653e06420be3e1c3e5f1563692d996326de1112da645770dca5258cd145038d456c41705b2e79bc4110cc6ae3683db83647a540b72d8acaa69

data/README.md

@@ -20,7 +20,7 @@ rails g policy_definition my/namespace
 
 This will generate a file: `app/policies/my/namespace/definitions.rb`
 
-The developer should edit this file and add the policies for the app.
+The developer should edit this file and add the policies for the app. **It is important to note that the location of the definitions file should reflect the namespace of the associated controllers.**
 
 ### `actions` key
 
@@ -61,7 +61,7 @@ Simply add the line `has_enforced_policies`, and pass a block with one argument
 ```ruby
 class MyController < ApplicationController
   has_enforced_policies do |ability_code|
-    current_user.abilities.include? ability_code
+    render 'unauthorized' unless current_user.abilities.include? ability_code
   end
 
   # ...
@@ -73,14 +73,28 @@ class MyController < ApplicationController
   has_enforced_policies
 
   def ability?(ability_code)
-    current_user.abilities.include? ability_code
+    render 'unauthorized' unless current_user.abilities.include? ability_code
   end
   # ...
 end
 ```
 
+It is recommended to use `render` or `redirect_to` within this block **to prevent the controllers from executing the action** when the ability did not exist in the data. The ability checking is done in a `before_action` callback, hence using `render` or `redirect_to` will stop further controller actions. This is a Rails behavior.
+
 Since storing abilities are very flexible and there are truly infinite ways of doing it, *this gem did not support that feature.* Instead, the developer must define their own ability checking.
 
+## Skipping Policy Enforcement in Certain Actions
+
+There might be an event where there is a need to skip automatic policy enforcements in certain actions. As explained above, the policy enforcement is done in a `before_action` callback. To skip a policy enforcement, simply use the `skip_before_action :check_abilities_by_definition` method from Rails. The `:only` and `:except` options are also available to filter actions.
+
+```ruby
+class MyOtherController < MyController
+  skip_before_action :check_abilities_by_definition, only: [:new, :edit]
+
+  # ...
+end
+```
+
 ## Ability
 
 The Ability class is a model for abilities that come from the definition files.
@@ -91,25 +105,33 @@ The Ability class is a model for abilities that come from the definition files.
 
 Get all abilities from all definitions.
 
+```ruby
+Ability.all
+```
+
 #### #all_codes
 
 Get all ability codes from all definitions.
 
-#### #where(query)
+```ruby
+Ability.all_codes
+```
 
-Filter abilities based on namespace. `query` can be a String, Module or Class.
+#### #where(*queries)
 
-#### #find(query)
+Filter abilities based on namespace. `queries` can be an array of Strings, Modules or Classes.
 
-Find an ability within a namespace. `query` can be a String, Module or Class.
+```ruby
+Ability.where(FeatureOne, FeatureTwo, FeatureOne::SubFeatureA)
+```
 
 #### #match(expression)
 
 Match abilities based on a matching string or regex. The matcher is based on the namespace. `expression` can be a Regexp or String.
 
-#### #mill(expression)
-
-Find an ability based on a matching string or regex. The matcher is based on the namespace. `expression` can be a Regexp or String.
+```ruby
+Ability.match(/FeatureOne(::)?(.)*/)
+```
 
 ### Instance Methods
 
@@ -117,18 +139,34 @@ Find an ability based on a matching string or regex. The matcher is based on the
 
 The code of the ability.
 
+```ruby
+ability.code
+```
+
 #### #name
 
 The name of the ability.
 
+```ruby
+ability.name
+```
+
 #### #description
 
 The description of the ability.
 
+```ruby
+ability.description
+```
+
 #### #actions
 
 Controller actions that the ability can check against.
 
+```ruby
+ability.actions
+```
+
 ## Contributing
 
 Bug reports and pull requests are welcome on GitHub at https://github.com/tieeeeen1994/controller_policies. This project is intended to be a safe, welcoming space for collaboration, and contributors are expected to adhere to the [code of conduct](https://github.com/tieeeeen1994/controller_policies/blob/master/CODE_OF_CONDUCT.md).

data/lib/ability.rb

@@ -33,19 +33,23 @@ class Ability
     end
 
     # Filter abilities based on namespace.
-    def where(query)
-      case query.class.to_s
-      when 'String'
-        all.select { |ability| ability.namespace.to_s == trim(query).camelize }
-      when 'Module', 'Class'
-        all.select { |ability| ability.namespace == query }
+    def where(*queries)
+      results = []
+      queries.each do |query|
+        case query.class.to_s
+        when 'String'
+          results += all.select { |ability| ability.namespace.to_s == trim(query).camelize }
+        when 'Module', 'Class'
+          results += all.select { |ability| ability.namespace == query }
+        end
       end
+      results
     end
 
     # Find an ability within a namespace.
-    def find(query_string)
-      where(query_string).first
-    end
+    # def find(query_string)
+    #   where(query_string).first
+    # end
 
     # Match abilities based on a matching string or regex. The matcher is based on the namespace.
     def match(expression)
@@ -56,9 +60,9 @@ class Ability
     end
 
     # Find an ability based on a matching string or regex. The matcher is based on the namespace.
-    def mill(expression)
-      match(expression).first
-    end
+    # def mill(expression)
+    #   match(expression).first
+    # end
 
     # Path to the policy folder.
     def policy_path

data/lib/controller_policies/railtie.rb

@@ -19,10 +19,10 @@ module ControllerPolicies
 
     initializer 'controller_policies.autoloaders' do
       Rails.autoloaders.each do |autoloader|
-        autoloader.ignore(Rails.root.join('app/policies'))
+        autoloader.ignore(Ability.policy_path)
       end
 
-      Dir[Rails.root.join('app/policies/**/*.rb')].each { |definition| require definition }
+      Dir[Ability.policy_path.join('**/*.rb')].each { |definition| require definition }
     end
   end
 end

data/lib/controller_policies/version.rb

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 
 module ControllerPolicies
-  VERSION = '0.1.0'
+  VERSION = '0.2.0'
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: controller_policies
 version: !ruby/object:Gem::Version
-  version: 0.1.0
+  version: 0.2.0
 platform: ruby
 authors:
 - Tien
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2024-04-12 00:00:00.000000000 Z
+date: 2024-05-07 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: rails