curupira 0.1.0

data/spec/curupira/authorization_spec.rb

@@ -0,0 +1,67 @@
+require 'rails_helper'
+require "curupira/authorizer"
+
+describe Curupira::Authorizer do
+  include Curupira::Authorizer
+
+  describe "#has_authorization?" do
+    
+    describe "user is admin" do
+      let(:params) do
+        {
+          controller: "users",
+          action: "create"
+        }
+      end
+      
+      let!(:current_user) { FactoryGirl.create(:user, admin: true) }
+      
+      it { expect(has_authorization?).to be true }
+    end
+
+    describe "user have role_a and belongs to group_a" do
+      subject!(:current_user)   { FactoryGirl.create(:user) }
+
+      before do
+        setup_authorization(current_user, "users", "create")
+      end
+
+      context "when role_a belongs to group_a" do
+
+        let(:params) do
+          {
+            controller: "users",
+            action: "create"
+          }
+        end
+
+        it "have authorization to access the feature_a" do
+          expect(has_authorization?).to be true
+        end
+      end
+
+      context "when role_a belongs to group_b" do
+        let(:params) do
+          {
+            controller: "users",
+            action: "report"
+          }
+        end
+
+        let!(:group_b) { FactoryGirl.create(:group, name: "Group B") }
+        let!(:role_b) { FactoryGirl.create(:role, name: "Role B") }
+
+        before do
+          role_a = Role.first
+          FactoryGirl.create(:role_group, role: role_a, group: group_b)
+          group_user = FactoryGirl.create(:group_user, user: current_user, group: group_b)
+          FactoryGirl.create(:role_group_user, role: role_b, group_user: group_user)
+        end
+
+        it "don't have authorization to access the feature_a" do
+          expect(has_authorization?).to be false
+        end
+      end
+    end
+  end
+end

data/spec/dummy/README.rdoc

@@ -0,0 +1,28 @@
+== README
+
+This README would normally document whatever steps are necessary to get the
+application up and running.
+
+Things you may want to cover:
+
+* Ruby version
+
+* System dependencies
+
+* Configuration
+
+* Database creation
+
+* Database initialization
+
+* How to run the test suite
+
+* Services (job queues, cache servers, search engines, etc.)
+
+* Deployment instructions
+
+* ...
+
+
+Please feel free to use a different markup language if you do not plan to run
+<tt>rake doc:app</tt>.

data/spec/dummy/Rakefile

@@ -0,0 +1,6 @@
+# Add your own tasks in files placed in lib/tasks ending in .rake,
+# for example lib/tasks/capistrano.rake, and they will automatically be available to Rake.
+
+require File.expand_path('../config/application', __FILE__)
+
+Rails.application.load_tasks

data/spec/dummy/app/assets/javascripts/application.js

@@ -0,0 +1,15 @@
+// This is a manifest file that'll be compiled into application.js, which will include all the files
+// listed below.
+//
+// Any JavaScript/Coffee file within this directory, lib/assets/javascripts, vendor/assets/javascripts,
+// or any plugin's vendor/assets/javascripts directory can be referenced here using a relative path.
+//
+// It's not advisable to add code directly here, but if you do, it'll appear at the bottom of the
+// compiled file.
+//
+// Read Sprockets README (https://github.com/sstephenson/sprockets#sprockets-directives) for details
+// about supported directives.
+//
+//= require jquery
+//= require cocoon
+//= require_tree .

data/spec/dummy/app/assets/stylesheets/application.css

@@ -0,0 +1,15 @@
+/*
+ * This is a manifest file that'll be compiled into application.css, which will include all the files
+ * listed below.
+ *
+ * Any CSS and SCSS file within this directory, lib/assets/stylesheets, vendor/assets/stylesheets,
+ * or any plugin's vendor/assets/stylesheets directory can be referenced here using a relative path.
+ *
+ * You're free to add application-wide styles to this file and they'll appear at the bottom of the
+ * compiled file so the styles you add here take precedence over styles defined in any styles
+ * defined in the other CSS/SCSS files in this directory. It is generally better to create a new
+ * file per style scope.
+ *
+ *= require_tree .
+ *= require_self
+ */

data/spec/dummy/app/controllers/application_controller.rb

@@ -0,0 +1,5 @@
+class ApplicationController < ActionController::Base
+  # Prevent CSRF attacks by raising an exception.
+  # For APIs, you may want to use :null_session instead.
+  protect_from_forgery with: :exception
+end

data/spec/dummy/app/controllers/home_controller.rb

@@ -0,0 +1,4 @@
+class HomeController < ApplicationController
+  def index
+  end
+end

data/spec/dummy/app/helpers/application_helper.rb

@@ -0,0 +1,2 @@
+module ApplicationHelper
+end

data/spec/dummy/app/models/action_label.rb

@@ -0,0 +1,3 @@
+class ActionLabel < ActiveRecord::Base
+  belongs_to :feature
+end

data/spec/dummy/app/models/authorization.rb

@@ -0,0 +1,4 @@
+class Authorization < ActiveRecord::Base
+  belongs_to :feature
+  belongs_to :role
+end

data/spec/dummy/app/models/feature.rb

@@ -0,0 +1,3 @@
+class Feature < ActiveRecord::Base
+  has_many :action_labels
+end

data/spec/dummy/app/models/group.rb

@@ -0,0 +1,9 @@
+class Group < ActiveRecord::Base
+  validates_presence_of :name
+  has_many :group_users
+  has_many :role_groups
+  has_many :roles, through: :role_groups
+  has_many :users, through: :group_users
+  accepts_nested_attributes_for :role_groups, reject_if: :all_blank, allow_destroy: :true
+  scope :active, -> { where active: true }
+end

data/spec/dummy/app/models/group_user.rb

@@ -0,0 +1,7 @@
+class GroupUser < ActiveRecord::Base
+  belongs_to :group
+  belongs_to :user
+  has_many :role_group_users
+  accepts_nested_attributes_for :role_group_users, reject_if: :all_blank, allow_destroy: :true
+  scope :active, -> { where active: true }
+end

data/spec/dummy/app/models/role.rb

@@ -0,0 +1,10 @@
+class Role < ActiveRecord::Base
+  has_many :authorizations
+  has_many :features, through: :authorizations
+  has_many :role_group_users
+  has_many :group_users, through: :role_group_users
+  has_many :role_groups
+  has_many :groups, through: :role_groups
+  accepts_nested_attributes_for :authorizations, reject_if: :all_blank, allow_destroy: :true
+  validates_presence_of :name
+end

data/spec/dummy/app/models/role_group.rb

@@ -0,0 +1,4 @@
+class RoleGroup < ActiveRecord::Base
+  belongs_to :role
+  belongs_to :group
+end

data/spec/dummy/app/models/role_group_user.rb

@@ -0,0 +1,4 @@
+class RoleGroupUser < ActiveRecord::Base
+  belongs_to :role
+  belongs_to :group_user
+end

data/spec/dummy/app/models/user.rb

@@ -0,0 +1,10 @@
+class User < ActiveRecord::Base
+  authenticates_with_sorcery!
+  validates_presence_of :email
+  has_many :group_users
+  has_many :groups, through: :group_users
+  has_many :role_group_users, through: :group_users
+  accepts_nested_attributes_for :group_users, reject_if: :all_blank, allow_destroy: :true
+  
+  scope :all_belonging_to, -> (user) { includes(group_users: :group).where(groups: { id: user.groups }) }
+end

data/spec/dummy/app/views/home/index.html.erb

@@ -0,0 +1,5 @@
+<h1>Curupira Dummy Application</h1>
+
+<p>Você está em home#index</p>
+
+<%= link_to_authorize("Test", "home/test") %>

data/spec/dummy/app/views/home/test.html.erb

@@ -0,0 +1 @@
+Sucess!

data/spec/dummy/app/views/layouts/application.html.erb

@@ -0,0 +1,19 @@
+<!DOCTYPE html>
+<html>
+<head>
+  <title>Dummy</title>
+  <%= stylesheet_link_tag    'application', media: 'all', 'data-turbolinks-track' => true %>
+  <%= javascript_include_tag 'application', 'data-turbolinks-track' => true %>
+  <%= csrf_meta_tags %>
+</head>
+<body>
+<%- flash.each do |name, msg| -%>
+  <%= content_tag :div, msg, id: "flash_#{name}" %>
+<%- end -%>
+
+<%= render "curupira/shared/session_links" %>
+<%= render "curupira/shared/model_links" %>
+<%= yield %>
+
+</body>
+</html>

data/spec/dummy/bin/bundle

@@ -0,0 +1,3 @@
+#!/usr/bin/env ruby
+ENV['BUNDLE_GEMFILE'] ||= File.expand_path('../../Gemfile', __FILE__)
+load Gem.bin_path('bundler', 'bundle')

data/spec/dummy/bin/rails

@@ -0,0 +1,4 @@
+#!/usr/bin/env ruby
+APP_PATH = File.expand_path('../../config/application', __FILE__)
+require_relative '../config/boot'
+require 'rails/commands'

data/spec/dummy/bin/rake

@@ -0,0 +1,4 @@
+#!/usr/bin/env ruby
+require_relative '../config/boot'
+require 'rake'
+Rake.application.run

data/spec/dummy/bin/setup

@@ -0,0 +1,29 @@
+#!/usr/bin/env ruby
+require 'pathname'
+
+# path to your application root.
+APP_ROOT = Pathname.new File.expand_path('../../',  __FILE__)
+
+Dir.chdir APP_ROOT do
+  # This script is a starting point to setup your application.
+  # Add necessary setup steps to this file:
+
+  puts "== Installing dependencies =="
+  system "gem install bundler --conservative"
+  system "bundle check || bundle install"
+
+  # puts "\n== Copying sample files =="
+  # unless File.exist?("config/database.yml")
+  #   system "cp config/database.yml.sample config/database.yml"
+  # end
+
+  puts "\n== Preparing database =="
+  system "bin/rake db:setup"
+
+  puts "\n== Removing old logs and tempfiles =="
+  system "rm -f log/*"
+  system "rm -rf tmp/cache"
+
+  puts "\n== Restarting application server =="
+  system "touch tmp/restart.txt"
+end

data/spec/dummy/config.ru

@@ -0,0 +1,4 @@
+# This file is used by Rack-based servers to start the application.
+
+require ::File.expand_path('../config/environment', __FILE__)
+run Rails.application

data/spec/dummy/config/application.rb

@@ -0,0 +1,25 @@
+require File.expand_path('../boot', __FILE__)
+
+require 'rails/all'
+
+Bundler.require(*Rails.groups)
+
+module Dummy
+  class Application < Rails::Application
+    # Settings in config/environments/* take precedence over those specified here.
+    # Application configuration should go into files in config/initializers
+    # -- all .rb files in that directory are automatically loaded.
+
+    # Set Time.zone default to the specified zone and make Active Record auto-convert to this zone.
+    # Run "rake -D time" for a list of tasks for finding time zone names. Default is UTC.
+    # config.time_zone = 'Central Time (US & Canada)'
+
+    # The default locale is :en and all translations from config/locales/*.rb,yml are auto loaded.
+    # config.i18n.load_path += Dir[Rails.root.join('my', 'locales', '*.{rb,yml}').to_s]
+    # config.i18n.default_locale = :de
+
+    # Do not swallow errors in after_commit/after_rollback callbacks.
+    # config.active_record.raise_in_transactional_callbacks = true
+  end
+end
+

data/spec/dummy/config/boot.rb

@@ -0,0 +1,5 @@
+# Set up gems listed in the Gemfile.
+ENV['BUNDLE_GEMFILE'] ||= File.expand_path('../../../../Gemfile', __FILE__)
+
+require 'bundler/setup' if File.exist?(ENV['BUNDLE_GEMFILE'])
+$LOAD_PATH.unshift File.expand_path('../../../../lib', __FILE__)

data/spec/dummy/config/database.yml

@@ -0,0 +1,25 @@
+# SQLite version 3.x
+#   gem install sqlite3
+#
+#   Ensure the SQLite 3 gem is defined in your Gemfile
+#   gem 'sqlite3'
+#
+default: &default
+  adapter: sqlite3
+  pool: 5
+  timeout: 5000
+
+development:
+  <<: *default
+  database: db/development.sqlite3
+
+# Warning: The database defined as "test" will be erased and
+# re-generated from your development database when you run "rake".
+# Do not set this db to the same as development or production.
+test:
+  <<: *default
+  database: db/test.sqlite3
+
+production:
+  <<: *default
+  database: db/production.sqlite3

data/spec/dummy/config/environment.rb

@@ -0,0 +1,5 @@
+# Load the Rails application.
+require File.expand_path('../application', __FILE__)
+
+# Initialize the Rails application.
+Rails.application.initialize!

data/spec/dummy/config/environments/development.rb

@@ -0,0 +1,46 @@
+Rails.application.configure do
+  # Settings specified here will take precedence over those in config/application.rb.
+
+  # In the development environment your application's code is reloaded on
+  # every request. This slows down response time but is perfect for development
+  # since you don't have to restart the web server when you make code changes.
+  config.cache_classes = false
+
+  # Do not eager load code on boot.
+  config.eager_load = false
+
+  # Show full error reports and disable caching.
+  config.consider_all_requests_local       = true
+  config.action_controller.perform_caching = false
+
+  # Don't care if the mailer can't send.
+  config.action_mailer.raise_delivery_errors = false
+
+  # Print deprecation notices to the Rails logger.
+  config.active_support.deprecation = :log
+
+  # Raise an error on page load if there are pending migrations.
+  config.active_record.migration_error = :page_load
+
+  # Debug mode disables concatenation and preprocessing of assets.
+  # This option may cause significant delays in view rendering with a large
+  # number of complex assets.
+  config.assets.debug = true
+
+  # Asset digests allow you to set far-future HTTP expiration dates on all assets,
+  # yet still be able to expire them through the digest params.
+  config.assets.digest = true
+
+  # Adds additional error checking when serving assets at runtime.
+  # Checks for improperly declared sprockets dependencies.
+  # Raises helpful error messages.
+  config.assets.raise_runtime_errors = true
+
+  # Raises error for missing translations
+  # config.action_view.raise_on_missing_translations = true
+
+  config.action_mailer.delivery_method = :smtp
+  config.action_mailer.smtp_settings = { :address => "localhost", :port => 1025 }
+
+  default_url_options[:host] = "localhost:3000"
+end