destiny-role 0.1.0

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA1:
+  metadata.gz: 040aaa5de6175f7bdfb615b959f073c2e290e4dc
+  data.tar.gz: 8e37419de88c676ce4793831ca0399f76ebb4cf0
+SHA512:
+  metadata.gz: b8bdace9971a17da79588a33e127d36d4d83c0da64f3141a63b56ffa7e3924e7b836c83afd4d95ef769d79701968e6903e68408513744ba06927f89af9d810c2
+  data.tar.gz: dfd88d85acc82e1a1ecad3fb427c0ca276544ca750d14bff99f50f9944e81ff24fd840683def71334419bd4866b18602a522cdeccdbcbc8ff7392e4e2785590c

data/.gitignore

@@ -0,0 +1 @@
+*.gem

data/.ruby-gemset

@@ -0,0 +1 @@
+destiny

data/.ruby-version

@@ -0,0 +1 @@
+2.4.0

data/README.md

@@ -0,0 +1,28 @@
+# Destiny
+Simple role managment system
+
+## Concepts
+
+Developer should be able to check permission of a user to perform an action.
+Grant is an opportunity to make a particular action with some class of objects. Role is an aggregation of grants.
+Roles persisted in the database.
+Any number of roles may be assigned to user.
+
+## Installation
+
+### Gem
+In the command line
+```
+gem install destiny-role
+```
+or in your Gemfile
+```
+gem 'destiny-role'
+```
+
+## Assumptions
+
+1. Your app has a user model called 'User'
+2. App's controller should have (integration purpose only)
+  * 'current_user' method returning instance of a user model
+  * 'access_denied' method which contains response logic in this case

data/destiny.gemspec

@@ -0,0 +1,23 @@
+['../lib'].map{ |dir| File.expand_path(dir, __FILE__) }.each do |path|
+  $:.unshift(path) unless $:.include?(path)
+end
+
+require 'destiny/version'
+
+Gem::Specification.new do |spec|
+  spec.name          = 'destiny-role'
+  spec.version       = Destiny::VERSION
+  spec.authors       = ['Pavel Zhukov']
+  spec.email         = ['pasha.zhukov@gmail.com']
+
+  spec.summary       = %q{Simple role managment system}
+  spec.description   = %q{Roles persisted in the database. Role is as a composition of grants. Roles may be assigned to user.}
+  # spec.homepage      = 'https://github.com/etxzay/destiny'
+  spec.license       = 'MIT'
+
+  spec.files         = `git ls-files -z`.split("\x0").reject { |f| f.match(%r{^(test|spec|features)/}) }
+  spec.require_paths = ['lib']
+
+  spec.add_development_dependency 'bundler', '~> 1.13'
+  # spec.add_development_dependency 'rake', '~> 12.0'
+end

data/lib/destiny-role.rb

@@ -0,0 +1,6 @@
+require 'destiny/version'
+require 'destiny/role'
+require 'destiny/user'
+require 'destiny/controller'
+
+module Destiny; end

data/lib/destiny/controller.rb

@@ -0,0 +1,9 @@
+module Destiny
+  module Controller
+
+    def grant_required
+      access_denied unless current_user&.has_grant?(controller_path, action_name)
+    end
+
+  end
+end

data/lib/destiny/role.rb

@@ -0,0 +1,21 @@
+module Destiny
+  module Role
+
+    def to_hash
+      data.to_hash
+    end
+
+    def grant(section_name, privilege)
+      data[section_name] ||= {}
+      data[section_name][privilege] = true
+    end
+
+    def revoke(section_name, privilege)
+      if data.key? section_name
+        data[section_name].delete(privilege) if data[section_name].key? privilege
+        data.delete(section_name) if data[section_name].empty?
+      end
+    end
+
+  end
+end

data/lib/destiny/user.rb

@@ -0,0 +1,36 @@
+module Destiny
+  module User
+
+    def permitted?(*privileges)
+      return true if is_admin?
+
+      begin
+        permitted = role_hash.dig(*privileges)
+        permitted = false unless !!permitted == permitted
+      rescue Exception => e
+        permitted = false
+      end
+
+      permitted
+    end
+
+    def owner?(obj)
+      return id == obj.user_id if obj.respond_to? :user_id
+    end
+
+    def role_hash
+      @role_hash = {}
+      roles.map(&:to_hash).each_entry { |h| @role_hash.deep_merge!(h) }
+      @role_hash.with_indifferent_access
+    end
+
+    def admin?
+      return true if role_hash.try(:[], 'system').try(:[], 'administrator')
+    end
+
+    def has_role?(role_name)
+      roles.pluck(:name).count(role_name.to_s) > 0
+    end
+
+  end
+end

data/lib/destiny/version.rb

@@ -0,0 +1,3 @@
+module Destiny
+  VERSION = '0.1.0'
+end

metadata

@@ -0,0 +1,69 @@
+--- !ruby/object:Gem::Specification
+name: destiny-role
+version: !ruby/object:Gem::Version
+  version: 0.1.0
+platform: ruby
+authors:
+- Pavel Zhukov
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2018-06-18 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: bundler
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.13'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.13'
+description: Roles persisted in the database. Role is as a composition of grants.
+  Roles may be assigned to user.
+email:
+- pasha.zhukov@gmail.com
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- ".gitignore"
+- ".ruby-gemset"
+- ".ruby-version"
+- README.md
+- destiny.gemspec
+- lib/destiny-role.rb
+- lib/destiny/controller.rb
+- lib/destiny/role.rb
+- lib/destiny/user.rb
+- lib/destiny/version.rb
+homepage: 
+licenses:
+- MIT
+metadata: {}
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubyforge_project: 
+rubygems_version: 2.6.14
+signing_key: 
+specification_version: 4
+summary: Simple role managment system
+test_files: []