devise_restful_auth 0.1.0
Sign up to get free protection for your applications and to get access to all the features.
- data/.document +5 -0
- data/Gemfile +13 -0
- data/Gemfile.lock +28 -0
- data/LICENSE.txt +20 -0
- data/README.rdoc +48 -0
- data/Rakefile +53 -0
- data/VERSION +1 -0
- data/devise_restful_auth.gemspec +71 -0
- data/lib/app/controllers/permissions_controller.rb +83 -0
- data/lib/app/controllers/subject_permissions_controller.rb +84 -0
- data/lib/app/models/permission.rb +10 -0
- data/lib/app/models/subject_permission.rb +6 -0
- data/lib/devise_restful_auth/validate_auth.rb +135 -0
- data/lib/devise_restful_auth.rb +1 -0
- data/rails/init.rb +1 -0
- data/test/helper.rb +18 -0
- metadata +156 -0
data/.document
ADDED
data/Gemfile
ADDED
@@ -0,0 +1,13 @@
|
|
1
|
+
source "http://rubygems.org"
|
2
|
+
# Add dependencies required to use your gem here.
|
3
|
+
# Example:
|
4
|
+
gem "devise"
|
5
|
+
|
6
|
+
# Add dependencies to develop your gem here.
|
7
|
+
# Include everything needed to run rake, tests, features, etc.
|
8
|
+
group :development do
|
9
|
+
gem "shoulda", ">= 0"
|
10
|
+
gem "bundler", "~> 1.0.0"
|
11
|
+
gem "jeweler", "~> 1.5.1"
|
12
|
+
gem "rcov", ">= 0"
|
13
|
+
end
|
data/Gemfile.lock
ADDED
@@ -0,0 +1,28 @@
|
|
1
|
+
GEM
|
2
|
+
remote: http://rubygems.org/
|
3
|
+
specs:
|
4
|
+
bcrypt-ruby (2.1.2)
|
5
|
+
devise (1.1.3)
|
6
|
+
bcrypt-ruby (~> 2.1.2)
|
7
|
+
warden (~> 0.10.7)
|
8
|
+
git (1.2.5)
|
9
|
+
jeweler (1.5.1)
|
10
|
+
bundler (~> 1.0.0)
|
11
|
+
git (>= 1.2.5)
|
12
|
+
rake
|
13
|
+
rack (1.2.1)
|
14
|
+
rake (0.8.7)
|
15
|
+
rcov (0.9.9)
|
16
|
+
shoulda (2.11.3)
|
17
|
+
warden (0.10.7)
|
18
|
+
rack (>= 1.0.0)
|
19
|
+
|
20
|
+
PLATFORMS
|
21
|
+
ruby
|
22
|
+
|
23
|
+
DEPENDENCIES
|
24
|
+
bundler (~> 1.0.0)
|
25
|
+
devise
|
26
|
+
jeweler (~> 1.5.1)
|
27
|
+
rcov
|
28
|
+
shoulda
|
data/LICENSE.txt
ADDED
@@ -0,0 +1,20 @@
|
|
1
|
+
Copyright (c) 2010 saten
|
2
|
+
|
3
|
+
Permission is hereby granted, free of charge, to any person obtaining
|
4
|
+
a copy of this software and associated documentation files (the
|
5
|
+
"Software"), to deal in the Software without restriction, including
|
6
|
+
without limitation the rights to use, copy, modify, merge, publish,
|
7
|
+
distribute, sublicense, and/or sell copies of the Software, and to
|
8
|
+
permit persons to whom the Software is furnished to do so, subject to
|
9
|
+
the following conditions:
|
10
|
+
|
11
|
+
The above copyright notice and this permission notice shall be
|
12
|
+
included in all copies or substantial portions of the Software.
|
13
|
+
|
14
|
+
THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
|
15
|
+
EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
|
16
|
+
MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
|
17
|
+
NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
|
18
|
+
LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
|
19
|
+
OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
|
20
|
+
WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
|
data/README.rdoc
ADDED
@@ -0,0 +1,48 @@
|
|
1
|
+
= devise_restful_auth
|
2
|
+
|
3
|
+
First, I'm sorry to have the wheel reinvented one more time.
|
4
|
+
|
5
|
+
This gem should help developers who need fine grained control over authorization.
|
6
|
+
|
7
|
+
Authorization is meant to be bound to a subject, usually the current_user, an object (which should be inferred from the controller) and a controller/action couple.
|
8
|
+
|
9
|
+
Authorization info is stored in the Permission model. There is support for both role based and subject based authorization.
|
10
|
+
|
11
|
+
More info, a basic guide and something else should come soon.
|
12
|
+
|
13
|
+
== Needed Migrations
|
14
|
+
|
15
|
+
create_table "permissions", :force => true do |t|
|
16
|
+
t.string "controller"
|
17
|
+
t.string "action"
|
18
|
+
t.timestamp "created_at"
|
19
|
+
t.timestamp "updated_at"
|
20
|
+
end
|
21
|
+
|
22
|
+
create_table "subject_permissions", :force => true do |t|
|
23
|
+
t.integer "subject_id"
|
24
|
+
t.string "subject_type"
|
25
|
+
t.integer "item_id"
|
26
|
+
t.string "item_type"
|
27
|
+
t.integer "permission_id"
|
28
|
+
t.timestamp "created_at"
|
29
|
+
t.timestamp "updated_at"
|
30
|
+
end
|
31
|
+
|
32
|
+
You should provide yourself the models for the above migrations w/ routes. A scaffold is a good way at the present time.
|
33
|
+
|
34
|
+
== Contributing to devise_restful_auth
|
35
|
+
|
36
|
+
* Check out the latest master to make sure the feature hasn't been implemented or the bug hasn't been fixed yet
|
37
|
+
* Check out the issue tracker to make sure someone already hasn't requested it and/or contributed it
|
38
|
+
* Fork the project
|
39
|
+
* Start a feature/bugfix branch
|
40
|
+
* Commit and push until you are happy with your contribution
|
41
|
+
* Make sure to add tests for it. This is important so I don't break it in a future version unintentionally.
|
42
|
+
* Please try not to mess with the Rakefile, version, or history. If you want to have your own version, or is otherwise necessary, that is fine, but please isolate to its own commit so I can cherry-pick around it.
|
43
|
+
|
44
|
+
== Copyright
|
45
|
+
|
46
|
+
Copyright (c) 2010 saten. See LICENSE.txt for
|
47
|
+
further details.
|
48
|
+
|
data/Rakefile
ADDED
@@ -0,0 +1,53 @@
|
|
1
|
+
require 'rubygems'
|
2
|
+
require 'bundler'
|
3
|
+
begin
|
4
|
+
Bundler.setup(:default, :development)
|
5
|
+
rescue Bundler::BundlerError => e
|
6
|
+
$stderr.puts e.message
|
7
|
+
$stderr.puts "Run `bundle install` to install missing gems"
|
8
|
+
exit e.status_code
|
9
|
+
end
|
10
|
+
require 'rake'
|
11
|
+
|
12
|
+
require 'jeweler'
|
13
|
+
Jeweler::Tasks.new do |gem|
|
14
|
+
# gem is a Gem::Specification... see http://docs.rubygems.org/read/chapter/20 for more options
|
15
|
+
gem.name = "devise_restful_auth"
|
16
|
+
gem.homepage = "http://github.com/saten/devise_restful_auth"
|
17
|
+
gem.license = "MIT"
|
18
|
+
gem.summary = %Q{one-line summary of your gem}
|
19
|
+
gem.description = %Q{longer description of your gem}
|
20
|
+
gem.email = "saten.r@gmail.com"
|
21
|
+
gem.authors = ["saten"]
|
22
|
+
# Include your dependencies below. Runtime dependencies are required when using your gem,
|
23
|
+
# and development dependencies are only needed for development (ie running rake tasks, tests, etc)
|
24
|
+
# gem.add_runtime_dependency 'jabber4r', '> 0.1'
|
25
|
+
# gem.add_development_dependency 'rspec', '> 1.2.3'
|
26
|
+
end
|
27
|
+
Jeweler::RubygemsDotOrgTasks.new
|
28
|
+
|
29
|
+
require 'rake/testtask'
|
30
|
+
Rake::TestTask.new(:test) do |test|
|
31
|
+
test.libs << 'lib' << 'test'
|
32
|
+
test.pattern = 'test/**/test_*.rb'
|
33
|
+
test.verbose = true
|
34
|
+
end
|
35
|
+
|
36
|
+
require 'rcov/rcovtask'
|
37
|
+
Rcov::RcovTask.new do |test|
|
38
|
+
test.libs << 'test'
|
39
|
+
test.pattern = 'test/**/test_*.rb'
|
40
|
+
test.verbose = true
|
41
|
+
end
|
42
|
+
|
43
|
+
task :default => :test
|
44
|
+
|
45
|
+
require 'rake/rdoctask'
|
46
|
+
Rake::RDocTask.new do |rdoc|
|
47
|
+
version = File.exist?('VERSION') ? File.read('VERSION') : ""
|
48
|
+
|
49
|
+
rdoc.rdoc_dir = 'rdoc'
|
50
|
+
rdoc.title = "devise_restful_auth #{version}"
|
51
|
+
rdoc.rdoc_files.include('README*')
|
52
|
+
rdoc.rdoc_files.include('lib/**/*.rb')
|
53
|
+
end
|
data/VERSION
ADDED
@@ -0,0 +1 @@
|
|
1
|
+
0.1.0
|
@@ -0,0 +1,71 @@
|
|
1
|
+
# Generated by jeweler
|
2
|
+
# DO NOT EDIT THIS FILE DIRECTLY
|
3
|
+
# Instead, edit Jeweler::Tasks in Rakefile, and run 'rake gemspec'
|
4
|
+
# -*- encoding: utf-8 -*-
|
5
|
+
|
6
|
+
Gem::Specification.new do |s|
|
7
|
+
s.name = %q{devise_restful_auth}
|
8
|
+
s.version = "0.1.0"
|
9
|
+
|
10
|
+
s.required_rubygems_version = Gem::Requirement.new(">= 0") if s.respond_to? :required_rubygems_version=
|
11
|
+
s.authors = ["saten"]
|
12
|
+
s.date = %q{2010-11-24}
|
13
|
+
s.description = %q{longer description of your gem}
|
14
|
+
s.email = %q{saten.r@gmail.com}
|
15
|
+
s.extra_rdoc_files = [
|
16
|
+
"LICENSE.txt",
|
17
|
+
"README.rdoc"
|
18
|
+
]
|
19
|
+
s.files = [
|
20
|
+
".document",
|
21
|
+
"Gemfile",
|
22
|
+
"Gemfile.lock",
|
23
|
+
"LICENSE.txt",
|
24
|
+
"README.rdoc",
|
25
|
+
"Rakefile",
|
26
|
+
"VERSION",
|
27
|
+
"devise_restful_auth.gemspec",
|
28
|
+
"lib/app/controllers/permissions_controller.rb",
|
29
|
+
"lib/app/controllers/subject_permissions_controller.rb",
|
30
|
+
"lib/app/models/permission.rb",
|
31
|
+
"lib/app/models/subject_permission.rb",
|
32
|
+
"lib/devise_restful_auth.rb",
|
33
|
+
"lib/devise_restful_auth/validate_auth.rb",
|
34
|
+
"rails/init.rb",
|
35
|
+
"test/helper.rb"
|
36
|
+
]
|
37
|
+
s.homepage = %q{http://github.com/saten/devise_restful_auth}
|
38
|
+
s.licenses = ["MIT"]
|
39
|
+
s.require_paths = ["lib"]
|
40
|
+
s.rubygems_version = %q{1.3.7}
|
41
|
+
s.summary = %q{one-line summary of your gem}
|
42
|
+
s.test_files = [
|
43
|
+
"test/helper.rb"
|
44
|
+
]
|
45
|
+
|
46
|
+
if s.respond_to? :specification_version then
|
47
|
+
current_version = Gem::Specification::CURRENT_SPECIFICATION_VERSION
|
48
|
+
s.specification_version = 3
|
49
|
+
|
50
|
+
if Gem::Version.new(Gem::VERSION) >= Gem::Version.new('1.2.0') then
|
51
|
+
s.add_runtime_dependency(%q<devise>, [">= 0"])
|
52
|
+
s.add_development_dependency(%q<shoulda>, [">= 0"])
|
53
|
+
s.add_development_dependency(%q<bundler>, ["~> 1.0.0"])
|
54
|
+
s.add_development_dependency(%q<jeweler>, ["~> 1.5.1"])
|
55
|
+
s.add_development_dependency(%q<rcov>, [">= 0"])
|
56
|
+
else
|
57
|
+
s.add_dependency(%q<devise>, [">= 0"])
|
58
|
+
s.add_dependency(%q<shoulda>, [">= 0"])
|
59
|
+
s.add_dependency(%q<bundler>, ["~> 1.0.0"])
|
60
|
+
s.add_dependency(%q<jeweler>, ["~> 1.5.1"])
|
61
|
+
s.add_dependency(%q<rcov>, [">= 0"])
|
62
|
+
end
|
63
|
+
else
|
64
|
+
s.add_dependency(%q<devise>, [">= 0"])
|
65
|
+
s.add_dependency(%q<shoulda>, [">= 0"])
|
66
|
+
s.add_dependency(%q<bundler>, ["~> 1.0.0"])
|
67
|
+
s.add_dependency(%q<jeweler>, ["~> 1.5.1"])
|
68
|
+
s.add_dependency(%q<rcov>, [">= 0"])
|
69
|
+
end
|
70
|
+
end
|
71
|
+
|
@@ -0,0 +1,83 @@
|
|
1
|
+
class PermissionsController < ApplicationController
|
2
|
+
# GET /permissions
|
3
|
+
# GET /permissions.xml
|
4
|
+
def index
|
5
|
+
@permissions = Permission.all
|
6
|
+
|
7
|
+
respond_to do |format|
|
8
|
+
format.html # index.html.erb
|
9
|
+
format.xml { render :xml => @permissions }
|
10
|
+
end
|
11
|
+
end
|
12
|
+
|
13
|
+
# GET /permissions/1
|
14
|
+
# GET /permissions/1.xml
|
15
|
+
def show
|
16
|
+
@permission = Permission.find(params[:id])
|
17
|
+
|
18
|
+
respond_to do |format|
|
19
|
+
format.html # show.html.erb
|
20
|
+
format.xml { render :xml => @permission }
|
21
|
+
end
|
22
|
+
end
|
23
|
+
|
24
|
+
# GET /permissions/new
|
25
|
+
# GET /permissions/new.xml
|
26
|
+
def new
|
27
|
+
@permission = Permission.new
|
28
|
+
|
29
|
+
respond_to do |format|
|
30
|
+
format.html # new.html.erb
|
31
|
+
format.xml { render :xml => @permission }
|
32
|
+
end
|
33
|
+
end
|
34
|
+
|
35
|
+
# GET /permissions/1/edit
|
36
|
+
def edit
|
37
|
+
@permission = Permission.find(params[:id])
|
38
|
+
end
|
39
|
+
|
40
|
+
# POST /permissions
|
41
|
+
# POST /permissions.xml
|
42
|
+
def create
|
43
|
+
@permission = Permission.new(params[:permission])
|
44
|
+
|
45
|
+
respond_to do |format|
|
46
|
+
if @permission.save
|
47
|
+
format.html { redirect_to(@permission, :notice => 'Permission was successfully created.') }
|
48
|
+
format.xml { render :xml => @permission, :status => :created, :location => @permission }
|
49
|
+
else
|
50
|
+
format.html { render :action => "new" }
|
51
|
+
format.xml { render :xml => @permission.errors, :status => :unprocessable_entity }
|
52
|
+
end
|
53
|
+
end
|
54
|
+
end
|
55
|
+
|
56
|
+
# PUT /permissions/1
|
57
|
+
# PUT /permissions/1.xml
|
58
|
+
def update
|
59
|
+
@permission = Permission.find(params[:id])
|
60
|
+
|
61
|
+
respond_to do |format|
|
62
|
+
if @permission.update_attributes(params[:permission])
|
63
|
+
format.html { redirect_to(@permission, :notice => 'Permission was successfully updated.') }
|
64
|
+
format.xml { head :ok }
|
65
|
+
else
|
66
|
+
format.html { render :action => "edit" }
|
67
|
+
format.xml { render :xml => @permission.errors, :status => :unprocessable_entity }
|
68
|
+
end
|
69
|
+
end
|
70
|
+
end
|
71
|
+
|
72
|
+
# DELETE /permissions/1
|
73
|
+
# DELETE /permissions/1.xml
|
74
|
+
def destroy
|
75
|
+
@permission = Permission.find(params[:id])
|
76
|
+
@permission.destroy
|
77
|
+
|
78
|
+
respond_to do |format|
|
79
|
+
format.html { redirect_to(permissions_url) }
|
80
|
+
format.xml { head :ok }
|
81
|
+
end
|
82
|
+
end
|
83
|
+
end
|
@@ -0,0 +1,84 @@
|
|
1
|
+
class SubjectPermissionsController < ApplicationController
|
2
|
+
#before_filter :validate_permissions
|
3
|
+
# GET /subject_permissions
|
4
|
+
# GET /subject_permissions.xml
|
5
|
+
def index
|
6
|
+
@subject_permissions = SubjectPermission.all
|
7
|
+
|
8
|
+
respond_to do |format|
|
9
|
+
format.html # index.html.erb
|
10
|
+
format.xml { render :xml => @subject_permissions }
|
11
|
+
end
|
12
|
+
end
|
13
|
+
|
14
|
+
# GET /subject_permissions/1
|
15
|
+
# GET /subject_permissions/1.xml
|
16
|
+
def show
|
17
|
+
@subject_permission = SubjectPermission.find(params[:id])
|
18
|
+
|
19
|
+
respond_to do |format|
|
20
|
+
format.html # show.html.erb
|
21
|
+
format.xml { render :xml => @subject_permission }
|
22
|
+
end
|
23
|
+
end
|
24
|
+
|
25
|
+
# GET /subject_permissions/new
|
26
|
+
# GET /subject_permissions/new.xml
|
27
|
+
def new
|
28
|
+
@subject_permission = SubjectPermission.new
|
29
|
+
|
30
|
+
respond_to do |format|
|
31
|
+
format.html # new.html.erb
|
32
|
+
format.xml { render :xml => @subject_permission }
|
33
|
+
end
|
34
|
+
end
|
35
|
+
|
36
|
+
# GET /subject_permissions/1/edit
|
37
|
+
def edit
|
38
|
+
@subject_permission = SubjectPermission.find(params[:id])
|
39
|
+
end
|
40
|
+
|
41
|
+
# POST /subject_permissions
|
42
|
+
# POST /subject_permissions.xml
|
43
|
+
def create
|
44
|
+
@subject_permission = SubjectPermission.new(params[:subject_permission])
|
45
|
+
|
46
|
+
respond_to do |format|
|
47
|
+
if @subject_permission.save
|
48
|
+
format.html { redirect_to(@subject_permission, :notice => 'SubjectPermission was successfully created.') }
|
49
|
+
format.xml { render :xml => @subject_permission, :status => :created, :location => @subject_permission }
|
50
|
+
else
|
51
|
+
format.html { render :action => "new" }
|
52
|
+
format.xml { render :xml => @subject_permission.errors, :status => :unprocessable_entity }
|
53
|
+
end
|
54
|
+
end
|
55
|
+
end
|
56
|
+
|
57
|
+
# PUT /subject_permissions/1
|
58
|
+
# PUT /subject_permissions/1.xml
|
59
|
+
def update
|
60
|
+
@subject_permission = SubjectPermission.find(params[:id])
|
61
|
+
|
62
|
+
respond_to do |format|
|
63
|
+
if @subject_permission.update_attributes(params[:subject_permission])
|
64
|
+
format.html { redirect_to(@subject_permission, :notice => 'SubjectPermission was successfully updated.') }
|
65
|
+
format.xml { head :ok }
|
66
|
+
else
|
67
|
+
format.html { render :action => "edit" }
|
68
|
+
format.xml { render :xml => @subject_permission.errors, :status => :unprocessable_entity }
|
69
|
+
end
|
70
|
+
end
|
71
|
+
end
|
72
|
+
|
73
|
+
# DELETE /subject_permissions/1
|
74
|
+
# DELETE /subject_permissions/1.xml
|
75
|
+
def destroy
|
76
|
+
@subject_permission = SubjectPermission.find(params[:id])
|
77
|
+
@subject_permission.destroy
|
78
|
+
|
79
|
+
respond_to do |format|
|
80
|
+
format.html { redirect_to(subject_permissions_url) }
|
81
|
+
format.xml { head :ok }
|
82
|
+
end
|
83
|
+
end
|
84
|
+
end
|
@@ -0,0 +1,135 @@
|
|
1
|
+
module DeviseRestfulAuth
|
2
|
+
def self.included(base)
|
3
|
+
base.send :extend, ClassMethods
|
4
|
+
end
|
5
|
+
|
6
|
+
module ClassMethods
|
7
|
+
def act_as_restful_auth
|
8
|
+
send :include, InstanceMethods
|
9
|
+
end
|
10
|
+
|
11
|
+
|
12
|
+
end
|
13
|
+
|
14
|
+
module InstanceMethods
|
15
|
+
# any method placed here will apply to instaces, like @hickwall
|
16
|
+
|
17
|
+
|
18
|
+
#@role_id cerca di abbreviare la ricerca, nel caso i permessi siano dati in base al ruolo, si prova a desumere dai nomi delle classi coinvolte
|
19
|
+
#@item_type serve per sapere per quale classe si valida. se vuoto si prova a desumere dai nomi delle classi coinvolte
|
20
|
+
#@subject_type serve per sapere chi è l'oggetto per il quale si cerca il permesso
|
21
|
+
#se item o subject sono qualsiasi, si specifica 'any' nel controller e viene settato il valore nil per la ricerca sul db
|
22
|
+
#se item e subject sono la stessa classe, la convenzione è di chiamare il model che mappa i ruoli come SubjectSubjectRole. verrà usata la chiave subject_id per il soggetto indipendentemente dalla classe.
|
23
|
+
def validate_permissions
|
24
|
+
@subject_id=current_user.id if current_user
|
25
|
+
controller= self.request.params[:controller]
|
26
|
+
action= self.request.params[:action]
|
27
|
+
if @item_type.nil?
|
28
|
+
@item_type=controller.singularize.camelize
|
29
|
+
elsif @item_type.eql?'any'
|
30
|
+
@item_type=nil
|
31
|
+
end
|
32
|
+
#try to infer @item_id if nil (nil means any here and will be considered)
|
33
|
+
if @item_id.nil?
|
34
|
+
if eval(@item_type).is_a? Class
|
35
|
+
begin
|
36
|
+
@item=eval(@item_type).find(params[:id]) if params[:id]
|
37
|
+
@item_id=@item.id unless @item.nil?
|
38
|
+
rescue => e
|
39
|
+
|
40
|
+
@item_id=nil
|
41
|
+
end
|
42
|
+
end
|
43
|
+
end
|
44
|
+
if @subject_type.nil?
|
45
|
+
@subject_type="User"
|
46
|
+
elsif @subject_type.eql?'any'
|
47
|
+
@subject_type=nil
|
48
|
+
end
|
49
|
+
|
50
|
+
if @role_id.nil?
|
51
|
+
begin
|
52
|
+
@permission_model=(eval("#{@subject_type}"+"#{@item_type}"+"Role").is_a? Class)
|
53
|
+
rescue =>e
|
54
|
+
# logger debug.e
|
55
|
+
end
|
56
|
+
|
57
|
+
if @subject_type and @item_type and @permission_model
|
58
|
+
|
59
|
+
if @subject_type.eql?@item_type
|
60
|
+
|
61
|
+
@roles=eval("#{@subject_type}"+"#{@item_type}"+"Role").all
|
62
|
+
|
63
|
+
if !@roles.empty?
|
64
|
+
@subject_roles=@roles.find_all { |e| [nil,@subject_id].include? e[:subject_id] }
|
65
|
+
end
|
66
|
+
|
67
|
+
else
|
68
|
+
|
69
|
+
begin
|
70
|
+
@subject_roles=eval("#{@subject_type}"+"#{@item_type}"+"Role").all(:conditions=>{"#{@subject_type.parameterize}_id".to_sym=>@subject_id})
|
71
|
+
rescue => e
|
72
|
+
|
73
|
+
end
|
74
|
+
end
|
75
|
+
@subject_roles||=[]
|
76
|
+
|
77
|
+
begin
|
78
|
+
if !@subject_roles.empty?
|
79
|
+
|
80
|
+
@sr=@subject_roles.find_all { |i| [nil,@item_id].include? i[:item_id] }
|
81
|
+
|
82
|
+
@role_ids=@sr
|
83
|
+
end
|
84
|
+
rescue => e
|
85
|
+
|
86
|
+
end
|
87
|
+
@role_type="Role"
|
88
|
+
end
|
89
|
+
@role_ids||=[]
|
90
|
+
end
|
91
|
+
if eval("Permission").is_a? Class
|
92
|
+
p=Permission.first(:conditions=>{:controller=>controller,:action=>action})
|
93
|
+
if p
|
94
|
+
|
95
|
+
@role_ids.each do |user_role|
|
96
|
+
|
97
|
+
@role_permissions=SubjectPermission.all(:conditions=>{:subject_id=>user_role.role.id,:subject_type=>@role_type,:permission_id=>p.id,:item_type=>@item_type})
|
98
|
+
if !@role_permissions.empty?
|
99
|
+
|
100
|
+
@rps=@role_permissions.find_all { |rp| [nil,@item_id].include? rp[:item_id]}
|
101
|
+
end
|
102
|
+
@rps||=[]
|
103
|
+
|
104
|
+
@rps.each do |sp|
|
105
|
+
|
106
|
+
end
|
107
|
+
if !@rps.empty?
|
108
|
+
|
109
|
+
|
110
|
+
end
|
111
|
+
end
|
112
|
+
|
113
|
+
@subject_permissions_on_items=SubjectPermission.all(:conditions=>{:item_type=>@item_type,:permission_id=>p.id,:subject_id=>@subject_id,:subject_type=>@subject_type})
|
114
|
+
|
115
|
+
if !@subject_permissions_on_items.empty?
|
116
|
+
@ups=@subject_permissions_on_items.find_all { |u| [nil,@item_id].include? u[:item_id]}
|
117
|
+
end
|
118
|
+
if @ups
|
119
|
+
flash[:notice]="access granted because of #{@subject_type}:#{@subject_id} permission on #{@item_type}:#{@item_id} " and return
|
120
|
+
else
|
121
|
+
|
122
|
+
flash[:error]="accesso negato perché non esiste un permesso né per l'utente, né per il suo ruolo, su #{controller}/#{action} per #{@item_type}:#{@item_id}"
|
123
|
+
redirect_to root_url and return
|
124
|
+
end
|
125
|
+
else
|
126
|
+
|
127
|
+
|
128
|
+
flash[:error]="accesso negato perché è presente la validazione per questa operazione (<strong>#{controller}/#{action}</strong>), ma non esistono permessi associati"
|
129
|
+
redirect_to root_url and return
|
130
|
+
end
|
131
|
+
end
|
132
|
+
end
|
133
|
+
end
|
134
|
+
ActionController::Base.send(:include,DeviseRestfulAuth)
|
135
|
+
end
|
@@ -0,0 +1 @@
|
|
1
|
+
require 'devise_restful_auth/validate_auth'
|
data/rails/init.rb
ADDED
@@ -0,0 +1 @@
|
|
1
|
+
require 'devise_restful_auth'
|
data/test/helper.rb
ADDED
@@ -0,0 +1,18 @@
|
|
1
|
+
require 'rubygems'
|
2
|
+
require 'bundler'
|
3
|
+
begin
|
4
|
+
Bundler.setup(:default, :development)
|
5
|
+
rescue Bundler::BundlerError => e
|
6
|
+
$stderr.puts e.message
|
7
|
+
$stderr.puts "Run `bundle install` to install missing gems"
|
8
|
+
exit e.status_code
|
9
|
+
end
|
10
|
+
require 'test/unit'
|
11
|
+
require 'shoulda'
|
12
|
+
|
13
|
+
$LOAD_PATH.unshift(File.join(File.dirname(__FILE__), '..', 'lib'))
|
14
|
+
$LOAD_PATH.unshift(File.dirname(__FILE__))
|
15
|
+
require 'devise_restful_auth'
|
16
|
+
|
17
|
+
class Test::Unit::TestCase
|
18
|
+
end
|
metadata
ADDED
@@ -0,0 +1,156 @@
|
|
1
|
+
--- !ruby/object:Gem::Specification
|
2
|
+
name: devise_restful_auth
|
3
|
+
version: !ruby/object:Gem::Version
|
4
|
+
hash: 27
|
5
|
+
prerelease: false
|
6
|
+
segments:
|
7
|
+
- 0
|
8
|
+
- 1
|
9
|
+
- 0
|
10
|
+
version: 0.1.0
|
11
|
+
platform: ruby
|
12
|
+
authors:
|
13
|
+
- saten
|
14
|
+
autorequire:
|
15
|
+
bindir: bin
|
16
|
+
cert_chain: []
|
17
|
+
|
18
|
+
date: 2010-11-24 00:00:00 +01:00
|
19
|
+
default_executable:
|
20
|
+
dependencies:
|
21
|
+
- !ruby/object:Gem::Dependency
|
22
|
+
version_requirements: &id001 !ruby/object:Gem::Requirement
|
23
|
+
none: false
|
24
|
+
requirements:
|
25
|
+
- - ">="
|
26
|
+
- !ruby/object:Gem::Version
|
27
|
+
hash: 3
|
28
|
+
segments:
|
29
|
+
- 0
|
30
|
+
version: "0"
|
31
|
+
requirement: *id001
|
32
|
+
prerelease: false
|
33
|
+
type: :runtime
|
34
|
+
name: devise
|
35
|
+
- !ruby/object:Gem::Dependency
|
36
|
+
version_requirements: &id002 !ruby/object:Gem::Requirement
|
37
|
+
none: false
|
38
|
+
requirements:
|
39
|
+
- - ">="
|
40
|
+
- !ruby/object:Gem::Version
|
41
|
+
hash: 3
|
42
|
+
segments:
|
43
|
+
- 0
|
44
|
+
version: "0"
|
45
|
+
requirement: *id002
|
46
|
+
prerelease: false
|
47
|
+
type: :development
|
48
|
+
name: shoulda
|
49
|
+
- !ruby/object:Gem::Dependency
|
50
|
+
version_requirements: &id003 !ruby/object:Gem::Requirement
|
51
|
+
none: false
|
52
|
+
requirements:
|
53
|
+
- - ~>
|
54
|
+
- !ruby/object:Gem::Version
|
55
|
+
hash: 23
|
56
|
+
segments:
|
57
|
+
- 1
|
58
|
+
- 0
|
59
|
+
- 0
|
60
|
+
version: 1.0.0
|
61
|
+
requirement: *id003
|
62
|
+
prerelease: false
|
63
|
+
type: :development
|
64
|
+
name: bundler
|
65
|
+
- !ruby/object:Gem::Dependency
|
66
|
+
version_requirements: &id004 !ruby/object:Gem::Requirement
|
67
|
+
none: false
|
68
|
+
requirements:
|
69
|
+
- - ~>
|
70
|
+
- !ruby/object:Gem::Version
|
71
|
+
hash: 1
|
72
|
+
segments:
|
73
|
+
- 1
|
74
|
+
- 5
|
75
|
+
- 1
|
76
|
+
version: 1.5.1
|
77
|
+
requirement: *id004
|
78
|
+
prerelease: false
|
79
|
+
type: :development
|
80
|
+
name: jeweler
|
81
|
+
- !ruby/object:Gem::Dependency
|
82
|
+
version_requirements: &id005 !ruby/object:Gem::Requirement
|
83
|
+
none: false
|
84
|
+
requirements:
|
85
|
+
- - ">="
|
86
|
+
- !ruby/object:Gem::Version
|
87
|
+
hash: 3
|
88
|
+
segments:
|
89
|
+
- 0
|
90
|
+
version: "0"
|
91
|
+
requirement: *id005
|
92
|
+
prerelease: false
|
93
|
+
type: :development
|
94
|
+
name: rcov
|
95
|
+
description: longer description of your gem
|
96
|
+
email: saten.r@gmail.com
|
97
|
+
executables: []
|
98
|
+
|
99
|
+
extensions: []
|
100
|
+
|
101
|
+
extra_rdoc_files:
|
102
|
+
- LICENSE.txt
|
103
|
+
- README.rdoc
|
104
|
+
files:
|
105
|
+
- .document
|
106
|
+
- Gemfile
|
107
|
+
- Gemfile.lock
|
108
|
+
- LICENSE.txt
|
109
|
+
- README.rdoc
|
110
|
+
- Rakefile
|
111
|
+
- VERSION
|
112
|
+
- devise_restful_auth.gemspec
|
113
|
+
- lib/app/controllers/permissions_controller.rb
|
114
|
+
- lib/app/controllers/subject_permissions_controller.rb
|
115
|
+
- lib/app/models/permission.rb
|
116
|
+
- lib/app/models/subject_permission.rb
|
117
|
+
- lib/devise_restful_auth.rb
|
118
|
+
- lib/devise_restful_auth/validate_auth.rb
|
119
|
+
- rails/init.rb
|
120
|
+
- test/helper.rb
|
121
|
+
has_rdoc: true
|
122
|
+
homepage: http://github.com/saten/devise_restful_auth
|
123
|
+
licenses:
|
124
|
+
- MIT
|
125
|
+
post_install_message:
|
126
|
+
rdoc_options: []
|
127
|
+
|
128
|
+
require_paths:
|
129
|
+
- lib
|
130
|
+
required_ruby_version: !ruby/object:Gem::Requirement
|
131
|
+
none: false
|
132
|
+
requirements:
|
133
|
+
- - ">="
|
134
|
+
- !ruby/object:Gem::Version
|
135
|
+
hash: 3
|
136
|
+
segments:
|
137
|
+
- 0
|
138
|
+
version: "0"
|
139
|
+
required_rubygems_version: !ruby/object:Gem::Requirement
|
140
|
+
none: false
|
141
|
+
requirements:
|
142
|
+
- - ">="
|
143
|
+
- !ruby/object:Gem::Version
|
144
|
+
hash: 3
|
145
|
+
segments:
|
146
|
+
- 0
|
147
|
+
version: "0"
|
148
|
+
requirements: []
|
149
|
+
|
150
|
+
rubyforge_project:
|
151
|
+
rubygems_version: 1.3.7
|
152
|
+
signing_key:
|
153
|
+
specification_version: 3
|
154
|
+
summary: one-line summary of your gem
|
155
|
+
test_files:
|
156
|
+
- test/helper.rb
|