RubyGems - easy-admin-rails - Versions diffs - 0.1.15 → 0.2.1 - Mend

easy-admin-rails 0.1.15 → 0.2.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (92) hide show

data/lib/easy_admin/resource_modules.rb ADDED Viewed

@@ -0,0 +1,11 @@
+# Autoloader for all resource modules
+# This file ensures all resource modules are loaded in the correct order
+require_relative 'resource/configuration'
+require_relative 'resource/field_registry'
+require_relative 'resource/scope_manager'
+require_relative 'resource/layout_builder'
+require_relative 'resource/form_builder'
+require_relative 'resource/show_builder'
+require_relative 'resource/dsl'
+require_relative 'resource/base'

data/lib/easy_admin/version.rb CHANGED Viewed

@@ -1,3 +1,3 @@
 module EasyAdmin
-  VERSION = "0.1.15"
+  VERSION = "0.2.1"
 end

data/lib/generators/easy_admin/permissions/install_generator.rb ADDED Viewed

@@ -0,0 +1,90 @@
+require 'rails/generators/active_record'
+module EasyAdmin
+  module Permissions
+    module Generators
+      class InstallGenerator < Rails::Generators::Base
+        include ActiveRecord::Generators::Migration
+        source_root File.expand_path('templates', __dir__)
+        desc 'Install EasyAdmin Permission Engine'
+        class_option :user_model, type: :string, default: 'User',
+                     desc: 'The name of your user model'
+        class_option :contexts, type: :array, default: [],
+                     desc: 'Context types for scoped permissions (e.g., Organization Project)'
+        def create_models
+          template 'models/role.rb', 'app/models/easy_admin/permissions/role.rb'
+          template 'models/user_role.rb', 'app/models/easy_admin/permissions/user_role.rb'
+          # No permission or role_permission models needed - using JSON field approach
+        end
+        def create_migrations
+          migration_template 'migrations/create_permission_tables.rb',
+                           'db/migrate/create_easy_admin_permission_tables.rb'
+          if options[:user_model] != 'User' || has_user_model_changes?
+            migration_template 'migrations/update_users_for_permissions.rb',
+                             'db/migrate/update_users_for_easy_admin_permissions.rb'
+          end
+        end
+        def create_initializer
+          template 'initializers/permissions.rb', 'config/initializers/easy_admin_permissions.rb'
+        end
+        def create_base_policy
+          template 'policies/application_policy.rb', 'app/policies/application_policy.rb'
+          template 'policies/user_policy.rb', "app/policies/#{options[:user_model].underscore}_policy.rb"
+        end
+        def update_user_model
+          inject_into_class "app/models/#{options[:user_model].underscore}.rb", options[:user_model].classify do
+            "  include EasyAdmin::Permissions::UserExtensions\n"
+          end
+        end
+        def create_seeds
+          template 'seeds/permissions.rb', 'db/seeds/easy_admin_permissions.rb'
+        end
+        def show_instructions
+          say "\n" + "="*60
+          say "EasyAdmin Permission Engine installed successfully!"
+          say "="*60
+          say "\nNext steps:"
+          say "1. Run: rails db:migrate"
+          say "2. Add to your seeds: load Rails.root.join('db/seeds/easy_admin_permissions.rb')"
+          say "3. Run: rails db:seed"
+          say "4. Configure permissions in config/initializers/easy_admin_permissions.rb"
+          say "5. Add action_policy gem to your Gemfile: gem 'action_policy'"
+          say "6. Run: bundle install"
+          say "\nFor more information, see the documentation."
+          say "="*60 + "\n"
+        end
+        private
+        def migration_version
+          "[#{ActiveRecord::VERSION::MAJOR}.#{ActiveRecord::VERSION::MINOR}]"
+        end
+        def user_model_name
+          options[:user_model]
+        end
+        def context_types
+          options[:contexts]
+        end
+        def has_user_model_changes?
+          # Check if we need to add permissions_cache column
+          !File.exist?("app/models/#{options[:user_model].underscore}.rb") ||
+          !File.read("app/models/#{options[:user_model].underscore}.rb").include?('permissions_cache')
+        end
+      end
+    end
+  end
+end

data/lib/generators/easy_admin/permissions/templates/initializers/permissions.rb ADDED Viewed

@@ -0,0 +1,37 @@
+# Configure EasyAdmin Permissions
+EasyAdmin::Permissions.configure do |config|
+  config.enabled = true
+  config.cache_duration = 1.hour
+end
+# Define roles (permissions are managed individually via JSON field)
+# Note: This will only run if the database tables exist
+if ActiveRecord::Base.connection.table_exists?(:easy_admin_roles)
+  EasyAdmin::Permissions.define do
+    # Role definitions - just name, slug, and description
+    # Individual permissions are managed via users.permissions_cache JSON field
+    role :super_admin,
+         description: "Full system access - all permissions can be granted individually"
+    role :admin,
+         description: "Administrative access - permissions managed per user"
+    role :moderator,
+         description: "Content moderation access"
+    role :editor,
+         description: "Content editing permissions"
+    role :viewer,
+         description: "Read-only access"
+  end
+end
+# Individual user permissions are managed via the permissions_cache JSON field
+# Example permissions that can be assigned:
+# - admin_users:read, admin_users:create, admin_users:update, admin_users:delete
+# - posts:read, posts:create, posts:update, posts:delete
+# - comments:read, comments:create, comments:update, comments:delete
+# - users:read, users:create, users:update, users:delete
+# - payment_methods:read, payment_methods:create, payment_methods:update, payment_methods:delete

data/lib/generators/easy_admin/permissions/templates/migrations/create_permission_tables.rb ADDED Viewed

@@ -0,0 +1,27 @@
+class CreateEasyAdminPermissionTables < ActiveRecord::Migration<%= migration_version %>
+  def change
+    # Roles table - only table needed, permissions are stored in JSON field
+    create_table :easy_admin_roles do |t|
+      t.string :name, null: false
+      t.string :slug, null: false
+      t.string :description
+      t.boolean :active, default: true
+      t.timestamps
+      t.index :name, unique: true
+      t.index :slug, unique: true
+      t.index :active
+    end
+    # User-Role join table (simplified - no permissions table needed)
+    create_table :easy_admin_user_roles do |t|
+      t.references :user, null: false, foreign_key: true
+      t.references :role, null: false, foreign_key: { to_table: :easy_admin_roles }
+      t.boolean :active, default: true
+      t.timestamps
+      t.index [:user_id, :role_id], unique: true, name: 'index_easy_admin_user_roles_unique'
+      t.index [:user_id, :active], name: 'index_easy_admin_user_roles_active'
+    end
+  end
+end

data/lib/generators/easy_admin/permissions/templates/migrations/update_users_for_permissions.rb ADDED Viewed

@@ -0,0 +1,6 @@
+class UpdateUsersForEasyAdminPermissions < ActiveRecord::Migration<%= migration_version %>
+  def change
+    add_column :<%= user_model_name.tableize %>, :permissions_cache, :json, default: {}, null: false
+    add_index :<%= user_model_name.tableize %>, :permissions_cache, using: :gin
+  end
+end

data/lib/generators/easy_admin/permissions/templates/models/permission.rb ADDED Viewed

@@ -0,0 +1,9 @@
+module EasyAdmin
+  module Permissions
+    class Permission < ApplicationRecord
+      include EasyAdmin::Permissions::Models::Permission
+      self.table_name = 'easy_admin_permissions'
+    end
+  end
+end

data/lib/generators/easy_admin/permissions/templates/models/role.rb ADDED Viewed

@@ -0,0 +1,9 @@
+module EasyAdmin
+  module Permissions
+    class Role < ApplicationRecord
+      include EasyAdmin::Permissions::Models::Role
+      self.table_name = 'easy_admin_roles'
+    end
+  end
+end

data/lib/generators/easy_admin/permissions/templates/models/role_permission.rb ADDED Viewed

@@ -0,0 +1,9 @@
+module EasyAdmin
+  module Permissions
+    class RolePermission < ApplicationRecord
+      include EasyAdmin::Permissions::Models::RolePermission
+      self.table_name = 'easy_admin_role_permissions'
+    end
+  end
+end

data/lib/generators/easy_admin/permissions/templates/models/user_role.rb ADDED Viewed

@@ -0,0 +1,9 @@
+module EasyAdmin
+  module Permissions
+    class UserRole < ApplicationRecord
+      include EasyAdmin::Permissions::Models::UserRole
+      self.table_name = 'easy_admin_user_roles'
+    end
+  end
+end

data/lib/generators/easy_admin/permissions/templates/policies/application_policy.rb ADDED Viewed

@@ -0,0 +1,47 @@
+class ApplicationPolicy < ActionPolicy::Base
+  # Configure authorization context
+  authorize :user, allow_nil: true
+  # Default rule delegates to EasyAdmin permissions
+  default_rule :manage?, with: :admin_user?
+  # Basic authorization rules using EasyAdmin permissions
+  def index?
+    user_has_permission?("#{resource_name}:read")
+  end
+  def show?
+    user_has_permission?("#{resource_name}:read")
+  end
+  def create?
+    user_has_permission?("#{resource_name}:create")
+  end
+  def update?
+    user_has_permission?("#{resource_name}:update")
+  end
+  def destroy?
+    user_has_permission?("#{resource_name}:delete")
+  end
+  # Admin bypass
+  def manage?
+    admin_user?
+  end
+  private
+  def user_has_permission?(permission_name, context: nil)
+    EasyAdmin::Permissions.authorized?(user, permission_name, context: context)
+  end
+  def admin_user?
+    user&.admin? || false
+  end
+  def resource_name
+    record.class.name.underscore.pluralize
+  end
+end

data/lib/generators/easy_admin/permissions/templates/policies/user_policy.rb ADDED Viewed

@@ -0,0 +1,36 @@
+class <%= user_model_name %>Policy < ApplicationPolicy
+  # Users can always view their own profile
+  def show?
+    own_record? || super
+  end
+  # Users can update their own basic information
+  def update?
+    own_record? || super
+  end
+  # Only users with permissions can create other users
+  def create?
+    user_has_permission?("users:create")
+  end
+  # Only users with permissions can delete other users
+  def destroy?
+    !own_record? && user_has_permission?("users:delete")
+  end
+  # Role management permissions
+  def assign_roles?
+    user_has_permission?("users:manage_roles")
+  end
+  def remove_roles?
+    user_has_permission?("users:manage_roles")
+  end
+  private
+  def own_record?
+    user && record && user.id == record.id
+  end
+end

data/lib/generators/easy_admin/permissions/templates/seeds/permissions.rb ADDED Viewed

@@ -0,0 +1,89 @@
+# EasyAdmin Permission System Seeds
+# Load these seeds after running: rails easy_admin:permissions:install
+puts "🔐 Setting up EasyAdmin Permission System..."
+# Auto-discover and seed all EasyAdmin resource permissions
+puts "  Auto-discovering EasyAdmin resources..."
+resource_permission_count = EasyAdmin::Permissions.seed_resource_permissions!
+# Define roles using the new DSL with resource-based permissions
+puts "  Creating roles with EasyAdmin resource permissions..."
+EasyAdmin::Permissions.define do
+  # Auto-discover all available resources and create permissions
+  auto_discover_resources
+  # Define roles with resource-based permissions
+  easy_admin_role "Super Admin",
+                  slug: "super_admin",
+                  description: "Full system access to all resources",
+                  resources: {
+                    user: [:index, :show, :new, :create, :edit, :update, :destroy],
+                    admin_user: [:index, :show, :new, :create, :edit, :update, :destroy],
+                    post: [:index, :show, :new, :create, :edit, :update, :destroy],
+                    comment: [:index, :show, :new, :create, :edit, :update, :destroy],
+                    category: [:index, :show, :new, :create, :edit, :update, :destroy],
+                    payment_method: [:index, :show, :new, :create, :edit, :update, :destroy]
+                  }
+  easy_admin_role "Admin",
+                  slug: "admin",
+                  description: "Administrative access with user management",
+                  resources: {
+                    user: [:index, :show, :edit, :update],
+                    admin_user: [:index, :show, :new, :create, :edit, :update],
+                    post: [:index, :show, :new, :create, :edit, :update, :destroy],
+                    comment: [:index, :show, :edit, :update, :destroy],
+                    category: [:index, :show, :new, :create, :edit, :update],
+                    payment_method: [:index, :show]
+                  }
+  easy_admin_role "Manager",
+                  slug: "manager",
+                  description: "Content management with limited user access",
+                  resources: {
+                    user: [:index, :show],
+                    post: [:index, :show, :new, :create, :edit, :update],
+                    comment: [:index, :show, :edit, :update],
+                    category: [:index, :show, :new, :create, :edit, :update],
+                    payment_method: [:index, :show]
+                  }
+  easy_admin_role "Editor",
+                  slug: "editor",
+                  description: "Content editing permissions",
+                  resources: {
+                    post: [:index, :show, :new, :create, :edit, :update],
+                    comment: [:index, :show, :edit, :update],
+                    category: [:index, :show]
+                  }
+  easy_admin_role "Viewer",
+                  slug: "viewer",
+                  description: "Read-only access to resources",
+                  resources: {
+                    user: [:index, :show],
+                    post: [:index, :show],
+                    comment: [:index, :show],
+                    category: [:index, :show],
+                    payment_method: [:index, :show]
+                  }
+end
+puts "✅ EasyAdmin Permission System setup complete!"
+puts "   - #{resource_permission_count} resource permissions created"
+puts "   - 5 roles created with resource-based permissions"
+puts ""
+puts "Available resources discovered:"
+EasyAdmin::Permissions.available_resources.each do |resource|
+  actions = EasyAdmin::Permissions.actions_for_resource(resource)
+  puts "   - #{resource}: #{actions.join(', ')}"
+end
+puts ""
+puts "Next steps:"
+puts "1. Configure permissions in config/initializers/easy_admin_permissions.rb"
+puts "2. Assign roles to users: user.assign_role(:admin)"
+puts "3. Check permissions: user.has_permission?('users:index')"
+puts "4. Use in Action Policy: authorize!(record, to: :show?)"
+puts ""

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: easy-admin-rails
 version: !ruby/object:Gem::Version
-  version: 0.1.15
+  version: 0.2.1
 platform: ruby
 authors:
 - Slaurmagan
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2025-09-03 00:00:00.000000000 Z
+date: 2025-09-04 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: rails
@@ -269,6 +269,8 @@ files:
 - app/components/easy_admin/navbar_component.rb
 - app/components/easy_admin/notification_component.rb
 - app/components/easy_admin/pagination_component.rb
+- app/components/easy_admin/permissions/user_role_assignment_component.rb
+- app/components/easy_admin/permissions/user_role_permissions_component.rb
 - app/components/easy_admin/quick_filters_component.rb
 - app/components/easy_admin/resource_pagination_component.rb
 - app/components/easy_admin/resources/index_component.rb
@@ -292,6 +294,12 @@ files:
 - app/concerns/easy_admin/resource_versions.rb
 - app/controllers/easy_admin/application_controller.rb
 - app/controllers/easy_admin/batch_actions_controller.rb
+- app/controllers/easy_admin/concerns/belongs_to_editing.rb
+- app/controllers/easy_admin/concerns/inline_field_editing.rb
+- app/controllers/easy_admin/concerns/resource_authorization.rb
+- app/controllers/easy_admin/concerns/resource_filtering.rb
+- app/controllers/easy_admin/concerns/resource_loading.rb
+- app/controllers/easy_admin/concerns/resource_pagination.rb
 - app/controllers/easy_admin/confirmation_modal_controller.rb
 - app/controllers/easy_admin/dashboard_controller.rb
 - app/controllers/easy_admin/dashboards_controller.rb
@@ -328,6 +336,8 @@ files:
 - app/javascript/easy_admin/controllers/modal_controller.js
 - app/javascript/easy_admin/controllers/navbar_scroll_controller.js
 - app/javascript/easy_admin/controllers/notification_controller.js
+- app/javascript/easy_admin/controllers/permission_toggle_controller.js
+- app/javascript/easy_admin/controllers/role_preview_controller.js
 - app/javascript/easy_admin/controllers/row_action_controller.js
 - app/javascript/easy_admin/controllers/row_modal_controller.js
 - app/javascript/easy_admin/controllers/select_field_controller.js
@@ -343,29 +353,44 @@ files:
 - app/javascript/easy_admin/controllers/version_revert_controller.js
 - app/models/easy_admin/admin_user.rb
 - app/models/easy_admin/application_record.rb
+- app/policies/admin_user_policy.rb
+- app/policies/application_policy.rb
+- app/views/easy_admin/application/authorization_failure.turbo_stream.erb
 - app/views/easy_admin/dashboard/index.html.erb
+- app/views/easy_admin/dashboards/card.html.erb
+- app/views/easy_admin/dashboards/card.turbo_stream.erb
+- app/views/easy_admin/dashboards/card_error.html.erb
+- app/views/easy_admin/dashboards/card_error.turbo_stream.erb
 - app/views/easy_admin/dashboards/show.html.erb
+- app/views/easy_admin/dashboards/show.turbo_stream.erb
 - app/views/easy_admin/passwords/edit.html.erb
 - app/views/easy_admin/passwords/new.html.erb
 - app/views/easy_admin/registrations/new.html.erb
 - app/views/easy_admin/resources/_redirect.turbo_stream.erb
 - app/views/easy_admin/resources/_table_rows.html.erb
+- app/views/easy_admin/resources/belongs_to_edit_attached.html.erb
+- app/views/easy_admin/resources/belongs_to_edit_attached.turbo_stream.erb
+- app/views/easy_admin/resources/belongs_to_reattach.html.erb
 - app/views/easy_admin/resources/edit.html.erb
+- app/views/easy_admin/resources/edit_field.html.erb
+- app/views/easy_admin/resources/edit_field.turbo_stream.erb
 - app/views/easy_admin/resources/index.html.erb
 - app/views/easy_admin/resources/index.turbo_stream.erb
 - app/views/easy_admin/resources/index_frame.html.erb
 - app/views/easy_admin/resources/new.html.erb
 - app/views/easy_admin/resources/show.html.erb
+- app/views/easy_admin/resources/update_belongs_to_attached.turbo_stream.erb
 - app/views/easy_admin/sessions/new.html.erb
 - app/views/easy_admin/settings/_form.html.erb
 - app/views/easy_admin/settings/index.html.erb
 - app/views/layouts/easy_admin/application.html.erb
 - app/views/layouts/easy_admin/auth.html.erb
 - config/initializers/easy_admin_card_factory.rb
+- config/initializers/easy_admin_permissions.rb
 - config/initializers/pagy.rb
 - config/initializers/rack_mini_profiler.rb
 - config/routes.rb
-- db/migrate/20250101000001_create_easy_admin_admin_users.rb
+- db/seeds/easy_admin_permissions.rb
 - lib/easy-admin-rails.rb
 - lib/easy_admin/action.rb
 - lib/easy_admin/batch_action.rb
@@ -375,7 +400,28 @@ files:
 - lib/easy_admin/delete_action.rb
 - lib/easy_admin/engine.rb
 - lib/easy_admin/field.rb
+- lib/easy_admin/permissions.rb
+- lib/easy_admin/permissions/component.rb
+- lib/easy_admin/permissions/configuration.rb
+- lib/easy_admin/permissions/controller.rb
+- lib/easy_admin/permissions/dsl.rb
+- lib/easy_admin/permissions/models.rb
+- lib/easy_admin/permissions/permission_denied_component.rb
+- lib/easy_admin/permissions/resource_permissions.rb
+- lib/easy_admin/permissions/role_definition.rb
+- lib/easy_admin/permissions/role_denied_component.rb
+- lib/easy_admin/permissions/role_dsl.rb
+- lib/easy_admin/permissions/user_extensions.rb
 - lib/easy_admin/resource.rb
+- lib/easy_admin/resource/base.rb
+- lib/easy_admin/resource/configuration.rb
+- lib/easy_admin/resource/dsl.rb
+- lib/easy_admin/resource/field_registry.rb
+- lib/easy_admin/resource/form_builder.rb
+- lib/easy_admin/resource/layout_builder.rb
+- lib/easy_admin/resource/scope_manager.rb
+- lib/easy_admin/resource/show_builder.rb
+- lib/easy_admin/resource_modules.rb
 - lib/easy_admin/resource_registry.rb
 - lib/easy_admin/types/json_type.rb
 - lib/easy_admin/version.rb
@@ -386,6 +432,17 @@ files:
 - lib/generators/easy_admin/card/templates/card_component_spec.rb.erb
 - lib/generators/easy_admin/install/templates/easy_admin.rb
 - lib/generators/easy_admin/install_generator.rb
+- lib/generators/easy_admin/permissions/install_generator.rb
+- lib/generators/easy_admin/permissions/templates/initializers/permissions.rb
+- lib/generators/easy_admin/permissions/templates/migrations/create_permission_tables.rb
+- lib/generators/easy_admin/permissions/templates/migrations/update_users_for_permissions.rb
+- lib/generators/easy_admin/permissions/templates/models/permission.rb
+- lib/generators/easy_admin/permissions/templates/models/role.rb
+- lib/generators/easy_admin/permissions/templates/models/role_permission.rb
+- lib/generators/easy_admin/permissions/templates/models/user_role.rb
+- lib/generators/easy_admin/permissions/templates/policies/application_policy.rb
+- lib/generators/easy_admin/permissions/templates/policies/user_policy.rb
+- lib/generators/easy_admin/permissions/templates/seeds/permissions.rb
 - lib/generators/easy_admin/rbac/rbac_generator.rb
 - lib/generators/easy_admin/rbac/templates/add_rbac_to_admin_users.rb
 - lib/generators/easy_admin/rbac/templates/super_admin.rb
@@ -403,8 +460,8 @@ licenses:
 metadata:
   allowed_push_host: https://rubygems.org
   homepage_uri: https://github.com/yourusername/easy_admin
-  source_code_uri: https://github.com/yourusername/easy_admin
-  changelog_uri: https://github.com/yourusername/easy_admin/blob/main/CHANGELOG.md
+  source_code_uri: https://github.com/Slaurmagan/easy-admin
+  changelog_uri: https://github.com/Slaurmagan/easy-admin/blob/main/CHANGELOG.md
 post_install_message:
 rdoc_options: []
 require_paths:

data/db/migrate/20250101000001_create_easy_admin_admin_users.rb DELETED Viewed

@@ -1,45 +0,0 @@
-class CreateEasyAdminAdminUsers < ActiveRecord::Migration[7.0]
-  def change
-    create_table :easy_admin_admin_users do |t|
-      ## Database authenticatable
-      t.string :email,              null: false, default: ""
-      t.string :encrypted_password, null: false, default: ""
-      ## Personal information
-      t.string :first_name, null: false
-      t.string :last_name, null: false
-      ## Recoverable
-      t.string   :reset_password_token
-      t.datetime :reset_password_sent_at
-      ## Rememberable
-      t.datetime :remember_created_at
-      ## Trackable
-      t.integer  :sign_in_count, default: 0, null: false
-      t.datetime :current_sign_in_at
-      t.datetime :last_sign_in_at
-      t.string   :current_sign_in_ip
-      t.string   :last_sign_in_ip
-      ## Confirmable
-      t.string   :confirmation_token
-      t.datetime :confirmed_at
-      t.datetime :confirmation_sent_at
-      t.string   :unconfirmed_email # Only if using reconfirmable
-      ## Lockable
-      t.integer  :failed_attempts, default: 0, null: false # Only if lock strategy is :failed_attempts
-      t.string   :unlock_token # Only if unlock strategy is :email or :both
-      t.datetime :locked_at
-      t.timestamps null: false
-    end
-    add_index :easy_admin_admin_users, :email,                unique: true
-    add_index :easy_admin_admin_users, :reset_password_token, unique: true
-    add_index :easy_admin_admin_users, :confirmation_token,   unique: true
-    add_index :easy_admin_admin_users, :unlock_token,         unique: true
-  end
-end