flexible_accessibility 0.1.2.pre → 0.1.3.pre

data/Rakefile

@@ -15,7 +15,7 @@ require 'jeweler'
 Jeweler::Tasks.new do |gem|
   # gem is a Gem::Specification... see http://docs.rubygems.org/read/chapter/20 for more options
   gem.name = "flexible_accessibility"
-  gem.version = "0.1.2.pre"
+  gem.version = "0.1.3.pre"
   gem.homepage = "http://github.com/mochnatiy/flexible_accessibility"
   gem.license = "MIT"
   gem.summary = %Q{Flexible access control system}
@@ -46,7 +46,6 @@ task :default => :test
 require 'rdoc/task'
 Rake::RDocTask.new do |rdoc|
   version = File.exist?('VERSION') ? File.read('VERSION') : ""
-
   rdoc.rdoc_dir = 'rdoc'
   rdoc.title = "flexible_accessibility #{version}"
   rdoc.rdoc_files.include('README*')

data/flexible_accessibility.gemspec

@@ -5,11 +5,11 @@
 
 Gem::Specification.new do |s|
   s.name = "flexible_accessibility"
-  s.version = "0.1.2.pre"
+  s.version = "0.1.3.pre"
 
   s.required_rubygems_version = Gem::Requirement.new("> 1.3.1") if s.respond_to? :required_rubygems_version=
   s.authors = ["Sergey Awanesov"]
-  s.date = "2012-07-01"
+  s.date = "2012-07-16"
   s.description = "Flexible access control system for your rails application. Based on analysis of controller actions"
   s.email = "sergey.awanesov@gmail.com"
   s.extra_rdoc_files = [
@@ -30,9 +30,7 @@ Gem::Specification.new do |s|
     "lib/flexible_accessibility.rb",
     "lib/flexible_accessibility/controller_methods.rb",
     "lib/flexible_accessibility/exceptions.rb",
-    "lib/generators/flexible_accessibility/permission/permission_generator.rb",
-    "lib/generators/flexible_accessibility/permission/templates/create_permissions.rb",
-    "lib/generators/flexible_accessibility/permission/templates/permission.rb",
+    "lib/flexible_accessibility/permissions.rb",
     "test/helper.rb",
     "test/test_flexible_accessibility.rb"
   ]

data/lib/flexible_accessibility/controller_methods.rb

@@ -2,45 +2,56 @@ module FlexibleAccessibility
   module ControllerMethods
   	module ClassMethods
 
-      #
-      def skip_authorization_on_resource
-        @authorized = true
+      # Macro for skip authorization
+      def skip_authorization_here
+        self.instance_variable_set :@route_permitted, true
+        self.send :before_filter, :check_if_route_permitted
       end
 
-      #
-  	  def authorize *args
-  	  	self.send :before_filter, :check_access_to_resource, *args
+      # Macro for define authorization
+  	  def authorize args={}
+  	  	self.send :before_filter, :check_permission_to_route
+        self.send :before_filter, :check_if_route_permitted
+        set_actions_to_authorize *args
   	  end
+      
+      private
+      #
+      def set_actions_to_authorize args={}
+        self.instance_variable_set :@checkable_routes, args[:only] unless args[:only].nil?
+        self.instance_variable_set :@checkable_routes, self.action_methods - args[:except] unless args[:except].nil?  
+      end
 
       #
-      def current_action
+      def current_route
         path = ActionController::Routing::Routes.recognize_path request.env["PATH_INFO"]
-        @fa_path = [path[:controller], path[:action]]
+        [path[:controller], path[:action]]
       end
 
-      #
-      def check_access_to_resource
-        if @actions.include current_action[1].to_sym
-          @authorized = true unless Permission.check_access "#{current_action[0]}##{current_action[1]}", current_action
+      # We checks access to route
+      # And we expected the existing of current_user helper
+      def check_permission_to_route
+        if self.instance_variable_get(:@checkable_routes).include? current_route[1].to_sym
+          self.instance_variable_set(:@route_permitted, true) unless Permissions.is_action_permitted_for_user? "#{current_route[0]}##{current_route[1]}", current_user
         end
       end
 
-      #
-      def check_if_authorized
-        raise FlexibleAccessibility::AccessDeniedException unless @authorized
-      end
-      
-      #
-      def has_access? controller, action
-        Permission.check_access "#{controller}##{action}", current_action
+      # We checks @authorized variable state
+      def check_if_route_permitted
+        raise FlexibleAccessibility::AccessDeniedException unless self.instance_variable_get :@route_permitted
       end
     end
 
-    #
+    # Callback needs for include methods and define helper method
     def self.included base
     	base.extend ClassMethods
     	base.helper_method has_access?
     end
+
+    # We checks url for each link in view to show it
+    def has_access? controller, action
+      Permissions.is_action_permitted_for_user? "#{controller}##{action}", current_user
+    end
   end
 end
 

data/lib/flexible_accessibility/permissions.rb

@@ -0,0 +1,20 @@
+module FlexibleAccessibility
+  class Permissions
+  	class << self
+	  def get_permissions
+		permissions = {}
+		ApplicationController.subclasses.each do |klass|
+		  permissions[klass.to_s.tableize.singularize.to_sym] = klass.constantize.new.instance_variable_get(:@checkable_routes).collect{ |a| a.to_s }.join(', ')
+		end
+		permissions
+	  end
+
+	  def is_action_permitted? action
+	  end
+
+	  def is_action_permitted_for_user? action, user
+	  	!self.where(["action = ? and user_id = ?", action, user.id]).empty?
+	  end
+	end
+  end
+end

data/lib/flexible_accessibility.rb

@@ -1,2 +1,3 @@
 require 'flexible_accessibility/controller_methods.rb'
-require 'flexible_accessibility/exceptions.rb'
+require 'flexible_accessibility/exceptions.rb'
+require 'flexible_accessibility/permissions.rb'

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification 
 name: flexible_accessibility
 version: !ruby/object:Gem::Version 
-  hash: 961915972
+  hash: 961915968
   prerelease: 6
   segments: 
   - 0
   - 1
-  - 2
+  - 3
   - pre
-  version: 0.1.2.pre
+  version: 0.1.3.pre
 platform: ruby
 authors: 
 - Sergey Awanesov
@@ -16,7 +16,7 @@ autorequire:
 bindir: bin
 cert_chain: []
 
-date: 2012-07-01 00:00:00 Z
+date: 2012-07-16 00:00:00 Z
 dependencies: 
 - !ruby/object:Gem::Dependency 
   type: :development
@@ -116,9 +116,7 @@ files:
 - lib/flexible_accessibility.rb
 - lib/flexible_accessibility/controller_methods.rb
 - lib/flexible_accessibility/exceptions.rb
-- lib/generators/flexible_accessibility/permission/permission_generator.rb
-- lib/generators/flexible_accessibility/permission/templates/create_permissions.rb
-- lib/generators/flexible_accessibility/permission/templates/permission.rb
+- lib/flexible_accessibility/permissions.rb
 - test/helper.rb
 - test/test_flexible_accessibility.rb
 homepage: http://github.com/mochnatiy/flexible_accessibility

data/lib/generators/flexible_accessibility/permission/permission_generator.rb

@@ -1,12 +0,0 @@
-module FlexibleAccessibilty
-	module Generators
-		class PermissionGenerator < Rails::Generators::Base
-      source_root File.expand_path('../templates', __FILE__)
-
-      def generate_ability
-        copy_file "permission.rb", "app/models/permission.rb"
-        copy_file "create_permissions.rb", "db/migrate/create_permissions.rb"
-      end
-    end
-	end
-end

data/lib/generators/flexible_accessibility/permission/templates/create_permissions.rb

@@ -1,15 +0,0 @@
-class CreatePermissions < ActiveRecord::Migration
-	def up
-		create_table :permissions do |t|
-			t.string :action, :null => false
-			t.integer :user_id, :null => false
-      t.timestamps
-		end
-
-		add_index :permissions, :user_id
-	end
-
-	def down
-		drop_table :permissions
-	end
-end

data/lib/generators/flexible_accessibility/permission/templates/permission.rb

@@ -1,15 +0,0 @@
-class Permission < ActiveRecord::Base
-
-  class << self
-		def get_permissions
-		  permissions = {}
-		  ApplicationController.subclasses.each do |klass|
-			  permissions[klass.to_s.tableize.singularize.to_sym] = klass.constantize.action_methods.collect{ |a| a.to_s }.join(', ')
-		  end
-	  end
-
-	  def check_access action, user
-	  	!self.where(["action = ? and user_id = ?", action, user.id]).empty?
-	  end
-	end
-end