fortress 0.1.0

data/spec/fortress/mechanism_spec.rb

@@ -0,0 +1,81 @@
+require 'spec_helper'
+require 'fortress/mechanism'
+
+describe Fortress::Mechanism do
+  before { @controller = OpenStruct.new(name: 'ConcertsController') }
+  describe '.parse_options' do
+    context 'passing the `:if` option' do
+      context 'with the `:index` action only' do
+        it 'should add the `:if` key to the controller key with ' \
+           'the `:action` Array [:index]' do
+          subject.parse_options(@controller, :index, if: :method_name)
+
+          controller_if = subject.authorisations['ConcertsController'][:if]
+          expect(controller_if).to be_present
+
+          expect(controller_if[:actions]).to eql([:index])
+        end
+      end
+      context 'with actions `:index, :show, :destroy`' do
+        it 'should add the `:if` key to the controller key with ' \
+           'the `:action` Array [:index, :show, :destroy]' do
+          subject.parse_options(@controller, [:index, :show, :destroy],
+                                if: :method_name)
+
+          controller_if = subject.authorisations['ConcertsController'][:if]
+          expect(controller_if).to be_present
+
+          expect(controller_if[:actions]).to eql([:index, :show, :destroy])
+        end
+      end
+    end
+    context 'passing the `:except` option' do
+      context 'with `:index` action only' do
+        it 'should add the `:except` key to the controller key with ' \
+           'the `:action` Array [:index]' do
+          subject.parse_options(@controller, nil, except: :index)
+
+          excepted = subject.authorisations['ConcertsController'][:except]
+          expect(excepted).to eql([:index])
+        end
+      end
+      context 'with `:index, :new, :update` actions' do
+        it 'should add the `:except` key to the controller key with ' \
+           'the `:action` Array [:index, :new, :update]' do
+          subject.parse_options(@controller, nil,
+                                except: [:index, :new, :update])
+
+          excepted = subject.authorisations['ConcertsController'][:except]
+          expect(excepted).to eql([:index, :new, :update])
+        end
+      end
+    end
+  end
+  describe '.authorise!' do
+    context 'passing `:all`' do
+      it 'should add the `:all` key as true to the controller key' do
+        subject.authorise!('ConcertsController', :all)
+
+        expect(subject.authorisations['ConcertsController'][:all]).to be_truthy
+      end
+    end
+    context 'passing `:index`' do
+      it 'should add the `:only` key as the Array [:index] to ' \
+         'the controller key' do
+        subject.authorise!('ConcertsController', :index)
+
+        controller_only = subject.authorisations['ConcertsController'][:only]
+        expect(controller_only).to eql([:index])
+      end
+    end
+    context 'passing `[:index, :destroy]`' do
+      it 'should add the `:only` key as the Array [:index] to ' \
+         'the controller key' do
+        subject.authorise!('ConcertsController', [:index, :destroy])
+
+        controller_only = subject.authorisations['ConcertsController'][:only]
+        expect(controller_only).to eql([:index, :destroy])
+      end
+    end
+  end
+end

data/spec/spec_helper.rb

@@ -0,0 +1,92 @@
+require 'action_controller/railtie'
+require 'rspec/rails'
+
+require 'fortress/controller'
+
+# This file was generated by the `rspec --init` command. Conventionally, all
+# specs live under a `spec` directory, which RSpec adds to the `$LOAD_PATH`.
+# The generated `.rspec` file contains `--require spec_helper` which will cause
+# this file to always be loaded, without a need to explicitly require it in any
+# files.
+#
+# Given that it is always loaded, you are encouraged to keep this file as
+# light-weight as possible. Requiring heavyweight dependencies from this file
+# will add to the boot time of your test suite on EVERY test run, even for an
+# individual file that may not need all of that loaded. Instead, consider
+# making a separate helper file that requires the additional dependencies and
+# performs the additional setup, and require it from the spec files that
+# actually need it.
+#
+# The `.rspec` file also contains a few flags that are not defaults but that
+# users commonly want.
+#
+# See http://rubydoc.info/gems/rspec-core/RSpec/Core/Configuration
+RSpec.configure do |config|
+  # rspec-expectations config goes here. You can use an alternate
+  # assertion/expectation library such as wrong or the stdlib/minitest
+  # assertions if you prefer.
+  config.expect_with :rspec do |expectations|
+    # This option will default to `true` in RSpec 4. It makes the `description`
+    # and `failure_message` of custom matchers include text for helper methods
+    # defined using `chain`, e.g.:
+    # be_bigger_than(2).and_smaller_than(4).description
+    #   # => "be bigger than 2 and smaller than 4"
+    # ...rather than:
+    #   # => "be bigger than 2"
+    expectations.include_chain_clauses_in_custom_matcher_descriptions = true
+  end
+
+  # rspec-mocks config goes here. You can use an alternate test double
+  # library (such as bogus or mocha) by changing the `mock_with` option here.
+  config.mock_with :rspec do |mocks|
+    # Prevents you from mocking or stubbing a method that does not exist on
+    # a real object. This is generally recommended, and will default to
+    # `true` in RSpec 4.
+    mocks.verify_partial_doubles = true
+  end
+
+  # The settings below are suggested to provide a good initial experience
+  # with RSpec, but feel free to customize to your heart's content.
+
+  # These two settings work together to allow you to limit a spec run
+  # to individual examples or groups you care about by tagging them with
+  # `:focus` metadata. When nothing is tagged with `:focus`, all examples
+  # get run.
+  # config.filter_run :focus
+  # config.run_all_when_everything_filtered = true
+
+  # Limits the available syntax to the non-monkey patched syntax that is
+  # recommended.
+  # config.disable_monkey_patching!
+
+  # This setting enables warnings. It's recommended, but in some cases may
+  # be too noisy due to issues in dependencies.
+  # config.warnings = true
+
+  # Many RSpec users commonly either run the entire suite or an individual
+  # file, and it's useful to allow more verbose output when running an
+  # individual spec file.
+  # if config.files_to_run.one?
+  #   # Use the documentation formatter for detailed output,
+  #   # unless a formatter has already been configured
+  #   # (e.g. via a command-line flag).
+  #   config.default_formatter = 'doc'
+  # end
+
+  # Print the 10 slowest examples and example groups at the
+  # end of the spec run, to help surface which specs are running
+  # particularly slow.
+  # config.profile_examples = 10
+
+  # Run specs in random order to surface order dependencies. If you find an
+  # order dependency and want to debug it, you can fix the order by providing
+  # the seed, which is printed after each run.
+  #     --seed 1234
+  # config.order = :random
+
+  # Seed global randomization in this process using the `--seed` CLI option.
+  # Setting this allows you to use `--seed` to deterministically reproduce
+  # test failures related to randomization by passing the same `--seed` value
+  # as the one that triggered the failure.
+  # Kernel.srand config.seed
+end

metadata

@@ -0,0 +1,199 @@
+--- !ruby/object:Gem::Specification
+name: fortress
+version: !ruby/object:Gem::Version
+  version: 0.1.0
+platform: ruby
+authors:
+- Guillaume Hain
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2015-01-21 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: actionpack
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">"
+      - !ruby/object:Gem::Version
+        version: '3.1'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">"
+      - !ruby/object:Gem::Version
+        version: '3.1'
+- !ruby/object:Gem::Dependency
+  name: activesupport
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">"
+      - !ruby/object:Gem::Version
+        version: '3.1'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">"
+      - !ruby/object:Gem::Version
+        version: '3.1'
+- !ruby/object:Gem::Dependency
+  name: bundler
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: rake
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: rspec-rails
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: rspec
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: rubocop
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+description: 'The rigths management libraries available today are all based on the
+  principle: everything is open and you close it explicitely. Fortress is immediately
+  closing access to every actions of every controllers when you install it. It''s
+  then up to you to open the allowed actions.'
+email:
+- zedtux@zedroot.org
+executables:
+- bundler
+- erubis
+- htmldiff
+- ldiff
+- nokogiri
+- rackup
+- rails
+- rake
+- rspec
+- rubocop
+- ruby-parse
+- ruby-rewrite
+- thor
+extensions: []
+extra_rdoc_files: []
+files:
+- ".gitignore"
+- ".rspec"
+- ".ruby-gemset"
+- ".ruby-version"
+- ".travis.yml"
+- Gemfile
+- LICENSE.txt
+- README.md
+- Rakefile
+- bin/bundler
+- bin/erubis
+- bin/htmldiff
+- bin/ldiff
+- bin/nokogiri
+- bin/rackup
+- bin/rails
+- bin/rake
+- bin/rspec
+- bin/rubocop
+- bin/ruby-parse
+- bin/ruby-rewrite
+- bin/thor
+- fortress.gemspec
+- lib/fortress.rb
+- lib/fortress/controller.rb
+- lib/fortress/controller_interface.rb
+- lib/fortress/mechanism.rb
+- lib/fortress/version.rb
+- spec/fixtures/application.rb
+- spec/fixtures/controllers.rb
+- spec/fortress/controller_interface_spec.rb
+- spec/fortress/controller_spec.rb
+- spec/fortress/mechanism_spec.rb
+- spec/spec_helper.rb
+homepage: https://github.com/YourCursus/fortress
+licenses:
+- MIT
+metadata: {}
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubyforge_project: 
+rubygems_version: 2.4.5
+signing_key: 
+specification_version: 4
+summary: Secure your Rails application from preventing access to everything to opening
+  allowed actions.
+test_files:
+- spec/fixtures/application.rb
+- spec/fixtures/controllers.rb
+- spec/fortress/controller_interface_spec.rb
+- spec/fortress/controller_spec.rb
+- spec/fortress/mechanism_spec.rb
+- spec/spec_helper.rb