garrison 0.0.1

data/spec/dummy/db/migrate/20160612023105_create_model_as.rb

@@ -0,0 +1,9 @@
+class CreateModelAs < ActiveRecord::Migration
+  def change
+    create_table :model_as do |t|
+      t.string :name
+
+      t.timestamps
+    end
+  end
+end

data/spec/dummy/db/migrate/20160612023109_create_model_bs.rb

@@ -0,0 +1,9 @@
+class CreateModelBs < ActiveRecord::Migration
+  def change
+    create_table :model_bs do |t|
+      t.string :name
+
+      t.timestamps
+    end
+  end
+end

data/spec/dummy/db/migrate/20160612025050_create_model_cs.rb

@@ -0,0 +1,9 @@
+class CreateModelCs < ActiveRecord::Migration
+  def change
+    create_table :model_cs do |t|
+      t.string :name
+
+      t.timestamps
+    end
+  end
+end

data/spec/dummy/db/migrate/20160612033904_create_users.rb

@@ -0,0 +1,9 @@
+class CreateUsers < ActiveRecord::Migration
+  def change
+    create_table :users do |t|
+      t.string :name
+
+      t.timestamps
+    end
+  end
+end

data/spec/dummy/db/schema.rb

@@ -0,0 +1,40 @@
+# encoding: UTF-8
+# This file is auto-generated from the current state of the database. Instead
+# of editing this file, please use the migrations feature of Active Record to
+# incrementally modify your database, and then regenerate this schema definition.
+#
+# Note that this schema.rb definition is the authoritative source for your
+# database schema. If you need to create the application database on another
+# system, you should be using db:schema:load, not running all the migrations
+# from scratch. The latter is a flawed and unsustainable approach (the more migrations
+# you'll amass, the slower it'll run and the greater likelihood for issues).
+#
+# It's strongly recommended that you check this file into your version control system.
+
+ActiveRecord::Schema.define(version: 20160612033904) do
+
+  create_table "model_as", force: true do |t|
+    t.string   "name"
+    t.datetime "created_at"
+    t.datetime "updated_at"
+  end
+
+  create_table "model_bs", force: true do |t|
+    t.string   "name"
+    t.datetime "created_at"
+    t.datetime "updated_at"
+  end
+
+  create_table "model_cs", force: true do |t|
+    t.string   "name"
+    t.datetime "created_at"
+    t.datetime "updated_at"
+  end
+
+  create_table "users", force: true do |t|
+    t.string   "name"
+    t.datetime "created_at"
+    t.datetime "updated_at"
+  end
+
+end

data/spec/dummy/public/404.html

@@ -0,0 +1,58 @@
+<!DOCTYPE html>
+<html>
+<head>
+  <title>The page you were looking for doesn't exist (404)</title>
+  <style>
+  body {
+    background-color: #EFEFEF;
+    color: #2E2F30;
+    text-align: center;
+    font-family: arial, sans-serif;
+  }
+
+  div.dialog {
+    width: 25em;
+    margin: 4em auto 0 auto;
+    border: 1px solid #CCC;
+    border-right-color: #999;
+    border-left-color: #999;
+    border-bottom-color: #BBB;
+    border-top: #B00100 solid 4px;
+    border-top-left-radius: 9px;
+    border-top-right-radius: 9px;
+    background-color: white;
+    padding: 7px 4em 0 4em;
+  }
+
+  h1 {
+    font-size: 100%;
+    color: #730E15;
+    line-height: 1.5em;
+  }
+
+  body > p {
+    width: 33em;
+    margin: 0 auto 1em;
+    padding: 1em 0;
+    background-color: #F7F7F7;
+    border: 1px solid #CCC;
+    border-right-color: #999;
+    border-bottom-color: #999;
+    border-bottom-left-radius: 4px;
+    border-bottom-right-radius: 4px;
+    border-top-color: #DADADA;
+    color: #666;
+    box-shadow:0 3px 8px rgba(50, 50, 50, 0.17);
+  }
+  </style>
+</head>
+
+<body>
+  <!-- This file lives in public/404.html -->
+  <div class="dialog">
+    <h1>The page you were looking for doesn't exist.</h1>
+    <p>You may have mistyped the address or the page may have moved.</p>
+  </div>
+  <p>If you are the application owner check the logs for more information.</p>
+</body>
+</html>

data/spec/dummy/public/422.html

@@ -0,0 +1,58 @@
+<!DOCTYPE html>
+<html>
+<head>
+  <title>The change you wanted was rejected (422)</title>
+  <style>
+  body {
+    background-color: #EFEFEF;
+    color: #2E2F30;
+    text-align: center;
+    font-family: arial, sans-serif;
+  }
+
+  div.dialog {
+    width: 25em;
+    margin: 4em auto 0 auto;
+    border: 1px solid #CCC;
+    border-right-color: #999;
+    border-left-color: #999;
+    border-bottom-color: #BBB;
+    border-top: #B00100 solid 4px;
+    border-top-left-radius: 9px;
+    border-top-right-radius: 9px;
+    background-color: white;
+    padding: 7px 4em 0 4em;
+  }
+
+  h1 {
+    font-size: 100%;
+    color: #730E15;
+    line-height: 1.5em;
+  }
+
+  body > p {
+    width: 33em;
+    margin: 0 auto 1em;
+    padding: 1em 0;
+    background-color: #F7F7F7;
+    border: 1px solid #CCC;
+    border-right-color: #999;
+    border-bottom-color: #999;
+    border-bottom-left-radius: 4px;
+    border-bottom-right-radius: 4px;
+    border-top-color: #DADADA;
+    color: #666;
+    box-shadow:0 3px 8px rgba(50, 50, 50, 0.17);
+  }
+  </style>
+</head>
+
+<body>
+  <!-- This file lives in public/422.html -->
+  <div class="dialog">
+    <h1>The change you wanted was rejected.</h1>
+    <p>Maybe you tried to change something you didn't have access to.</p>
+  </div>
+  <p>If you are the application owner check the logs for more information.</p>
+</body>
+</html>

data/spec/dummy/public/500.html

@@ -0,0 +1,57 @@
+<!DOCTYPE html>
+<html>
+<head>
+  <title>We're sorry, but something went wrong (500)</title>
+  <style>
+  body {
+    background-color: #EFEFEF;
+    color: #2E2F30;
+    text-align: center;
+    font-family: arial, sans-serif;
+  }
+
+  div.dialog {
+    width: 25em;
+    margin: 4em auto 0 auto;
+    border: 1px solid #CCC;
+    border-right-color: #999;
+    border-left-color: #999;
+    border-bottom-color: #BBB;
+    border-top: #B00100 solid 4px;
+    border-top-left-radius: 9px;
+    border-top-right-radius: 9px;
+    background-color: white;
+    padding: 7px 4em 0 4em;
+  }
+
+  h1 {
+    font-size: 100%;
+    color: #730E15;
+    line-height: 1.5em;
+  }
+
+  body > p {
+    width: 33em;
+    margin: 0 auto 1em;
+    padding: 1em 0;
+    background-color: #F7F7F7;
+    border: 1px solid #CCC;
+    border-right-color: #999;
+    border-bottom-color: #999;
+    border-bottom-left-radius: 4px;
+    border-bottom-right-radius: 4px;
+    border-top-color: #DADADA;
+    color: #666;
+    box-shadow:0 3px 8px rgba(50, 50, 50, 0.17);
+  }
+  </style>
+</head>
+
+<body>
+  <!-- This file lives in public/500.html -->
+  <div class="dialog">
+    <h1>We're sorry, but something went wrong.</h1>
+  </div>
+  <p>If you are the application owner check the logs for more information.</p>
+</body>
+</html>

data/spec/dummy/spec/factories/model_as.rb

@@ -0,0 +1,5 @@
+FactoryGirl.define do
+  factory :model_a do
+    name "MyString"
+  end
+end

data/spec/dummy/spec/factories/model_bs.rb

@@ -0,0 +1,5 @@
+FactoryGirl.define do
+  factory :model_b do
+    name "MyString"
+  end
+end

data/spec/dummy/spec/factories/model_cs.rb

@@ -0,0 +1,5 @@
+FactoryGirl.define do
+  factory :model_c do
+    name "MyString"
+  end
+end

data/spec/dummy/spec/factories/users.rb

@@ -0,0 +1,5 @@
+FactoryGirl.define do
+  factory :user do
+    name "MyString"
+  end
+end

data/spec/dummy/spec/models/model_a_spec.rb

@@ -0,0 +1,5 @@
+require 'rails_helper'
+
+RSpec.describe ModelA, type: :model do
+  pending "add some examples to (or delete) #{__FILE__}"
+end

data/spec/dummy/spec/models/model_b_spec.rb

@@ -0,0 +1,5 @@
+require 'rails_helper'
+
+RSpec.describe ModelB, type: :model do
+  pending "add some examples to (or delete) #{__FILE__}"
+end

data/spec/dummy/spec/models/model_c_spec.rb

@@ -0,0 +1,5 @@
+require 'rails_helper'
+
+RSpec.describe ModelC, type: :model do
+  pending "add some examples to (or delete) #{__FILE__}"
+end

data/spec/dummy/spec/models/user_spec.rb

@@ -0,0 +1,5 @@
+require 'rails_helper'
+
+RSpec.describe User, type: :model do
+  pending "add some examples to (or delete) #{__FILE__}"
+end

data/spec/garrison/base_spec.rb

@@ -0,0 +1,56 @@
+require 'rails_helper'
+
+RSpec.describe Garrison do
+  before { Garrison.lock! ModelA, ModelC }
+
+  describe 'define methods' do
+    context 'target class' do
+      subject { ModelA.method_defined? :garrison }
+      it { should be_truthy }
+    end
+
+    context 'not target class' do
+      subject { ModelB.method_defined? :garrison }
+      it { should be_truthy }
+    end
+  end
+
+  describe 'lock automatically' do
+    context 'target class' do
+      describe 'locked' do
+        let(:model) { ModelA.new(name: 'user') }
+        subject { model.garrison.locked? }
+        it { should be_truthy }
+      end
+
+      describe 'save' do
+        let(:model) { ModelA.new(name: 'user') }
+        subject { model.save }
+        it { expect { should }.to raise_error(Garrison::Locked) }
+      end
+    end
+
+    context 'not target class' do
+      describe 'locked' do
+        let(:model) { ModelB.create!(name: 'user', garrison_locked: false) }
+        subject { model.garrison.locked? }
+        it { should be_falsey }
+      end
+
+      describe 'save' do
+        let(:model) { ModelB.create!(name: 'user', garrison_locked: false) }
+        subject { model.save }
+        it { should be_truthy }
+      end
+    end
+  end
+
+  describe 'unlock' do
+    context 'target class' do
+      let(:model) { ModelA.create!(name: 'user', garrison_locked: false) }
+      subject { model.save }
+      before { model.garrison.unlock }
+      it { should be_truthy }
+    end
+  end
+end

data/spec/garrison/keeper_spec.rb

@@ -0,0 +1,138 @@
+require 'rails_helper'
+
+module Garrison
+  RSpec.describe Keeper do
+    before { Garrison.lock! ModelA, ModelC }
+    let(:user) { User.create!(name: 'user') }
+
+    describe 'check' do
+      context 'enable' do
+        let(:model) { ModelA.create!(name: 'user', garrison_locked: false) }
+        let(:keeper) { Keeper.new(user) }
+
+        it 'read' do
+          read = false
+          keeper.read(model) { read = true }
+          expect(read).to be_truthy
+        end
+
+        it 'other read' do
+          read = false
+          keeper.read_other(model) { read = true }
+          expect(read).to be_truthy
+        end
+
+        it 'write' do
+          written = false
+          keeper.write(model) { written = model.save }
+          expect(written).to be_truthy
+        end
+
+        it 'other write' do
+          written = false
+          keeper.write_other(model, writable: true) { written = model.save }
+          expect(written).to be_truthy
+        end
+      end
+
+      context 'disable' do
+        let(:model) { ModelC.create!(name: 'user', garrison_locked: false) }
+        let(:keeper) { Keeper.new(user) }
+
+        it 'read' do
+          expect {
+            keeper.read(model)
+          }.to raise_error(Garrison::Forbidden)
+        end
+
+        it 'write' do
+          expect {
+            keeper.write(model)
+          }.to raise_error(Garrison::Forbidden)
+        end
+      end
+
+      context 'return result' do
+        let(:model) { ModelA.create!(name: 'user', garrison_locked: false) }
+        let(:keeper) { Keeper.new(user) }
+
+        it 'read' do
+          result = keeper.read(model) do
+            model.name
+            :abc
+          end
+
+          expect(result).to eq(:abc)
+        end
+
+        it 'write' do
+          result = keeper.write(model) do
+            model.save
+            :abc
+          end
+
+          expect(result).to eq(:abc)
+        end
+      end
+    end
+
+    describe 'auto lock' do
+      let(:model) { ModelA.create!(name: 'user', garrison_locked: false) }
+      let(:keeper) { Keeper.new(user) }
+      subject { model.save }
+
+      context 'after create' do
+        it do
+          expect { should }.to raise_error(Garrison::Locked)
+        end
+      end
+
+      context 'after read' do
+        it do
+          keeper.read(model)
+          expect { should }.to raise_error(Garrison::Locked)
+        end
+      end
+
+      context 'after wrote' do
+        it do
+          keeper.write(model)
+          expect { should }.to raise_error(Garrison::Locked)
+        end
+      end
+    end
+  end
+
+  class ModelAChecker < CheckerAbstract
+    def can_read?
+      user.name == obj.name
+    end
+
+    def can_write?
+      user.name == obj.name
+    end
+
+    def can_read_other?
+      user.name == obj.name
+    end
+
+    def can_write_other?
+      user.name == obj.name
+    end
+
+    def can_write_disabled?
+      user.name != obj.name
+    end
+  end
+
+  class ModelCChecker < CheckerAbstract
+    def can_read?
+      false
+    end
+
+    def can_write?
+      false
+    end
+  end
+end
+