hydra-access-controls 6.5.2 → 7.0.0.pre1

data/spec/unit/access_controls_enforcement_spec.rb

@@ -169,14 +169,14 @@ describe Hydra::AccessControlsEnforcement do
     end
   end
 
-  describe "apply_individual_permissions" do
+  describe "apply_user_permissions" do
     describe "when the user is a guest user (user key nil)" do
       before do
         stub_user = User.new
         subject.stub(:current_user).and_return(stub_user)
       end
       it "should not create filters" do
-        subject.send(:apply_individual_permissions, ["edit","discover","read"]).should == []
+        subject.send(:apply_user_permissions, ["edit","discover","read"]).should == []
       end
     end
     describe "when the user is a guest user (user key empty string)" do
@@ -185,7 +185,7 @@ describe Hydra::AccessControlsEnforcement do
         subject.stub(:current_user).and_return(stub_user)
       end
       it "should not create filters" do
-        subject.send(:apply_individual_permissions, ["edit","discover","read"]).should == []
+        subject.send(:apply_user_permissions, ["edit","discover","read"]).should == []
       end
     end
   end

data/spec/unit/admin_policy_spec.rb

@@ -1,23 +1,6 @@
 require 'spec_helper'
 
 describe Hydra::AdminPolicy do
-  before do
-    Hydra.stub(:config).and_return({:permissions=>{
-      :discover => {:group =>"discover_access_group_ssim", :individual=>"discover_access_person_ssim"},
-      :read => {:group =>"read_access_group_ssim", :individual=>"read_access_person_ssim"},
-      :edit => {:group =>"edit_access_group_ssim", :individual=>"edit_access_person_ssim"},
-      :owner => "depositor_ssim",
-      :embargo_release_date => "embargo_release_date_dtsi",
-      
-      :inheritable => {
-        :discover => {:group =>"inheritable_discover_access_group_ssim", :individual=>"inheritable_discover_access_person_ssim"},
-        :read => {:group =>"inheritable_read_access_group_ssim", :individual=>"inheritable_read_access_person_ssim"},
-        :edit => {:group =>"inheritable_edit_access_group_ssim", :individual=>"inheritable_edit_access_person_ssim"},
-        :owner => "inheritable_depositor_ssim",
-        :embargo_release_date => "inheritable_embargo_release_date_dtsi"
-      }
-    }})
-  end
   its(:defaultRights) { should be_kind_of Hydra::Datastream::InheritableRightsMetadata}
   its(:rightsMetadata) { should be_kind_of Hydra::Datastream::RightsMetadata}
   its(:descMetadata) { should be_kind_of ActiveFedora::QualifiedDublinCoreDatastream}

data/spec/unit/config_spec.rb

@@ -0,0 +1,48 @@
+require 'spec_helper'
+describe Hydra::Config do
+  let (:config) { subject }
+  it "Should accept a hash based config" do
+      # This specifies the solr field names of permissions-related fields.
+      # You only need to change these values if you've indexed permissions by some means other than the Hydra's built-in tooling.
+      # If you change these, you must also update the permissions request handler in your solrconfig.xml to return those values
+      config[:permissions] = {
+        :discover => {:group =>ActiveFedora::SolrService.solr_name("discover_access_group", :symbol), :individual=>ActiveFedora::SolrService.solr_name("discover_access_person", :symbol)},
+        :read => {:group =>ActiveFedora::SolrService.solr_name("read_access_group", :symbol), :individual=>ActiveFedora::SolrService.solr_name("read_access_person", :symbol)},
+        :edit => {:group =>ActiveFedora::SolrService.solr_name("edit_access_group", :symbol), :individual=>ActiveFedora::SolrService.solr_name("edit_access_person", :symbol)},
+        :owner => ActiveFedora::SolrService.solr_name("depositor", :symbol),
+        :embargo_release_date => ActiveFedora::SolrService.solr_name("embargo_release_date", Solrizer::Descriptor.new(:date, :stored, :indexed))
+      }
+
+      # specify the user model
+      config[:user_model] = 'User'
+
+      config[:permissions][:edit][:individual].should == 'edit_access_person_ssim'
+  end
+
+  it "should accept a struct based config" do
+      # This specifies the solr field names of permissions-related fields.
+      # You only need to change these values if you've indexed permissions by some means other than the Hydra's built-in tooling.
+      # If you change these, you must also update the permissions request handler in your solrconfig.xml to return those values
+      config.permissions.discover.group = ActiveFedora::SolrService.solr_name("discover_access_group", :symbol)
+
+      # specify the user model
+      config.user_model = 'User'
+
+      config.permissions.discover.group.should == 'discover_access_group_ssim'
+      config.user_model.should == 'User'
+  end
+
+  it "should have inheritable attributes" do
+      config[:permissions][:inheritable][:edit][:individual].should == 'inheritable_edit_access_person_ssim'
+  end
+  it "should have a nil policy_class" do
+      config[:permissions][:policy_class].should be_nil
+  end
+
+  it "should have defaults" do
+    config.permissions.read.individual.should == 'read_access_person_ssim'
+    config.permissions.embargo_release_date.should == 'embargo_release_date_dtsi'
+    config.user_model.should == 'User'
+  end
+
+end

data/spec/unit/hydra_rights_metadata_persistence_spec.rb

@@ -14,7 +14,7 @@ describe Hydra::Datastream::RightsMetadata do
   describe "rightsMetadata" do
     let!(:thing) {RightsTest.new}
 
-    [:discover,:read,:edit].each do |mode|
+    [:discover,:read, :edit].each do |mode|
       describe "##{mode}_users" do
         let(:get_method) {"#{mode}_users".to_sym}
         let(:set_method) {"#{mode}_users=".to_sym}

data/spec/unit/hydra_rights_metadata_spec.rb

@@ -176,11 +176,6 @@ describe Hydra::Datastream::RightsMetadata do
     it "should only accept valid date values" do
       
     end
-    it "should accept a nil value after having a date value" do
-      @sample.embargo_release_date=("2010-12-01")
-      @sample.embargo_release_date=(nil)
-      @sample.embargo_release_date.should == nil
-    end
   end
   describe "embargo_release_date" do
     it "should return solr formatted date" do

data/spec/unit/permissions_spec.rb

@@ -21,66 +21,84 @@ describe Hydra::AccessControls::Permissions do
         Hydra::AccessControls::Permission.new({:type=>"user", :access=>"edit", :name=>"user1"})]
   end
   describe "updating permissions" do
-    before do
-      subject.permissions_attributes = [{:type=>"user", :access=>"edit", :name=>"jcoyne"}]
-    end
-    it "should handle a hash" do
-      subject.permissions_attributes = {'0' => {type: "group", access:"read", name:"group1"}, '1'=> {type: 'user', access: 'edit', name: 'user2'}}
-      subject.permissions.should == [Hydra::AccessControls::Permission.new(:type=>"group", :access=>"read", :name=>"group1"),
-                                   Hydra::AccessControls::Permission.new(:type=>"user", :access=>"edit", :name=>"jcoyne"),
-                                   Hydra::AccessControls::Permission.new(:type=>"user", :access=>"edit", :name=>"user2")]
-    end
-    it "should create new group permissions" do
-      subject.permissions_attributes = [{:type=>"group", :access=>"read", :name=>"group1"}]
-      subject.permissions.should == [Hydra::AccessControls::Permission.new(:type=>"group", :access=>"read", :name=>"group1"),
-                                   Hydra::AccessControls::Permission.new(:type=>"user", :access=>"edit", :name=>"jcoyne")]
-    end
-    it "should create new user permissions" do
-      subject.permissions_attributes = [{:type=>"user", :access=>"read", :name=>"user1"}]
-      subject.permissions.should == [Hydra::AccessControls::Permission.new(:type=>"user", :access=>"read", :name=>"user1"),
-                                   Hydra::AccessControls::Permission.new(:type=>"user", :access=>"edit", :name=>"jcoyne")]
-    end
-    it "should not replace existing groups" do
-      subject.permissions_attributes = [{:type=>"group", :access=>"read", :name=>"group1"}]
-      subject.permissions_attributes = [{:type=>"group", :access=>"read", :name=>"group2"}]
-      subject.permissions.should == [Hydra::AccessControls::Permission.new(:type=>"group", :access=>"read", :name=>"group1"),
-                                   Hydra::AccessControls::Permission.new(:type=>"group", :access=>"read", :name=>"group2"),
-                                   Hydra::AccessControls::Permission.new(:type=>"user", :access=>"edit", :name=>"jcoyne")]
-    end
-    it "should not replace existing users" do
-      subject.permissions_attributes = [{:type=>"user", :access=>"read", :name=>"user1"}]
-      subject.permissions_attributes = [{:type=>"user", :access=>"read", :name=>"user2"}]
-      subject.permissions.should == [Hydra::AccessControls::Permission.new(:type=>"user", :access=>"read", :name=>"user1"),
-                                   Hydra::AccessControls::Permission.new(:type=>"user", :access=>"read", :name=>"user2"),
-                                   Hydra::AccessControls::Permission.new(:type=>"user", :access=>"edit", :name=>"jcoyne")]
-    end
-    it "should update permissions on existing users" do
-      subject.permissions_attributes = [{:type=>"user", :access=>"read", :name=>"user1"}]
-      subject.permissions_attributes = [{:type=>"user", :access=>"edit", :name=>"user1"}]
-      subject.permissions.should == [Hydra::AccessControls::Permission.new(:type=>"user", :access=>"edit", :name=>"user1"),
-                                   Hydra::AccessControls::Permission.new(:type=>"user", :access=>"edit", :name=>"jcoyne")]
+    describe "with nested attributes" do
+      before do
+        subject.permissions_attributes = [{:type=>"user", :access=>"edit", :name=>"jcoyne"}]
+      end
+      it "should handle a hash" do
+        subject.permissions_attributes = {'0' => {type: "group", access:"read", name:"group1"}, '1'=> {type: 'user', access: 'edit', name: 'user2'}}
+        subject.permissions.should == [Hydra::AccessControls::Permission.new(:type=>"group", :access=>"read", :name=>"group1"),
+                                     Hydra::AccessControls::Permission.new(:type=>"user", :access=>"edit", :name=>"jcoyne"),
+                                     Hydra::AccessControls::Permission.new(:type=>"user", :access=>"edit", :name=>"user2")]
+      end
+      it "should create new group permissions" do
+        subject.permissions_attributes = [{:type=>"group", :access=>"read", :name=>"group1"}]
+        subject.permissions.should == [Hydra::AccessControls::Permission.new(:type=>"group", :access=>"read", :name=>"group1"),
+                                     Hydra::AccessControls::Permission.new(:type=>"user", :access=>"edit", :name=>"jcoyne")]
+      end
+      it "should create new user permissions" do
+        subject.permissions_attributes = [{:type=>"user", :access=>"read", :name=>"user1"}]
+        subject.permissions.should == [Hydra::AccessControls::Permission.new(:type=>"user", :access=>"read", :name=>"user1"),
+                                     Hydra::AccessControls::Permission.new(:type=>"user", :access=>"edit", :name=>"jcoyne")]
+      end
+      it "should not replace existing groups" do
+        subject.permissions_attributes = [{:type=>"group", :access=>"read", :name=>"group1"}]
+        subject.permissions_attributes = [{:type=>"group", :access=>"read", :name=>"group2"}]
+        subject.permissions.should == [Hydra::AccessControls::Permission.new(:type=>"group", :access=>"read", :name=>"group1"),
+                                     Hydra::AccessControls::Permission.new(:type=>"group", :access=>"read", :name=>"group2"),
+                                     Hydra::AccessControls::Permission.new(:type=>"user", :access=>"edit", :name=>"jcoyne")]
+      end
+      it "should not replace existing users" do
+        subject.permissions_attributes = [{:type=>"user", :access=>"read", :name=>"user1"}]
+        subject.permissions_attributes = [{:type=>"user", :access=>"read", :name=>"user2"}]
+        subject.permissions.should == [Hydra::AccessControls::Permission.new(:type=>"user", :access=>"read", :name=>"user1"),
+                                     Hydra::AccessControls::Permission.new(:type=>"user", :access=>"read", :name=>"user2"),
+                                     Hydra::AccessControls::Permission.new(:type=>"user", :access=>"edit", :name=>"jcoyne")]
+      end
+      it "should update permissions on existing users" do
+        subject.permissions_attributes = [{:type=>"user", :access=>"read", :name=>"user1"}]
+        subject.permissions_attributes = [{:type=>"user", :access=>"edit", :name=>"user1"}]
+        subject.permissions.should == [Hydra::AccessControls::Permission.new(:type=>"user", :access=>"edit", :name=>"user1"),
+                                     Hydra::AccessControls::Permission.new(:type=>"user", :access=>"edit", :name=>"jcoyne")]
+      end
+      it "should update permissions on existing groups" do
+        subject.permissions_attributes = [{:type=>"group", :access=>"read", :name=>"group1"}]
+        subject.permissions_attributes = [{:type=>"group", :access=>"edit", :name=>"group1"}]
+        subject.permissions.should == [Hydra::AccessControls::Permission.new(:type=>"group", :access=>"edit", :name=>"group1"),
+                                     Hydra::AccessControls::Permission.new(:type=>"user", :access=>"edit", :name=>"jcoyne")]
+      end
+      it "should remove permissions on existing users" do
+        subject.permissions_attributes = [{:type=>"user", :access=>"read", :name=>"user1"}]
+        subject.permissions_attributes = [{:type=>"user", :access=>"edit", :name=>"user1", _destroy: true}]
+        subject.permissions.should == [Hydra::AccessControls::Permission.new(:type=>"user", :access=>"edit", :name=>"jcoyne")]
+      end
+      it "should remove permissions on existing groups" do
+        subject.permissions_attributes = [{:type=>"group", :access=>"read", :name=>"group1"}]
+        subject.permissions_attributes = [{:type=>"group", :access=>"edit", :name=>"group1", _destroy: '1'}]
+        subject.permissions.should == [Hydra::AccessControls::Permission.new(:type=>"user", :access=>"edit", :name=>"jcoyne")]
+      end
+      it "should not remove when destroy flag is falsy" do
+        subject.permissions_attributes = [{:type=>"group", :access=>"read", :name=>"group1"}]
+        subject.permissions_attributes = [{:type=>"group", :access=>"edit", :name=>"group1", _destroy: '0'}]
+        subject.permissions.should == [ Hydra::AccessControls::Permission.new(:type=>"group", :access=>"edit", :name=>"group1"),
+                                        Hydra::AccessControls::Permission.new(:type=>"user", :access=>"edit", :name=>"jcoyne")]
+      end
     end
-    it "should update permissions on existing groups" do
-      subject.permissions_attributes = [{:type=>"group", :access=>"read", :name=>"group1"}]
-      subject.permissions_attributes = [{:type=>"group", :access=>"edit", :name=>"group1"}]
-      subject.permissions.should == [Hydra::AccessControls::Permission.new(:type=>"group", :access=>"edit", :name=>"group1"),
-                                   Hydra::AccessControls::Permission.new(:type=>"user", :access=>"edit", :name=>"jcoyne")]
-    end
-    it "should remove permissions on existing users" do
-      subject.permissions_attributes = [{:type=>"user", :access=>"read", :name=>"user1"}]
-      subject.permissions_attributes = [{:type=>"user", :access=>"edit", :name=>"user1", _destroy: true}]
-      subject.permissions.should == [Hydra::AccessControls::Permission.new(:type=>"user", :access=>"edit", :name=>"jcoyne")]
-    end
-    it "should remove permissions on existing groups" do
-      subject.permissions_attributes = [{:type=>"group", :access=>"read", :name=>"group1"}]
-      subject.permissions_attributes = [{:type=>"group", :access=>"edit", :name=>"group1", _destroy: '1'}]
-      subject.permissions.should == [Hydra::AccessControls::Permission.new(:type=>"user", :access=>"edit", :name=>"jcoyne")]
-    end
-    it "should not remove when destroy flag is falsy" do
-      subject.permissions_attributes = [{:type=>"group", :access=>"read", :name=>"group1"}]
-      subject.permissions_attributes = [{:type=>"group", :access=>"edit", :name=>"group1", _destroy: '0'}]
-      subject.permissions.should == [ Hydra::AccessControls::Permission.new(:type=>"group", :access=>"edit", :name=>"group1"),
-                                      Hydra::AccessControls::Permission.new(:type=>"user", :access=>"edit", :name=>"jcoyne")]
+
+    describe "with the setter" do
+      before do
+        subject.permissions = [
+          Hydra::AccessControls::Permission.new(:type=>"group", :access=>"edit", :name=>"group1"),
+          Hydra::AccessControls::Permission.new(:type=>"user", :access=>"edit", :name=>"jcoyne")]
+      end
+      it "should set the permissions" do
+        expect(subject.edit_users).to eq ['jcoyne']
+        expect(subject.edit_groups).to eq ['group1']
+        subject.permissions = []
+        expect(subject.edit_users).to be_empty
+        expect(subject.edit_groups).to be_empty
+      end
+
     end
   end
   context "with rightsMetadata" do
@@ -96,29 +114,19 @@ describe Hydra::AccessControls::Permissions do
     it "should have read groups writer" do
       subject.read_groups = ['group-2', 'group-3']
       subject.rightsMetadata.groups.should == {'group-2' => 'read', 'group-3'=>'read', 'group-8' => 'edit'}
-      subject.rightsMetadata.individuals.should == {"person1"=>"read","person2"=>"discover"}
+      subject.rightsMetadata.users.should == {"person1"=>"read","person2"=>"discover"}
     end
 
     it "should have read groups string writer" do
       subject.read_groups_string = 'umg/up.dlt.staff, group-3'
       subject.rightsMetadata.groups.should == {'umg/up.dlt.staff' => 'read', 'group-3'=>'read', 'group-8' => 'edit'}
-      subject.rightsMetadata.individuals.should == {"person1"=>"read","person2"=>"discover"}
+      subject.rightsMetadata.users.should == {"person1"=>"read","person2"=>"discover"}
     end
     it "should only revoke eligible groups" do
       subject.set_read_groups(['group-2', 'group-3'], ['group-6'])
       # 'group-7' is not eligible to be revoked
       subject.rightsMetadata.groups.should == {'group-2' => 'read', 'group-3'=>'read', 'group-7' => 'read', 'group-8' => 'edit'}
-      subject.rightsMetadata.individuals.should == {"person1"=>"read","person2"=>"discover"}
-    end
-  end
-  describe "#permissions=" do
-    it "should behave like #permissions_attributes=" do
-      foo1 = Foo.new
-      foo2 = Foo.new
-      Deprecation.stub(:warn).and_return(nil)
-      foo1.permissions = [{type: "user", access: "edit", name: "editor"}]
-      foo2.permissions_attributes = [{type: "user", access: "edit", name: "editor"}]
-      foo1.permissions.should == foo2.permissions
+      subject.rightsMetadata.users.should == {"person1"=>"read","person2"=>"discover"}
     end
   end
 end

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: hydra-access-controls
 version: !ruby/object:Gem::Version
-  version: 6.5.2
+  version: 7.0.0.pre1
 platform: ruby
 authors:
 - Chris Beer
@@ -10,7 +10,7 @@ authors:
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2014-05-07 00:00:00.000000000 Z
+date: 2014-01-15 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: activesupport
@@ -32,14 +32,14 @@ dependencies:
     requirements:
     - - ~>
       - !ruby/object:Gem::Version
-        version: '6.7'
+        version: 7.0.0.pre2
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - ~>
       - !ruby/object:Gem::Version
-        version: '6.7'
+        version: 7.0.0.pre2
 - !ruby/object:Gem::Dependency
   name: cancan
   requirement: !ruby/object:Gem::Requirement
@@ -74,14 +74,14 @@ dependencies:
     requirements:
     - - ~>
       - !ruby/object:Gem::Version
-        version: '4.7'
+        version: '4.0'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - ~>
       - !ruby/object:Gem::Version
-        version: '4.7'
+        version: '4.0'
 - !ruby/object:Gem::Dependency
   name: rake
   requirement: !ruby/object:Gem::Requirement
@@ -136,10 +136,10 @@ files:
 - lib/hydra/access_controls_enforcement.rb
 - lib/hydra/access_controls_evaluation.rb
 - lib/hydra/admin_policy.rb
+- lib/hydra/config.rb
 - lib/hydra/datastream.rb
 - lib/hydra/datastream/inheritable_rights_metadata.rb
 - lib/hydra/datastream/rights_metadata.rb
-- lib/hydra/model_mixins/rights_metadata.rb
 - lib/hydra/permissions_cache.rb
 - lib/hydra/permissions_query.rb
 - lib/hydra/permissions_solr_document.rb
@@ -160,14 +160,13 @@ files:
 - spec/unit/access_controls_enforcement_spec.rb
 - spec/unit/access_right_spec.rb
 - spec/unit/admin_policy_spec.rb
+- spec/unit/config_spec.rb
 - spec/unit/hydra_rights_metadata_persistence_spec.rb
 - spec/unit/hydra_rights_metadata_spec.rb
 - spec/unit/inheritable_rights_metadata_spec.rb
-- spec/unit/permission_spec.rb
 - spec/unit/permissions_spec.rb
 - spec/unit/policy_aware_ability_spec.rb
 - spec/unit/policy_aware_access_controls_enforcement_spec.rb
-- spec/unit/rights_metadata_spec.rb
 - spec/unit/role_mapper_spec.rb
 - spec/unit/visibility_spec.rb
 - spec/unit/with_access_right_spec.rb
@@ -187,12 +186,12 @@ required_ruby_version: !ruby/object:Gem::Requirement
       version: 1.9.3
 required_rubygems_version: !ruby/object:Gem::Requirement
   requirements:
-  - - '>='
+  - - '>'
     - !ruby/object:Gem::Version
-      version: '0'
+      version: 1.3.1
 requirements: []
 rubyforge_project: 
-rubygems_version: 2.0.14
+rubygems_version: 2.1.11
 signing_key: 
 specification_version: 4
 summary: Access controls for project hydra
@@ -210,14 +209,13 @@ test_files:
 - spec/unit/access_controls_enforcement_spec.rb
 - spec/unit/access_right_spec.rb
 - spec/unit/admin_policy_spec.rb
+- spec/unit/config_spec.rb
 - spec/unit/hydra_rights_metadata_persistence_spec.rb
 - spec/unit/hydra_rights_metadata_spec.rb
 - spec/unit/inheritable_rights_metadata_spec.rb
-- spec/unit/permission_spec.rb
 - spec/unit/permissions_spec.rb
 - spec/unit/policy_aware_ability_spec.rb
 - spec/unit/policy_aware_access_controls_enforcement_spec.rb
-- spec/unit/rights_metadata_spec.rb
 - spec/unit/role_mapper_spec.rb
 - spec/unit/visibility_spec.rb
 - spec/unit/with_access_right_spec.rb

data/lib/hydra/model_mixins/rights_metadata.rb

@@ -1,27 +0,0 @@
-module Hydra
-  module ModelMixins
-    module RightsMetadata
-      extend ActiveSupport::Concern
-      extend Deprecation
-      include Hydra::AccessControls::Permissions
-
-      included do
-        Deprecation.warn(RightsMetadata, "Hydra::ModelMixins::RightsMetadata has been deprecated and will be removed in hydra-head 7.0. Use Hydra::AccessControls::Permissions instead", caller(3));
-      end
-
-      ## Returns a list with all the permissions on the object.
-      # @example
-      #  [{:name=>"group1", :access=>"discover", :type=>'group'},
-      #  {:name=>"group2", :access=>"discover", :type=>'group'},
-      #  {:name=>"user2", :access=>"read", :type=>'user'},
-      #  {:name=>"user1", :access=>"edit", :type=>'user'},
-      #  {:name=>"user3", :access=>"read", :type=>'user'}]
-      def permissions
-        (rightsMetadata.groups.map {|x| {:type=>'group', :access=>x[1], :name=>x[0] }} + 
-          rightsMetadata.individuals.map {|x| {:type=>'user', :access=>x[1], :name=>x[0]}})
-
-      end
-    
-    end
-  end
-end

data/spec/unit/permission_spec.rb

@@ -1,28 +0,0 @@
-require 'spec_helper'
-
-describe Hydra::AccessControls::Permission do
-  describe "hash-like key access" do
-    let(:perm) { described_class.new(type: 'user', name: 'bob', access: 'read') }
-    it "should return values" do
-      perm[:type].should == 'user'
-      perm[:name].should == 'bob'
-      perm[:access].should == 'read'
-    end
-  end
-  describe "#to_hash" do
-    subject { described_class.new(type: 'user', name: 'bob', access: 'read') }
-    its(:to_hash) { should == {type: 'user', name: 'bob', access: 'read'} }
-  end
-  describe "equality comparison" do
-    let(:perm1) { described_class.new(type: 'user', name: 'bob', access: 'read') }
-    let(:perm2) { described_class.new(type: 'user', name: 'bob', access: 'read') }
-    let(:perm3) { described_class.new(type: 'user', name: 'jane', access: 'read') }
-    it "should be equal if all values are equal" do
-      perm1.should == perm2
-    end
-    it "should be unequal if some values are unequal" do
-      perm1.should_not == perm3
-      perm2.should_not == perm3
-    end
-  end
-end