hydra-access-controls 9.2.0.rc1 → 9.2.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (4) hide show
  1. checksums.yaml +4 -4
  2. data/app/models/concerns/hydra/access_controls/permissions.rb +11 -2
  3. data/spec/unit/permissions_spec.rb +77 -52
  4. metadata +4 -4
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA1:
3
- metadata.gz: 361ce3b1b9ae7f917b0f671b2536f5965950ff28
4
- data.tar.gz: 43a7d26a5d9ad1f913b7827ce56abcd4455d7e73
3
+ metadata.gz: 253a587f6be8c789190ce4652d72a76c96192c1b
4
+ data.tar.gz: b8b48f8969ffac5925ad5a1f80c0a82de1e92c9c
5
5
  SHA512:
6
- metadata.gz: 6d003ee8f236a5fdc56bbe001e722439023e89d3a9d58b6bb4d6420dca05aa529ba164220b289c8a5e783cdbd3803e2c2d3ad6a626799e5ac58b27f72ef0847b
7
- data.tar.gz: abeb83a756abe8e91fe5f88f56e8e35a0918c5e5d27a2ba297868a436778272128474183976c2d61123a64bf86c1c46614fff3ea9bb87a4157fd5f34a4a34e95
6
+ metadata.gz: 48166e2c463853f451ca6526a160c50c458f9bcb7b0d18703c8f85db33a48160ebdd7e0a474b228c3d3304927892a82613474ddaa37d0eaa2c52288f74dbedd8
7
+ data.tar.gz: 1948d7ec0915657d4458ba332c751e554df761f72dbcd04320a1cb26c067e66ffd572b42b16c4e9e032a3b44eaed2da0cef38fcd40ce7a152c16dda813af1cff
data/app/models/concerns/hydra/access_controls/permissions.rb CHANGED
@@ -392,9 +392,18 @@ module Hydra
392
392
  def search_by_type_and_mode(type, mode)
393
393
  case type
394
394
  when :group
395
- permissions.to_a.select { |p| group_agent?(p.agent) && p.mode.first.rdf_subject == mode }
395
+ search_by_mode(mode) { |agent| group_agent?(agent) }
396
396
  when :person
397
- permissions.to_a.select { |p| person_agent?(p.agent) && p.mode.first.rdf_subject == mode }
397
+ search_by_mode(mode) { |agent| person_agent?(agent) }
398
+ end
399
+ end
400
+
401
+ # @param [RDF::URI] mode One of the permissions modes, e.g. ACL.Write, ACL.Read, etc.
402
+ # @yieldparam [Array<ActiveFedora::Base>] agent the agent type assertions
403
+ # @return [Array<Permission>] list of permissions where the mode is as selected, the block evaluates to true and the target is not marked for delete
404
+ def search_by_mode(mode, &block)
405
+ permissions.to_a.select do |p|
406
+ yield(p.agent) && !p.marked_for_destruction? && p.mode.first.rdf_subject == mode
398
407
  end
399
408
  end
400
409
 
data/spec/unit/permissions_spec.rb CHANGED
@@ -19,11 +19,11 @@ describe Hydra::AccessControls::Permissions do
19
19
  subject.read_groups=['group1', 'group2']
20
20
  subject.edit_users=['user1']
21
21
  subject.read_users=['user2', 'user3']
22
- expect(subject.permissions).to match_array [Hydra::AccessControls::Permission.new(:type=>"group", :access=>"read", :name=>"group1"),
23
- Hydra::AccessControls::Permission.new({:type=>"group", :access=>"read", :name=>"group2"}),
24
- Hydra::AccessControls::Permission.new({:type=>"person", :access=>"read", :name=>"user2"}),
25
- Hydra::AccessControls::Permission.new({:type=>"person", :access=>"read", :name=>"user3"}),
26
- Hydra::AccessControls::Permission.new({:type=>"person", :access=>"edit", :name=>"user1"})]
22
+ expect(subject.permissions).to match_array [Hydra::AccessControls::Permission.new(type: "group", access: "read", name: "group1"),
23
+ Hydra::AccessControls::Permission.new({ type: "group", access: "read", name: "group2" }),
24
+ Hydra::AccessControls::Permission.new({ type: "person", access: "read", name: "user2" }),
25
+ Hydra::AccessControls::Permission.new({ type: "person", access: "read", name: "user3" }),
26
+ Hydra::AccessControls::Permission.new({ type: "person", access: "edit", name: "user1" })]
27
27
  end
28
28
 
29
29
  describe "building a new permission" do
@@ -40,33 +40,33 @@ describe Hydra::AccessControls::Permissions do
40
40
  describe "with nested attributes" do
41
41
  before do
42
42
  subject.save!
43
- subject.permissions_attributes = [{:type=>"person", :access=>"edit", :name=>"jcoyne"}]
43
+ subject.permissions_attributes = [{ type: "person", access: "edit", name: "jcoyne" }]
44
44
  end
45
45
  context "when a hash is passed" do
46
46
  before do
47
- subject.permissions_attributes = {'0' => {type: "group", access:"read", name:"group1"},
48
- '1' => {type: 'person', access: 'edit', name: 'user2'}}
47
+ subject.permissions_attributes = {'0' => { type: "group", access:"read", name:"group1" },
48
+ '1' => { type: 'person', access: 'edit', name: 'user2' }}
49
49
  end
50
50
  it "should handle a hash" do
51
51
  expect(subject.permissions.size).to eq 3
52
52
  expect(subject.permissions.to_a).to all(be_a(Hydra::AccessControls::Permission))
53
53
  expect(subject.permissions.map(&:to_hash)).to match_array [
54
- {type: "person", access: "edit", name: "jcoyne"},
55
- {type: "group", access: "read", name: "group1"},
56
- {type: "person", access: "edit", name: "user2"}]
54
+ { type: "person", access: "edit", name: "jcoyne" },
55
+ { type: "group", access: "read", name: "group1" },
56
+ { type: "person", access: "edit", name: "user2" }]
57
57
  end
58
58
  end
59
59
 
60
- it "should create new group permissions" do
61
- subject.permissions_attributes = [{type: "group", access: "read", name: "group1"}]
60
+ it "creates new group permissions" do
61
+ subject.permissions_attributes = [{ type: "group", access: "read", name: "group1" }]
62
62
  expect(subject.permissions.size).to eq 2
63
63
  expect(subject.permissions.to_a).to all(be_a(Hydra::AccessControls::Permission))
64
64
  expect(subject.permissions[0].to_hash).to eq(type: "person", access: "edit", name: "jcoyne")
65
65
  expect(subject.permissions[1].to_hash).to eq(type: "group", access: "read", name: "group1")
66
66
  end
67
67
 
68
- it "should create new user permissions" do
69
- subject.permissions_attributes = [{:type=>"person", :access=>"read", :name=>"user1"}]
68
+ it "creates new user permissions" do
69
+ subject.permissions_attributes = [{ type: "person", access: "read", name: "user1" }]
70
70
  expect(subject.permissions.size).to eq 2
71
71
  expect(subject.permissions.to_a).to all(be_a(Hydra::AccessControls::Permission))
72
72
  expect(subject.permissions[0].to_hash).to eq(type: "person", access: "edit", name: "jcoyne")
@@ -74,9 +74,9 @@ describe Hydra::AccessControls::Permissions do
74
74
  end
75
75
 
76
76
  context "when called multiple times" do
77
- it "should not replace existing groups" do
78
- subject.permissions_attributes = [{:type=>"group", :access=>"read", :name=>"group1"}]
79
- subject.permissions_attributes = [{:type=>"group", :access=>"read", :name=>"group2"}]
77
+ it "doesn't replace existing groups" do
78
+ subject.permissions_attributes = [{ type: "group", access: "read", name: "group1" }]
79
+ subject.permissions_attributes = [{ type: "group", access: "read", name: "group2" }]
80
80
  expect(subject.permissions.size).to eq 3
81
81
  expect(subject.permissions.to_a).to all(be_a(Hydra::AccessControls::Permission))
82
82
  expect(subject.permissions[0].to_hash).to eq(type: "person", access: "edit", name: "jcoyne")
@@ -84,9 +84,9 @@ describe Hydra::AccessControls::Permissions do
84
84
  expect(subject.permissions[2].to_hash).to eq(type: "group", access: "read", name: "group2")
85
85
  end
86
86
 
87
- it "should not replace existing users" do
88
- subject.permissions_attributes = [{:type=>"person", :access=>"read", :name=>"user1"}]
89
- subject.permissions_attributes = [{:type=>"person", :access=>"read", :name=>"user2"}]
87
+ it "doesn't replace existing users" do
88
+ subject.permissions_attributes = [{ type: "person", access: "read", name: "user1" }]
89
+ subject.permissions_attributes = [{ type: "person", access: "read", name: "user2" }]
90
90
  expect(subject.permissions.size).to eq 3
91
91
  expect(subject.permissions.to_a).to all(be_a(Hydra::AccessControls::Permission))
92
92
  expect(subject.permissions[0].to_hash).to eq(type: "person", access: "edit", name: "jcoyne")
@@ -94,49 +94,74 @@ describe Hydra::AccessControls::Permissions do
94
94
  expect(subject.permissions[2].to_hash).to eq(type: "person", access: "read", name: "user2")
95
95
  end
96
96
 
97
- it "should update permissions on existing users" do
98
- subject.update permissions_attributes: [{:type=>"person", :access=>"read", :name=>"user1"}]
99
- subject.update permissions_attributes: [{:type=>"person", :access=>"edit", :name=>"user1"}]
97
+ it "updates permissions on existing users" do
98
+ subject.update permissions_attributes: [{ type: "person", access: "read", name: "user1" }]
99
+ subject.update permissions_attributes: [{ type: "person", access: "edit", name: "user1" }]
100
100
  expect(subject.permissions.size).to eq 2
101
101
  expect(subject.permissions.to_a).to all(be_a(Hydra::AccessControls::Permission))
102
102
  expect(subject.permissions[0].to_hash).to eq(type: "person", access: "edit", name: "jcoyne")
103
103
  expect(subject.permissions[1].to_hash).to eq(type: "person", access: "edit", name: "user1")
104
104
  end
105
105
 
106
- it "should update permissions on existing groups" do
107
- subject.update permissions_attributes: [{:type=>"group", :access=>"read", :name=>"group1"}]
108
- subject.update permissions_attributes: [{:type=>"group", :access=>"edit", :name=>"group1"}]
106
+ it "updates permissions on existing groups" do
107
+ subject.update permissions_attributes: [{ type: "group", access: "read", name: "group1" }]
108
+ subject.update permissions_attributes: [{ type: "group", access: "edit", name: "group1" }]
109
109
  expect(subject.permissions.map(&:to_hash)).to match_array [
110
- {:type=>"group", :access=>"edit", :name=>"group1"},
111
- {:type=>"person", :access=>"edit", :name=>"jcoyne"}]
110
+ { type: "group", access: "edit", name: "group1" },
111
+ { type: "person", access: "edit", name: "jcoyne" }]
112
112
  end
113
113
  end
114
114
 
115
- it "should remove permissions on existing users" do
116
- subject.update permissions_attributes: [{:type=>"person", :access=>"read", :name=>"user1"}]
117
- subject.update permissions_attributes: [{:id=>ActiveFedora::Base.uri_to_id(subject.permissions.last.rdf_subject.to_s), :type=>"person", :access=>"edit", :name=>"user1", _destroy: true}]
118
- expect(subject.permissions.reload.map(&:to_hash)).to eq [{ :name=>"jcoyne", :type=>"person", :access=>"edit" }]
119
- end
115
+ context "when the destroy flag is set" do
116
+ let(:reloaded) { subject.permissions.reload.map(&:to_hash) }
117
+ let(:permissions_id) { ActiveFedora::Base.uri_to_id(subject.permissions.last.rdf_subject.to_s) }
118
+
119
+ context "to a truthy value" do
120
+ context "when updating users" do
121
+ before do
122
+ subject.update permissions_attributes: [{ type: "person", access: "read", name: "user1" }]
123
+ subject.update permissions_attributes: [{ id: permissions_id, type: "person", access: "edit", name: "user1", _destroy: true}]
124
+ end
125
+
126
+ it "removes permissions on existing users" do
127
+ indexed_result = ActiveFedora::SolrService.query("id:#{subject.id}").first['edit_access_person_ssim']
128
+ expect(indexed_result).to eq ['jcoyne']
129
+ expect(reloaded).to eq [{ name: "jcoyne", type: "person", access: "edit" }]
130
+ end
131
+ end
132
+
133
+ context "when updating groups" do
134
+ before do
135
+ subject.update permissions_attributes: [{ type: "group", access: "read", name: "group1" }]
136
+ subject.update permissions_attributes: [{ id: permissions_id, type: "group", access: "edit", name: "group1", _destroy: '1' }]
137
+ end
138
+
139
+ it "removes permissions on existing groups" do
140
+ #See what actually gets stored in solr
141
+ indexed_result = ActiveFedora::SolrService.query("id:#{subject.id}").first['edit_access_group_ssim']
142
+ expect(indexed_result).to be_nil
143
+ expect(reloaded).to eq [{ type: "person", access: "edit", name: "jcoyne" }]
144
+ end
145
+ end
146
+ end
120
147
 
121
- it "should remove permissions on existing groups" do
122
- subject.update permissions_attributes: [{:type=>"group", :access=>"read", :name=>"group1"}]
123
- subject.update permissions_attributes: [{:id=>ActiveFedora::Base.uri_to_id(subject.permissions.last.rdf_subject.to_s), :type=>"group", :access=>"edit", :name=>"group1", _destroy: '1'}]
124
- expect(subject.permissions.reload.map(&:to_hash)).to eq [{:type=>"person", :access=>"edit", :name=>"jcoyne"}]
125
- end
148
+ context "to a falsy value" do
126
149
 
127
- it "should not remove when destroy flag is falsy" do
128
- subject.update permissions_attributes: [{:type=>"group", :access=>"read", :name=>"group1"}]
129
- subject.update permissions_attributes: [{:id=>ActiveFedora::Base.uri_to_id(subject.permissions.last.rdf_subject.to_s), :type=>"group", :access=>"edit", :name=>"group1", _destroy: '0'}]
130
- expect(subject.permissions.reload.map(&:to_hash)).to match_array [{:type=>"group", :access=>"edit", :name=>"group1"},
131
- {:type=>"person", :access=>"edit", :name=>"jcoyne"}]
150
+ it "doesn't remove the record" do
151
+ subject.update permissions_attributes: [{ type: "group", access: "read", name: "group1" }]
152
+ subject.update permissions_attributes: [{ id: permissions_id, type: "group", access: "edit", name: "group1", _destroy: '0' }]
153
+ expect(reloaded).to match_array [{ type: "group", access: "edit", name: "group1" },
154
+ { type: "person", access: "edit", name: "jcoyne" }]
155
+ end
156
+ end
132
157
  end
133
158
  end
134
159
 
135
160
  describe "with the setter" do
136
161
  before do
137
162
  subject.permissions = [
138
- Hydra::AccessControls::Permission.new(:type=>"group", :access=>"edit", :name=>"group1"),
139
- Hydra::AccessControls::Permission.new(:type=>"person", :access=>"edit", :name=>"jcoyne")]
163
+ Hydra::AccessControls::Permission.new(type: "group", access: "edit", name: "group1"),
164
+ Hydra::AccessControls::Permission.new(type: "person", access: "edit", name: "jcoyne")]
140
165
  subject.save!
141
166
  end
142
167
  it "should set the permissions" do
@@ -177,12 +202,12 @@ describe Hydra::AccessControls::Permissions do
177
202
  subject.set_read_groups(['group-2', 'group-3'], ['group-6'])
178
203
  # 'group-7' is not eligible to be revoked
179
204
  expect(subject.permissions.map(&:to_hash)).to match_array([
180
- {name: 'group-2', type: 'group', access: 'read'},
181
- {name: 'group-3', type: 'group', access: 'read'},
182
- {name: 'group-7', type: 'group', access: 'read'},
183
- {name: 'group-8', type: 'group', access: 'edit'},
184
- {name: 'person1', type: 'person', access: 'read'},
185
- {name: 'person2', type: 'person', access: 'discover'}])
205
+ { name: 'group-2', type: 'group', access: 'read' },
206
+ { name: 'group-3', type: 'group', access: 'read' },
207
+ { name: 'group-7', type: 'group', access: 'read' },
208
+ { name: 'group-8', type: 'group', access: 'edit' },
209
+ { name: 'person1', type: 'person', access: 'read' },
210
+ { name: 'person2', type: 'person', access: 'discover' }])
186
211
  end
187
212
  end
188
213
  end
metadata CHANGED
@@ -1,7 +1,7 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: hydra-access-controls
3
3
  version: !ruby/object:Gem::Version
4
- version: 9.2.0.rc1
4
+ version: 9.2.0
5
5
  platform: ruby
6
6
  authors:
7
7
  - Chris Beer
@@ -10,7 +10,7 @@ authors:
10
10
  autorequire:
11
11
  bindir: bin
12
12
  cert_chain: []
13
- date: 2015-06-30 00:00:00.000000000 Z
13
+ date: 2015-07-08 00:00:00.000000000 Z
14
14
  dependencies:
15
15
  - !ruby/object:Gem::Dependency
16
16
  name: activesupport
@@ -213,9 +213,9 @@ required_ruby_version: !ruby/object:Gem::Requirement
213
213
  version: 1.9.3
214
214
  required_rubygems_version: !ruby/object:Gem::Requirement
215
215
  requirements:
216
- - - ">"
216
+ - - ">="
217
217
  - !ruby/object:Gem::Version
218
- version: 1.3.1
218
+ version: '0'
219
219
  requirements: []
220
220
  rubyforge_project:
221
221
  rubygems_version: 2.4.8