ingress 0.1.0 → 0.2.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +5 -5
- data/.ruby-version +1 -1
- data/.travis.yml +2 -2
- data/README.md +2 -2
- data/ingress.gemspec +2 -2
- data/lib/ingress/permissions.rb +11 -11
- data/lib/ingress/permissions_repository.rb +0 -12
- data/lib/ingress/version.rb +1 -1
- metadata +12 -11
- data/bin/console +0 -14
- data/bin/setup +0 -8
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
|
-
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
2
|
+
SHA256:
|
|
3
|
+
metadata.gz: 5f6fadfe0fa815422092e415f66fd83dc1915ce0cec8852544d877b1adb763f0
|
|
4
|
+
data.tar.gz: 731ff12c70dcbfbe16e1b6abb1c2162cd86aee4c4c4e643077280e1b8f90cab3
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: fb49bb4e9cae990a081babb2be38d814c443a6e7d60b2abf0c1eeb2d508e02f5a136e6ec4201f70555938adfe5a31f93216fd1aafba903f0f4d6016bdc263948
|
|
7
|
+
data.tar.gz: a92d7ae6f9246b5c0457744d1644fd0fc338c83b333cef0993f064fff8ee609098b7d9c841c6b71cbbdb97e5e7aff83bd131445ef22a901e86e13d1f6d440d63
|
data/.ruby-version
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
2.3
|
|
1
|
+
2.6.3
|
data/.travis.yml
CHANGED
data/README.md
CHANGED
|
@@ -285,13 +285,13 @@ This framework has no hooks into Rails (these would be trivial to write if neces
|
|
|
285
285
|
|
|
286
286
|
## Development
|
|
287
287
|
|
|
288
|
-
After checking out the repo, run `
|
|
288
|
+
After checking out the repo, run `script/setup` to install dependencies. Then, run `rake spec` to run the tests. You can also run `script/console` for an interactive prompt that will allow you to experiment.
|
|
289
289
|
|
|
290
290
|
To install this gem onto your local machine, run `bundle exec rake install`. To release a new version, update the version number in `version.rb`, and then run `bundle exec rake release`, which will create a git tag for the version, push git commits and tags, and push the `.gem` file to [rubygems.org](https://rubygems.org).
|
|
291
291
|
|
|
292
292
|
## Contributing
|
|
293
293
|
|
|
294
|
-
Bug reports and pull requests are welcome on GitHub at https://github.com/
|
|
294
|
+
Bug reports and pull requests are welcome on GitHub at https://github.com/skorks/ingress.
|
|
295
295
|
|
|
296
296
|
## License
|
|
297
297
|
|
data/ingress.gemspec
CHANGED
|
@@ -15,10 +15,10 @@ Gem::Specification.new do |spec|
|
|
|
15
15
|
|
|
16
16
|
spec.files = `git ls-files -z`.split("\x0").reject { |f| f.match(%r{^(test|spec|features)/}) }
|
|
17
17
|
spec.bindir = "bin"
|
|
18
|
-
spec.executables = spec.files.grep(%r{^
|
|
18
|
+
spec.executables = spec.files.grep(%r{^bin/}) { |f| File.basename(f) }
|
|
19
19
|
spec.require_paths = ["lib"]
|
|
20
20
|
|
|
21
|
-
spec.add_development_dependency "bundler", "
|
|
21
|
+
spec.add_development_dependency "bundler", ">= 1.10", "< 3"
|
|
22
22
|
spec.add_development_dependency "rake", "~> 10.0"
|
|
23
23
|
spec.add_development_dependency "rspec"
|
|
24
24
|
end
|
data/lib/ingress/permissions.rb
CHANGED
|
@@ -43,22 +43,22 @@ module Ingress
|
|
|
43
43
|
end
|
|
44
44
|
|
|
45
45
|
def can?(action, subject)
|
|
46
|
-
|
|
47
|
-
|
|
46
|
+
user_role_identifiers.any? do |role_identifier|
|
|
47
|
+
rules = self.class.permissions_repository.rules_for(role_identifier, action, subject)
|
|
48
|
+
|
|
49
|
+
cannot_match = rules.reject(&:allows?).any? do |rule|
|
|
50
|
+
rule.match?(action, subject, user)
|
|
51
|
+
end
|
|
52
|
+
break false if cannot_match
|
|
53
|
+
|
|
54
|
+
rules.select(&:allows?).any? do |rule|
|
|
55
|
+
rule.match?(action, subject, user)
|
|
56
|
+
end
|
|
48
57
|
end
|
|
49
58
|
end
|
|
50
59
|
|
|
51
60
|
def user_role_identifiers
|
|
52
61
|
[]
|
|
53
62
|
end
|
|
54
|
-
|
|
55
|
-
private
|
|
56
|
-
|
|
57
|
-
def find_matching_rules(action, subject)
|
|
58
|
-
user_role_identifiers.reduce([]) do |rules, role_identifier|
|
|
59
|
-
rules += self.class.permissions_repository.rules_for(role_identifier, action, subject)
|
|
60
|
-
rules
|
|
61
|
-
end
|
|
62
|
-
end
|
|
63
63
|
end
|
|
64
64
|
end
|
|
@@ -21,7 +21,6 @@ module Ingress
|
|
|
21
21
|
rules += find_rules(role_identifier, "*", "*")
|
|
22
22
|
rules += find_rules(role_identifier, action, "*")
|
|
23
23
|
rules += find_rules(role_identifier, "*", subject)
|
|
24
|
-
rules = apply_negative_rules(rules)
|
|
25
24
|
|
|
26
25
|
rules
|
|
27
26
|
end
|
|
@@ -46,17 +45,6 @@ module Ingress
|
|
|
46
45
|
|
|
47
46
|
private
|
|
48
47
|
|
|
49
|
-
def apply_negative_rules(rules)
|
|
50
|
-
# remove rules that cancel each other out since we're within the
|
|
51
|
-
# context of 1 role, i.e. if any rule is a negation it will
|
|
52
|
-
# cancel all other ones
|
|
53
|
-
if rules.any? { |rule| !rule.allows? }
|
|
54
|
-
[]
|
|
55
|
-
else
|
|
56
|
-
rules
|
|
57
|
-
end
|
|
58
|
-
end
|
|
59
|
-
|
|
60
48
|
def find_rules(role_identifier, action, subject)
|
|
61
49
|
rules = []
|
|
62
50
|
rules += @role_subject_action_rule[role_identifier][subject][action]
|
data/lib/ingress/version.rb
CHANGED
metadata
CHANGED
|
@@ -1,29 +1,35 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: ingress
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.
|
|
4
|
+
version: 0.2.0
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Alan Skorkin
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date:
|
|
11
|
+
date: 2019-07-02 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: bundler
|
|
15
15
|
requirement: !ruby/object:Gem::Requirement
|
|
16
16
|
requirements:
|
|
17
|
-
- - "
|
|
17
|
+
- - ">="
|
|
18
18
|
- !ruby/object:Gem::Version
|
|
19
19
|
version: '1.10'
|
|
20
|
+
- - "<"
|
|
21
|
+
- !ruby/object:Gem::Version
|
|
22
|
+
version: '3'
|
|
20
23
|
type: :development
|
|
21
24
|
prerelease: false
|
|
22
25
|
version_requirements: !ruby/object:Gem::Requirement
|
|
23
26
|
requirements:
|
|
24
|
-
- - "
|
|
27
|
+
- - ">="
|
|
25
28
|
- !ruby/object:Gem::Version
|
|
26
29
|
version: '1.10'
|
|
30
|
+
- - "<"
|
|
31
|
+
- !ruby/object:Gem::Version
|
|
32
|
+
version: '3'
|
|
27
33
|
- !ruby/object:Gem::Dependency
|
|
28
34
|
name: rake
|
|
29
35
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -55,9 +61,7 @@ dependencies:
|
|
|
55
61
|
description:
|
|
56
62
|
email:
|
|
57
63
|
- alan@skorks.com
|
|
58
|
-
executables:
|
|
59
|
-
- console
|
|
60
|
-
- setup
|
|
64
|
+
executables: []
|
|
61
65
|
extensions: []
|
|
62
66
|
extra_rdoc_files: []
|
|
63
67
|
files:
|
|
@@ -69,8 +73,6 @@ files:
|
|
|
69
73
|
- LICENSE.txt
|
|
70
74
|
- README.md
|
|
71
75
|
- Rakefile
|
|
72
|
-
- bin/console
|
|
73
|
-
- bin/setup
|
|
74
76
|
- ingress.gemspec
|
|
75
77
|
- lib/ingress.rb
|
|
76
78
|
- lib/ingress/build_permissions_repository_for_role.rb
|
|
@@ -101,8 +103,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
|
|
|
101
103
|
- !ruby/object:Gem::Version
|
|
102
104
|
version: '0'
|
|
103
105
|
requirements: []
|
|
104
|
-
|
|
105
|
-
rubygems_version: 2.5.1
|
|
106
|
+
rubygems_version: 3.0.3
|
|
106
107
|
signing_key:
|
|
107
108
|
specification_version: 4
|
|
108
109
|
summary: Simple role based authorization for Ruby applications
|
data/bin/console
DELETED
|
@@ -1,14 +0,0 @@
|
|
|
1
|
-
#!/usr/bin/env ruby
|
|
2
|
-
|
|
3
|
-
require "bundler/setup"
|
|
4
|
-
require "ingress"
|
|
5
|
-
|
|
6
|
-
# You can add fixtures and/or initialization code here to make experimenting
|
|
7
|
-
# with your gem easier. You can also use a different console, if you like.
|
|
8
|
-
|
|
9
|
-
# (If you use this, don't forget to add pry to your Gemfile!)
|
|
10
|
-
# require "pry"
|
|
11
|
-
# Pry.start
|
|
12
|
-
|
|
13
|
-
require "irb"
|
|
14
|
-
IRB.start(__FILE__)
|