jakewendt-simply_authorized 1.3.6

data/test/app/controllers/home_controller.rb

@@ -0,0 +1,10 @@
+class HomeController < ApplicationController
+
+	skip_before_filter :login_required
+
+	def show
+		render :text => 'You are home.',
+			:layout => true
+	end
+
+end

data/test/app/controllers/users_controller.rb

@@ -0,0 +1,43 @@
+class UsersController < ApplicationController
+
+	skip_before_filter :login_required, :only => :menu
+
+	before_filter :id_required, 
+		:only => [:edit, :show, :update, :destroy]
+	before_filter :may_view_user_required, 
+		:except => [:index,:menu]
+	before_filter :may_view_users_required, 
+		:only => :index
+
+	ssl_allowed :menu
+
+	def menu
+		respond_to do |format|
+			format.js {}
+		end
+	end
+
+	def show
+		@roles = Role.all
+	end
+
+	def index
+		@users = User.find(:all)
+	end
+
+	def destroy
+		@user.destroy
+		redirect_to users_path
+	end
+
+protected
+
+	def id_required
+		if !params[:id].blank? and User.exists?(params[:id])
+			@user = User.find(params[:id])
+		else
+			access_denied("user id required!", users_path)
+		end
+	end
+
+end

data/test/app/models/user.rb

@@ -0,0 +1,3 @@
+class User < ActiveRecord::Base
+	authorized
+end

data/test/config/routes.rb

@@ -0,0 +1,11 @@
+ActionController::Routing::Routes.draw do |map|
+
+	map.resources :users, :only => [:destroy,:show,:index],
+		:collection => { :menu => :get } do |user|
+		user.resources :roles, :only => [:update,:destroy]
+	end
+
+	map.resource :home, :only => :show
+	map.root :controller => :home, :action => :show
+
+end

data/test/functional/authorized/roles_controller_test.rb

@@ -0,0 +1,143 @@
+#require File.dirname(__FILE__) + '/../../test_helper'
+require 'test_helper'
+
+class SimplyAuthorized::RolesControllerTest < ActionController::TestCase
+	tests RolesController
+
+	#	no user_id
+	assert_no_route(:put, :update, :id => 'reader')
+	assert_no_route(:delete, :destroy, :id => 'reader')
+
+%w( super_user admin ).each do |cu|
+
+	test "should update with #{cu} login" do
+		login_as send(cu)
+		u = active_user
+		assert !u.reload.role_names.include?('reader')
+		assert_difference("User.find(#{u.id}).roles.length",1){
+			put :update, :user_id => u.id, :id => 'reader'
+		}
+		assert  u.reload.role_names.include?('reader')
+		assert_not_nil flash[:notice]
+		assert_redirected_to user_path(assigns(:user))
+	end
+
+	test "should destroy with #{cu} login" do
+		login_as send(cu)
+		u = active_user
+		u.roles << Role.find_or_create_by_name('reader')
+		assert  u.reload.role_names.include?('reader')
+		assert_difference("User.find(#{u.id}).roles.length",-1){
+			delete :destroy, :user_id => u.id, :id => 'reader'
+		}
+		assert !u.reload.role_names.include?('reader')
+		assert_not_nil flash[:notice]
+		assert_redirected_to user_path(assigns(:user))
+	end
+
+	test "should NOT update without valid user_id with #{cu} login" do
+		login_as send(cu)
+		put :update, :user_id => 0, :id => 'reader'
+		assert_not_nil flash[:error]
+		assert_redirected_to users_path
+	end
+
+	test "should NOT destroy without valid user_id with #{cu} login" do
+		login_as send(cu)
+		delete :destroy, :user_id => 0, :id => 'reader'
+		assert_not_nil flash[:error]
+		assert_redirected_to users_path
+	end
+
+	test "should NOT update self with #{cu} login" do
+		u = send(cu)
+		login_as u
+		assert_difference("User.find(#{u.id}).roles.length",0){
+			put :update, :user_id => u.id, :id => 'reader'
+		}
+		assert_not_nil flash[:error]
+		assert_equal u, assigns(:user)
+		assert_redirected_to user_path(assigns(:user))
+#		assert_redirected_to root_path
+	end
+
+	test "should NOT destroy self with #{cu} login" do
+		u = send(cu)
+		login_as u
+		assert_difference("User.find(#{u.id}).roles.length",0){
+			delete :destroy, :user_id => u.id, :id => 'reader'
+		}
+		assert_not_nil flash[:error]
+		assert_equal u, assigns(:user)
+		assert_redirected_to user_path(assigns(:user))
+#		assert_redirected_to root_path
+	end
+
+	test "should NOT update without valid role_name with #{cu} login" do
+		login_as send(cu)
+		u = active_user
+		assert_difference("User.find(#{u.id}).roles.length",0){
+			put :update, :user_id => u.id, :id => 'bogus_role_name'
+		}
+		assert_not_nil flash[:error]
+		assert_redirected_to user_path(assigns(:user))
+	end
+
+	test "should NOT destroy without valid role_name with #{cu} login" do
+		login_as send(cu)
+		u = active_user
+		assert_difference("User.find(#{u.id}).roles.length",0){
+			delete :destroy, :user_id => u.id, :id => 'bogus_role_name'
+		}
+		assert_not_nil flash[:error]
+		assert_redirected_to user_path(assigns(:user))
+	end
+
+end
+
+%w( interviewer reader editor active_user ).each do |cu|
+
+	test "should NOT update with #{cu} login" do
+		login_as send(cu)
+		u = active_user
+		assert !u.reload.role_names.include?('administrator')
+		assert_difference("User.find(#{u.id}).roles.length",0){
+			put :update, :user_id => u.id, :id => 'administrator'
+		}
+		assert !u.reload.role_names.include?('administrator')
+		assert_not_nil flash[:error]
+		assert_redirected_to root_path
+	end
+
+	test "should NOT destroy with #{cu} login" do
+		login_as send(cu)
+		u = active_user
+		u.roles << Role.find_or_create_by_name('administrator')
+		assert u.reload.role_names.include?('administrator')
+		assert_difference("User.find(#{u.id}).roles.length",0){
+			delete :destroy, :user_id => u.id, :id => 'administrator'
+		}
+		assert u.reload.role_names.include?('administrator')
+		assert_not_nil flash[:error]
+		assert_redirected_to root_path
+	end
+
+end
+
+	test "should NOT update without login" do
+		u = active_user
+		assert_difference("User.find(#{u.id}).roles.length",0){
+			put :update, :user_id => u.id, :id => 'administrator'
+		}
+		assert_redirected_to_login
+	end
+
+	test "should NOT destroy without login" do
+		u = active_user
+		assert_difference("User.find(#{u.id}).roles.length",0){
+			delete :destroy, :user_id => u.id, :id => 'administrator'
+		}
+		assert_redirected_to_login
+	end
+
+end

data/test/unit/authorized/role_test.rb

@@ -0,0 +1,30 @@
+#require File.dirname(__FILE__) + '/../../test_helper'
+require 'test_helper'
+
+class SimplyAuthorized::RoleTest < ActiveSupport::TestCase
+
+	assert_should_act_as_list(:model => 'Role')
+	assert_should_require(:name,
+		:model => 'Role')
+	assert_should_require_unique(:name,
+		:model => 'Role')
+	assert_should_habtm(:users,
+		:model => 'Role')
+
+	test "should create role" do
+		assert_difference('Role.count',1) do
+			object = create_object
+			assert !object.new_record?, 
+				"#{object.errors.full_messages.to_sentence}"
+		end 
+	end
+
+protected
+
+	def create_object(options = {})
+		record = Factory.build(:role,options)
+		record.save
+		record
+	end
+
+end

metadata

@@ -0,0 +1,167 @@
+--- !ruby/object:Gem::Specification 
+name: jakewendt-simply_authorized
+version: !ruby/object:Gem::Version 
+  hash: 23
+  prerelease: 
+  segments: 
+  - 1
+  - 3
+  - 6
+  version: 1.3.6
+platform: ruby
+authors: 
+- George 'Jake' Wendt
+autorequire: 
+bindir: bin
+cert_chain: []
+
+date: 2011-08-10 00:00:00 -07:00
+default_executable: 
+dependencies: 
+- !ruby/object:Gem::Dependency 
+  name: rails
+  prerelease: false
+  requirement: &id001 !ruby/object:Gem::Requirement 
+    none: false
+    requirements: 
+    - - ~>
+      - !ruby/object:Gem::Version 
+        hash: 7
+        segments: 
+        - 2
+        version: "2"
+  type: :runtime
+  version_requirements: *id001
+- !ruby/object:Gem::Dependency 
+  name: jakewendt-ruby_extension
+  prerelease: false
+  requirement: &id002 !ruby/object:Gem::Requirement 
+    none: false
+    requirements: 
+    - - ">="
+      - !ruby/object:Gem::Version 
+        hash: 3
+        segments: 
+        - 0
+        version: "0"
+  type: :runtime
+  version_requirements: *id002
+- !ruby/object:Gem::Dependency 
+  name: jakewendt-rails_extension
+  prerelease: false
+  requirement: &id003 !ruby/object:Gem::Requirement 
+    none: false
+    requirements: 
+    - - ">="
+      - !ruby/object:Gem::Version 
+        hash: 3
+        segments: 
+        - 0
+        version: "0"
+  type: :runtime
+  version_requirements: *id003
+- !ruby/object:Gem::Dependency 
+  name: ryanb-acts-as-list
+  prerelease: false
+  requirement: &id004 !ruby/object:Gem::Requirement 
+    none: false
+    requirements: 
+    - - ">="
+      - !ruby/object:Gem::Version 
+        hash: 3
+        segments: 
+        - 0
+        version: "0"
+  type: :runtime
+  version_requirements: *id004
+description: longer description of your gem
+email: github@jake.otherinbox.com
+executables: []
+
+extensions: []
+
+extra_rdoc_files: 
+- README.rdoc
+files: 
+- app/controllers/roles_controller.rb
+- app/models/role.rb
+- config/routes.rb
+- generators/simply_authorized/USAGE
+- generators/simply_authorized/simply_authorized_generator.rb
+- generators/simply_authorized/templates/autotest_simply_authorized.rb
+- generators/simply_authorized/templates/functional/roles_controller_test.rb
+- generators/simply_authorized/templates/migrations/create_roles.rb
+- generators/simply_authorized/templates/migrations/create_roles_users.rb
+- generators/simply_authorized/templates/simply_authorized.rake
+- generators/simply_authorized/templates/stylesheets/authorized.css
+- generators/simply_authorized/templates/unit/role_test.rb
+- lib/jakewendt-simply_authorized.rb
+- lib/simply_authorized.rb
+- lib/simply_authorized/authorization.rb
+- lib/simply_authorized/autotest.rb
+- lib/simply_authorized/controller.rb
+- lib/simply_authorized/core_extension.rb
+- lib/simply_authorized/factories.rb
+- lib/simply_authorized/factory_test_helper.rb
+- lib/simply_authorized/helper.rb
+- lib/simply_authorized/permissive_controller.rb
+- lib/simply_authorized/resourceful_controller.rb
+- lib/simply_authorized/tasks.rb
+- lib/simply_authorized/test_tasks.rb
+- lib/simply_authorized/user_model.rb
+- lib/tasks/application.rake
+- lib/tasks/database.rake
+- lib/tasks/documentation.rake
+- lib/tasks/rcov.rake
+- lib/tasks/simply_sessions.rake
+- rails/init.rb
+- README.rdoc
+- test/app/controllers/application_controller.rb
+- test/app/controllers/home_controller.rb
+- test/app/controllers/users_controller.rb
+- test/app/models/user.rb
+- test/config/routes.rb
+- test/functional/authorized/roles_controller_test.rb
+- test/unit/authorized/role_test.rb
+has_rdoc: true
+homepage: http://github.com/jakewendt/simply_authorized
+licenses: []
+
+post_install_message: 
+rdoc_options: []
+
+require_paths: 
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement 
+  none: false
+  requirements: 
+  - - ">="
+    - !ruby/object:Gem::Version 
+      hash: 3
+      segments: 
+      - 0
+      version: "0"
+required_rubygems_version: !ruby/object:Gem::Requirement 
+  none: false
+  requirements: 
+  - - ">="
+    - !ruby/object:Gem::Version 
+      hash: 3
+      segments: 
+      - 0
+      version: "0"
+requirements: []
+
+rubyforge_project: 
+rubygems_version: 1.6.2
+signing_key: 
+specification_version: 3
+summary: one-line summary of your gem
+test_files: 
+- test/app/controllers/application_controller.rb
+- test/app/controllers/home_controller.rb
+- test/app/controllers/users_controller.rb
+- test/app/models/user.rb
+- test/config/routes.rb
+- test/functional/authorized/roles_controller_test.rb
+- test/unit/authorized/role_test.rb