lamassu 0.1.0

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA256:
+  metadata.gz: 2682d297a316a2f736fe00895cffe5c0a55f0deb285a3784c194297d00db233a
+  data.tar.gz: d26e36045baef5c8396bc60367e66fc7ec552fa01a3b40c549a6f1022d7b537e
+SHA512:
+  metadata.gz: eec290deb6a77c651c427b5a71e40aaa88fb62f86ea4461fafd79f5117c154a3a0fc2ba75921a75c7d2c0eb95186c5af9d1b5147a5e1c9b9d5abb82dba8bef9e
+  data.tar.gz: 80ae9cb31cfc62c97d46bc80c08cec911db3807582c7128b5fa6f40f15937cd1ffc0ba51e1eef7dd8f22b690ac87a9ca83e13864d95e2e355add50d1a39442b1

data/.editorconfig

@@ -0,0 +1,17 @@
+# EditorConfig is awesome: http://EditorConfig.org
+
+# top-most EditorConfig file
+root = true
+
+# Unix-style newlines with a newline ending every file
+[*]
+charset = utf-8
+end_of_line = lf
+indent_size = 2
+indent_style = space
+insert_final_newline = true
+trim_trailing_whitespace = true
+
+# Markdown uses trailing whitespace for linebreaks.
+[*.md]
+trim_trailing_whitespace = false

data/.gitignore

@@ -0,0 +1,51 @@
+/.bundle/
+/.yardoc
+/_yardoc/
+/coverage/
+/doc/
+/pkg/
+/spec/reports/
+/tmp/
+
+# rspec failure tracking
+.rspec_status
+
+### JetBrains
+.idea
+
+### Ruby
+*.gem
+*.rbc
+/.config
+/InstalledFiles
+/spec/examples.txt
+/test/tmp/
+/test/version_tmp/
+
+# Used by dotenv library to load environment variables.
+.env
+
+## Specific to RubyMotion (use of CocoaPods):
+#
+# We recommend against adding the Pods directory to your .gitignore. However
+# you should judge for yourself, the pros and cons are mentioned at:
+# https://guides.cocoapods.org/using/using-cocoapods.html#should-i-check-the-pods-directory-into-source-control
+#
+# vendor/Pods/
+
+## Documentation cache and generated files:
+/.yardoc/
+/rdoc/
+
+## Environment normalization:
+/vendor/bundle
+/lib/bundler/man/
+
+# for a library or gem, you might want to ignore these files since the code is
+# intended to run in multiple environments; otherwise, check them in:
+Gemfile.lock
+.ruby-version
+.ruby-gemset
+
+# unless supporting rvm < 1.11.0 or doing something fancy, ignore this:
+.rvmrc

data/.gitlab-ci.yml

@@ -0,0 +1,80 @@
+# This file is a template, and might need editing before it works on your project.
+# Official language image. Look for the different tagged releases at:
+# https://hub.docker.com/r/library/ruby/tags/
+image: "ruby:2.5"
+
+# Cache gems in between builds
+cache:
+  paths:
+    - vendor/ruby
+
+variables:
+ JRUBY_OPTS: "--debug"
+
+before_script:
+  - ruby -v                                   # Print out ruby version for debugging
+  - apt update
+  - apt install git build-essential -y
+  - gem install bundler  --no-ri --no-rdoc    # Bundler is not installed with the image
+  - bundle install -j $(nproc) --path vendor  # Install dependencies into ./vendor/ruby
+
+# Optional - Delete if not using `rubocop`
+rubocop:
+  script:
+  - bundle exec rubocop --version
+  - bundle exec rubocop --extra-details --display-style-guide --format clang
+  allow_failure: true
+  
+reek:
+  script:
+  - bundle exec reek --version
+  - bundle exec reek
+  allow_failure: true
+
+rspec:2.3:
+  image: "ruby:2.3"
+  script:
+  - bundle exec rspec spec
+  
+rspec:2.4:
+  image: "ruby:2.4"
+  script:
+  - bundle exec rspec spec
+  
+rspec:
+  script:
+  - bundle exec rspec spec
+  artifacts:
+    paths:
+    - coverage/
+    expire_in: 30 days
+  
+rspec:2.6-rc:
+  image: "ruby:2.6-rc"
+  script:
+  - bundle exec rspec spec
+  allow_failure: true
+  
+rspec:jruby:9.1:
+  image: "jruby:9.1"
+  script:
+  - bundle exec rspec spec
+  
+rspec:jruby:9.2:
+  image: "jruby:9.2"
+  script:
+  - bundle exec rspec spec
+
+pages:
+  stage: deploy
+  dependencies:
+    - rspec
+  script:
+    - mkdir -p public/
+    - mv coverage/ public/
+  artifacts:
+    paths:
+      - public
+    expire_in: 30 days
+  only:
+    - master

data/.mdlrc

@@ -0,0 +1 @@
+rules "~MD024"

data/.reek

@@ -0,0 +1,5 @@
+---
+UtilityFunction:
+  public_methods_only: true
+DataClump:
+  min_clump_size: 3

data/.reek.yml

@@ -0,0 +1,6 @@
+---
+detectors:
+  UtilityFunction:
+    public_methods_only: true
+  DataClump:
+    min_clump_size: 3

data/.rspec

@@ -0,0 +1,3 @@
+--format documentation
+--color
+--require spec_helper

data/.rubocop.yml

@@ -0,0 +1,13 @@
+AllCops:
+  TargetRubyVersion: 2.3
+  DisplayCopNames: true
+  DisplayStyleGuide: true
+Style/Alias:
+  # Prefer `alias_method :foo, :bar` over `alias foo bar`
+  EnforcedStyle: prefer_alias_method
+Naming/ConstantName:
+  Enabled: false
+Metrics/BlockLength:
+  Exclude:
+    - lamassu.gemspec
+    - spec/**/*_spec.rb

data/.travis.yml

@@ -0,0 +1,21 @@
+sudo: false
+language: ruby
+rvm:
+  - 2.3
+  - 2.4
+  - 2.5
+before_script:
+  - curl -L https://codeclimate.com/downloads/test-reporter/test-reporter-latest-linux-amd64 > ./cc-test-reporter
+  - chmod +x ./cc-test-reporter
+  - ./cc-test-reporter before-build
+script:
+  - bundle exec rspec
+after_script:
+  - ./cc-test-reporter after-build --exit-code $TRAVIS_TEST_RESULT
+notifications:
+  webhooks:
+    urls:
+      - https://webhooks.gitter.im/e/e598d063293fab2e0914
+    on_success: change  # options: [always|never|change] default: always
+    on_failure: always  # options: [always|never|change] default: always
+    on_start: never     # options: [always|never|change] default: always

data/CHANGELOG.md

@@ -0,0 +1,17 @@
+# Changelog
+
+All notable changes to this project will be documented in this file.
+
+The format is based on [Keep a Changelog](http://keepachangelog.com/en/1.0.0/)
+and this project adheres to [Semantic Versioning](http://semver.org/spec/v2.0.0.html).
+
+## [Unreleased]
+
+## [v0.1.0] - 2018-09-14
+
+### Added
+
+- Initial implementation of Lamassu
+
+[Unreleased]: https://gitlab.com/huyderman/lamassu/compare/v0.1.0...HEAD
+[v0.1.0]: https://gitlab.com/huyderman/lamassu/compare/v0.0.0...v0.1.0

data/CODE_OF_CONDUCT.md

@@ -0,0 +1,74 @@
+# Contributor Covenant Code of Conduct
+
+## Our Pledge
+
+In the interest of fostering an open and welcoming environment, we as
+contributors and maintainers pledge to making participation in our project and
+our community a harassment-free experience for everyone, regardless of age, body
+size, disability, ethnicity, gender identity and expression, level of experience,
+nationality, personal appearance, race, religion, or sexual identity and
+orientation.
+
+## Our Standards
+
+Examples of behavior that contributes to creating a positive environment
+include:
+
+* Using welcoming and inclusive language
+* Being respectful of differing viewpoints and experiences
+* Gracefully accepting constructive criticism
+* Focusing on what is best for the community
+* Showing empathy towards other community members
+
+Examples of unacceptable behavior by participants include:
+
+* The use of sexualized language or imagery and unwelcome sexual attention or
+advances
+* Trolling, insulting/derogatory comments, and personal or political attacks
+* Public or private harassment
+* Publishing others' private information, such as a physical or electronic
+  address, without explicit permission
+* Other conduct which could reasonably be considered inappropriate in a
+  professional setting
+
+## Our Responsibilities
+
+Project maintainers are responsible for clarifying the standards of acceptable
+behavior and are expected to take appropriate and fair corrective action in
+response to any instances of unacceptable behavior.
+
+Project maintainers have the right and responsibility to remove, edit, or
+reject comments, commits, code, wiki edits, issues, and other contributions
+that are not aligned to this Code of Conduct, or to ban temporarily or
+permanently any contributor for other behaviors that they deem inappropriate,
+threatening, offensive, or harmful.
+
+## Scope
+
+This Code of Conduct applies both within project spaces and in public spaces
+when an individual is representing the project or its community. Examples of
+representing a project or community include using an official project e-mail
+address, posting via an official social media account, or acting as an appointed
+representative at an online or offline event. Representation of a project may be
+further defined and clarified by project maintainers.
+
+## Enforcement
+
+Instances of abusive, harassing, or otherwise unacceptable behavior may be
+reported by contacting the project team at johannes@huyderman.com. All
+complaints will be reviewed and investigated and will result in a response that
+is deemed necessary and appropriate to the circumstances. The project team is
+obligated to maintain confidentiality with regard to the reporter of an incident.
+Further details of specific enforcement policies may be posted separately.
+
+Project maintainers who do not follow or enforce the Code of Conduct in good
+faith may face temporary or permanent repercussions as determined by other
+members of the project's leadership.
+
+## Attribution
+
+This Code of Conduct is adapted from the [Contributor Covenant][homepage], version 1.4,
+available at [http://contributor-covenant.org/version/1/4][version]
+
+[homepage]: http://contributor-covenant.org
+[version]: http://contributor-covenant.org/version/1/4/

data/Gemfile

@@ -0,0 +1,8 @@
+# frozen_string_literal: true
+
+source 'https://rubygems.org'
+
+git_source(:github) { |repo_name| "https://github.com/#{repo_name}" }
+
+# Specify your gem's dependencies in lamassu.gemspec
+gemspec

data/LICENSE.txt

@@ -0,0 +1,21 @@
+The MIT License (MIT)
+
+Copyright (c) 2018 Jo-Herman Haugholt
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in
+all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
+THE SOFTWARE.

data/README.md

@@ -0,0 +1,185 @@
+# ![Lamassu](http://res.cloudinary.com/huyderman/image/upload/c_lpad,dpr_2.0,f_auto,g_center,h_150,w_888/v1523625102/lamassu)
+
+[![Gem Version](https://badge.fury.io/rb/lamassu.svg)](https://badge.fury.io/rb/querylicious)
+[![Build Status](https://gitlab.com/huyderman/lamassu/badges/master/build.svg)](https://gitlab.com/huyderman/lamassu/pipelines)
+[![Coverage](https://gitlab.com/huyderman/lamassu/badges/master/coverage.svg?job=rspec)](http://huyderman.gitlab.io/lamassu/coverage)
+[![Join the chat at https://gitter.im/lamassu-rb/Lobby](https://badges.gitter.im/lamassu-rb/Lobby.svg)](https://gitter.im/lamassu-rb/Lobby?utm_source=badge&utm_medium=badge&utm_campaign=pr-badge&utm_content=badge)
+
+> Lamassu is an functional authorization framework for Ruby, based on
+> callable policy objects and policy containers
+
+## Installation
+
+Add this line to your application's Gemfile:
+
+```ruby
+gem 'lamassu'
+```
+
+And then execute:
+
+    $ bundle
+
+Or install it yourself as:
+
+    $ gem install lamassu
+
+## Usage
+
+To use Lamassu, you need an Guardian for your project:
+
+```rb
+MyGuardian = Lamassu::Guardian.new
+```
+
+You can then register policies for various Modules with the guardian, and if authorized:
+
+```rb
+include Dry::Monads::Result::Mixin
+
+Article = Struct.new(:title, :owner, :published)
+
+MyGuardian.policies.for Article do
+  policy :read, proc do |user, article|
+    if article.published || user == article.owner
+      Success(:allowed)
+    else
+      Failure(:no_access)
+    end
+  end
+end
+
+article = Article.new('My Article', :bob, true)
+MyGuardian.authorize(:bob, article, :read)
+# => Success(:allowed)
+```
+
+A policy can be any callable object returning a `dry-monads` `Result` object, or an
+object responding to `to_result`.
+
+When building an application with many policies, it's recommended to create
+proper policy objects by including `Lamassu::Policy`:
+
+```rb
+# app/policies/article/read_policy.rb
+
+class ReadPolicy
+  include Lamassu::Policy
+
+  def call(user, article)
+    if article.published || user == article.owner
+      Success(:allowed)
+    else
+      Failure(:disallowed)
+    end
+  end
+end
+
+MyGuardian.policies.for Article do
+  policy :read, ReadPolicy.new
+end
+```
+
+### Subsets
+
+Since the result is wrapped in a `Result`, the policy object can also be used
+to return a subset or selection of data:
+
+```rb
+class ReadPolicy
+  include Lamassu::Policy
+
+  def call(user, _)
+    articles = ArticleRepository.select do |article|
+      article.owner == user || article.published
+    end
+
+    if articles.empty?
+      Failure(nil)
+    else
+      Success(articles)
+    end
+  end
+end
+
+result = guardian.authorize(:bob, article, :read)
+# => Success([#<Article>, ...])
+
+result.value! if result.success?
+# => [#<Article>, ...]
+```
+
+Example usages for this include to return only the articles a user have
+authorization to view, or transform an object to remove any fields the user
+is authorized to read.
+
+### Policy adapters
+
+Lamassu comes with several "policy adapters" for convenience when creating policies:
+
+```rb
+MyGuardian.policies.for Article do
+  check :write, (proc { true })
+  map :published, (proc { ArticleRepository.select(&:published) })
+end
+```
+
+Both adapters wraps a callable object, and returns a valid policy object.
+The `check` adapter is used with an callable object that returns a truish or
+falsish value, and wraps the result in `Success` or `Failure` respectively.
+The `map` adapter wraps a callable object, and wraps any output in a `Success`.
+
+These adapters are meant for simple applications or to ease porting existing
+ones. It's recommended to create proper policy objects when possible, as you
+have better control over the return value.
+
+### Web frameworks
+
+Lamassu don't currently include any integrations with any web frameworks.
+It's meant to be flexible and usable with any framework, but the details will
+depend on the chosen framework.
+
+To simplify calling lamassu, it could be useful to create a helper to
+include in your controllers:
+
+```rb
+module AuthorizationHelper
+  # Convenience method for checking authorization where the user object is
+  # available through `current_user`, and the scope is the current controller.
+  def authorize(policy)
+    MyGuardian.authorize(current_user, self, policy)
+  end
+end
+```
+
+## Development
+
+After checking out the repo, run `bin/setup` to install dependencies. Then,
+run `rake spec` to run the tests. You can also run `bin/console` for an
+interactive prompt that will allow you to experiment.
+
+To install this gem onto your local machine, run `bundle exec rake install`.
+
+## Contributing
+
+Bug reports and pull requests are welcome on GitHub at
+https://gitlab.com/huyderman/lamassu/issues. This project is intended to be a safe,
+welcoming space for collaboration, and contributors are expected to adhere
+to the [code of conduct](CODE_OF_CONDUCT.md).
+
+## License
+
+The gem is available as open source under the terms of the
+[MIT License](https://opensource.org/licenses/MIT).
+
+## Code of Conduct
+
+Everyone interacting in the Lamassu project’s codebases, issue trackers,
+chat rooms and mailing lists is expected to follow the
+[code of conduct](CODE_OF_CONDUCT.md).
+
+## Acknowledgments
+
+* [dry-rb](https://dry-rb.org/) collection of gems which have both a great inspiration, and without this library would not be possible
+* [Pundit](https://github.com/varvet/pundit) which is an great authorization library and have been an influence of some of the design of Lamassu
+* Alex Daily  ([@Alexis@beepboop.one](https://beepboop.one/@Alexis) or [@heyalexdaily@twitter.com](https://twitter.com/heyalexdaily)) who created the awesome logo for Lamassu.

data/Rakefile

@@ -0,0 +1,13 @@
+# frozen_string_literal: true
+
+require 'bundler/gem_tasks'
+require 'rspec/core/rake_task'
+
+RSpec::Core::RakeTask.new(:spec)
+
+task default: :spec
+
+desc 'Run Mutation testing'
+task :mutant do
+  sh 'mutant --use rspec Lamassu*'
+end

data/VERSION

@@ -0,0 +1 @@
+0.1.0

data/bin/console

@@ -0,0 +1,15 @@
+#!/usr/bin/env ruby
+# frozen_string_literal: true
+
+require 'bundler/setup'
+require 'pry'
+require 'lamassu'
+
+# You can add fixtures and/or initialization code here to make experimenting
+# with your gem easier. You can also use a different console, if you like.
+
+Guardian = Lamassu::Guardian.new
+
+puts '`Guardian` initialized'
+
+Pry.start

data/bin/setup

@@ -0,0 +1,8 @@
+#!/usr/bin/env bash
+set -euo pipefail
+IFS=$'\n\t'
+set -vx
+
+bundle install
+
+# Do any other automated setup that you need to do here

data/lamassu.gemspec

@@ -0,0 +1,35 @@
+# frozen_string_literal: true
+
+Gem::Specification.new do |spec|
+  version_file = File.expand_path('VERSION', __dir__)
+  version = File.read(version_file).lines.first.chomp
+
+  spec.name    = 'lamassu'
+  spec.version = version
+  spec.authors = ['Jo-Herman Haugholt']
+  spec.email   = ['johannes@huyderman.com']
+
+  spec.summary  = 'Autorization gem based on policy objects and dry-container'
+  spec.homepage = 'https://github.com/huyderman/lamassu'
+  spec.license  = 'MIT'
+
+  spec.files = `git ls-files -z`.split("\x0").reject do |f|
+    f.match(%r{^(test|spec|features)/})
+  end
+  spec.require_paths = ['lib']
+
+  spec.add_runtime_dependency 'dry-configurable', '~> 0.7.0'
+  spec.add_runtime_dependency 'dry-container', '~> 0.6.0'
+  spec.add_runtime_dependency 'dry-inflector', '~> 0.1.1'
+  spec.add_runtime_dependency 'dry-monads', '~> 1.0'
+
+  spec.add_development_dependency 'bundler', '~> 1.16'
+  spec.add_development_dependency 'mutant', '~> 0.8.0'
+  spec.add_development_dependency 'mutant-rspec', '~> 0.8.0'
+  spec.add_development_dependency 'pry', '~> 0.11.0'
+  spec.add_development_dependency 'rake', '~> 12.0'
+  spec.add_development_dependency 'reek', '~> 4.7'
+  spec.add_development_dependency 'rspec', '~> 3.0'
+  spec.add_development_dependency 'rubocop', '~> 0.52'
+  spec.add_development_dependency 'simplecov', '~> 0.16'
+end

data/lib/lamassu/guardian.rb

@@ -0,0 +1,64 @@
+# frozen_string_literal: true
+
+require 'dry/monads/result'
+require 'dry/monads/do'
+require 'lamassu/policy_container'
+
+module Lamassu
+  # Guardian object for authorizing a subject
+  class Guardian
+    include Dry::Monads::Result::Mixin
+    include Dry::Monads::List::Mixin
+    include Dry::Monads::Do.for(:authorize_many)
+
+    attr_reader :container
+
+    def initialize(container: PolicyContainer.new)
+      @container = container
+      @namespace_resolver = Lamassu.namespace_resolver
+    end
+
+    alias_method :policies, :container
+
+    # Check authorization for subject on target for one or more policies
+    #
+    # If more than one policy is specified, it will return the last Success if
+    # all policies are successful. Otherwise, it will return the first Failure
+    #
+    # :reek:LongParameterList
+    # @param [Object] subject Subject for authorization check
+    # @param [Object,Module] target Target for authorization check
+    # @param [Symbol,String] policies Policy or policies to check
+    # @return [Dry::Result]
+    def authorize(subject, target, *policies)
+      case policies.length
+      when 0
+        raise ArgumentError, 'No policy given'
+      when 1
+        authorize_one(subject, target, *policies)
+      else
+        authorize_many(subject, target, *policies)
+      end
+    end
+
+    private
+
+    def authorize_one(subject, target, policy)
+      namespace = @namespace_resolver.call(target)
+      policy = container.resolve("#{namespace}.#{policy}")
+
+      policy.call(subject, target).to_result
+    end
+
+    def authorize_many(subject, target, *policies)
+      namespace = @namespace_resolver.call(target)
+
+      Success(
+        List.new(policies)
+          .fmap { |policy| "#{namespace}.#{policy}" }
+          .fmap(container.method(:resolve))
+          .fmap { |policy| yield policy.call(subject, target) }
+      )
+    end
+  end
+end

data/lib/lamassu/namespace_resolver.rb

@@ -0,0 +1,41 @@
+# frozen_string_literal: true
+
+require 'dry/inflector'
+
+module Lamassu
+  # Default namespace resolver used for scopes in Lamassu
+  #
+  # If target is a symbol or string, it is used as is. If passed a Module,
+  # it is translated underscorized string. For any other object, it resolves
+  # the targets class and it's translated as above.
+  class NamespaceResolver
+    def initialize(inflector: Dry::Inflector.new)
+      @inflector = inflector
+    end
+
+    def call(target)
+      case target
+      when Module
+        coerce_module(target)
+      when String, Symbol
+        coerce_string(target)
+      else
+        coerce_object(target)
+      end
+    end
+
+    private
+
+    def coerce_string(target)
+      target.to_s
+    end
+
+    def coerce_object(target)
+      @inflector.underscore(target.class)
+    end
+
+    def coerce_module(target)
+      @inflector.underscore(target)
+    end
+  end
+end

data/lib/lamassu/policy.rb

@@ -0,0 +1,14 @@
+# frozen_string_literal: true
+
+require 'dry/monads/result'
+
+module Lamassu
+  # Base module to be included in policy objects
+  module Policy
+    def self.included(klass)
+      klass.class_eval do
+        include Dry::Monads::Result::Mixin
+      end
+    end
+  end
+end

data/lib/lamassu/policy_adapters/check.rb

@@ -0,0 +1,25 @@
+# frozen_string_literal: true
+
+require 'dry/monads/result'
+
+module Lamassu
+  module PolicyAdapters
+    # Policy Adapter for a callable wrapping returned value to Success on true
+    # and Failure on false
+    class Check
+      include Dry::Monads::Result::Mixin
+
+      attr_reader :policy
+
+      def initialize(policy)
+        @policy = policy
+      end
+
+      def call(*args)
+        value = policy.call(*args)
+
+        value ? Success(value) : Failure(value)
+      end
+    end
+  end
+end

data/lib/lamassu/policy_adapters/map.rb

@@ -0,0 +1,24 @@
+# frozen_string_literal: true
+
+require 'dry/monads/result'
+
+module Lamassu
+  module PolicyAdapters
+    # Policy Adapter for a callable wrapping returned value to Success
+    class Map
+      include Dry::Monads::Result::Mixin
+
+      attr_reader :policy
+
+      def initialize(policy)
+        @policy = policy
+      end
+
+      def call(*args)
+        value = policy.call(*args)
+
+        Success(value)
+      end
+    end
+  end
+end

data/lib/lamassu/policy_container.rb

@@ -0,0 +1,42 @@
+# frozen_string_literal: true
+
+require 'dry-container'
+require 'dry/monads/result'
+require 'lamassu/policy_adapters/check'
+require 'lamassu/policy_adapters/map'
+
+module Lamassu
+  # Dry::Container with convenience methods when registering policy objects
+  class PolicyContainer
+    include Dry::Container::Mixin
+    include Dry::Monads::Result::Mixin
+
+    # @param [Module] scope
+    # @param [Proc] block
+    # @return [PolicyContainer]
+    def for(scope, &block)
+      container = PolicyContainer.new
+      container.instance_eval(&block)
+
+      merge(container, namespace: Lamassu.namespace_resolver.call(scope))
+    end
+
+    # @param [String,Symbol] key
+    # @param [#call] policy_object
+    def policy(key, policy_object)
+      register(key, policy_object, call: false)
+    end
+
+    # @param [String,Symbol] key
+    # @param [#call] policy_object
+    def check(key, policy_object)
+      policy(key, PolicyAdapters::Check.new(policy_object))
+    end
+
+    # @param [String,Symbol] key
+    # @param [#call] policy_object
+    def map(key, policy_object)
+      policy(key, PolicyAdapters::Map.new(policy_object))
+    end
+  end
+end

data/lib/lamassu.rb

@@ -0,0 +1,14 @@
+# frozen_string_literal: true
+
+require 'dry/configurable'
+require 'lamassu/namespace_resolver'
+
+# Lamassu is container and policy based authorization framework
+module Lamassu
+  extend Dry::Configurable
+
+  setting :namespace_resolver, Lamassu::NamespaceResolver.new, reader: true
+end
+
+require 'lamassu/guardian'
+require 'lamassu/policy'

metadata

@@ -0,0 +1,252 @@
+--- !ruby/object:Gem::Specification
+name: lamassu
+version: !ruby/object:Gem::Version
+  version: 0.1.0
+platform: ruby
+authors:
+- Jo-Herman Haugholt
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2018-09-14 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: dry-configurable
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.7.0
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.7.0
+- !ruby/object:Gem::Dependency
+  name: dry-container
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.6.0
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.6.0
+- !ruby/object:Gem::Dependency
+  name: dry-inflector
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.1.1
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.1.1
+- !ruby/object:Gem::Dependency
+  name: dry-monads
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.0'
+- !ruby/object:Gem::Dependency
+  name: bundler
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.16'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.16'
+- !ruby/object:Gem::Dependency
+  name: mutant
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.8.0
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.8.0
+- !ruby/object:Gem::Dependency
+  name: mutant-rspec
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.8.0
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.8.0
+- !ruby/object:Gem::Dependency
+  name: pry
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.11.0
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.11.0
+- !ruby/object:Gem::Dependency
+  name: rake
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '12.0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '12.0'
+- !ruby/object:Gem::Dependency
+  name: reek
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '4.7'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '4.7'
+- !ruby/object:Gem::Dependency
+  name: rspec
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.0'
+- !ruby/object:Gem::Dependency
+  name: rubocop
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.52'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.52'
+- !ruby/object:Gem::Dependency
+  name: simplecov
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.16'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.16'
+description: 
+email:
+- johannes@huyderman.com
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- ".editorconfig"
+- ".gitignore"
+- ".gitlab-ci.yml"
+- ".mdlrc"
+- ".reek"
+- ".reek.yml"
+- ".rspec"
+- ".rubocop.yml"
+- ".travis.yml"
+- CHANGELOG.md
+- CODE_OF_CONDUCT.md
+- Gemfile
+- LICENSE.txt
+- README.md
+- Rakefile
+- VERSION
+- bin/console
+- bin/setup
+- lamassu.gemspec
+- lib/lamassu.rb
+- lib/lamassu/guardian.rb
+- lib/lamassu/namespace_resolver.rb
+- lib/lamassu/policy.rb
+- lib/lamassu/policy_adapters/check.rb
+- lib/lamassu/policy_adapters/map.rb
+- lib/lamassu/policy_container.rb
+homepage: https://github.com/huyderman/lamassu
+licenses:
+- MIT
+metadata: {}
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubyforge_project: 
+rubygems_version: 2.7.7
+signing_key: 
+specification_version: 4
+summary: Autorization gem based on policy objects and dry-container
+test_files: []