may_may 0.0.1

data/test/dummy/public/404.html

@@ -0,0 +1,26 @@
+<!DOCTYPE html>
+<html>
+<head>
+  <title>The page you were looking for doesn't exist (404)</title>
+  <style type="text/css">
+    body { background-color: #fff; color: #666; text-align: center; font-family: arial, sans-serif; }
+    div.dialog {
+      width: 25em;
+      padding: 0 4em;
+      margin: 4em auto 0 auto;
+      border: 1px solid #ccc;
+      border-right-color: #999;
+      border-bottom-color: #999;
+    }
+    h1 { font-size: 100%; color: #f00; line-height: 1.5em; }
+  </style>
+</head>
+
+<body>
+  <!-- This file lives in public/404.html -->
+  <div class="dialog">
+    <h1>The page you were looking for doesn't exist.</h1>
+    <p>You may have mistyped the address or the page may have moved.</p>
+  </div>
+</body>
+</html>

data/test/dummy/public/422.html

@@ -0,0 +1,26 @@
+<!DOCTYPE html>
+<html>
+<head>
+  <title>The change you wanted was rejected (422)</title>
+  <style type="text/css">
+    body { background-color: #fff; color: #666; text-align: center; font-family: arial, sans-serif; }
+    div.dialog {
+      width: 25em;
+      padding: 0 4em;
+      margin: 4em auto 0 auto;
+      border: 1px solid #ccc;
+      border-right-color: #999;
+      border-bottom-color: #999;
+    }
+    h1 { font-size: 100%; color: #f00; line-height: 1.5em; }
+  </style>
+</head>
+
+<body>
+  <!-- This file lives in public/422.html -->
+  <div class="dialog">
+    <h1>The change you wanted was rejected.</h1>
+    <p>Maybe you tried to change something you didn't have access to.</p>
+  </div>
+</body>
+</html>

data/test/dummy/public/500.html

@@ -0,0 +1,25 @@
+<!DOCTYPE html>
+<html>
+<head>
+  <title>We're sorry, but something went wrong (500)</title>
+  <style type="text/css">
+    body { background-color: #fff; color: #666; text-align: center; font-family: arial, sans-serif; }
+    div.dialog {
+      width: 25em;
+      padding: 0 4em;
+      margin: 4em auto 0 auto;
+      border: 1px solid #ccc;
+      border-right-color: #999;
+      border-bottom-color: #999;
+    }
+    h1 { font-size: 100%; color: #f00; line-height: 1.5em; }
+  </style>
+</head>
+
+<body>
+  <!-- This file lives in public/500.html -->
+  <div class="dialog">
+    <h1>We're sorry, but something went wrong.</h1>
+  </div>
+</body>
+</html>

data/test/dummy/script/rails

@@ -0,0 +1,6 @@
+#!/usr/bin/env ruby
+# This command will automatically be run when you run "rails" with Rails 3 gems installed from the root of your application.
+
+APP_PATH = File.expand_path('../../config/application',  __FILE__)
+require File.expand_path('../../config/boot',  __FILE__)
+require 'rails/commands'

data/test/may_may_test.rb

@@ -0,0 +1,92 @@
+require 'test_helper'
+
+class Roles
+  def self.before_filter(*params)
+  end
+
+  def self.helper_method(*params)
+  end
+
+  include MayMay::MayMayACExtensions
+  MayMay::MayMayACExtensions.setup(self)
+
+  attr_accessor :current_roles
+
+  def initialize(roles = [])
+    roles = [roles] unless roles.respond_to? :each
+    self.current_roles = roles
+  end
+end
+
+class MayMayTest < ActiveSupport::TestCase
+  test "access_denied if not specifically permitted" do
+    May.permissions_setup {}
+    assert !May.permission_to?(:test_1_action, :people, Roles.new)
+  end
+
+  test "access allowed for anyone if named but no roles specified" do
+    May.permissions_setup { controller(:people) { may :test_2_action } }
+    assert May.permission_to?(:test_2_action, :people, Roles.new)
+  end
+
+  test "access allowed for specified role only" do
+    May.permissions_setup { controller(:people) { may :test_3_action, :only => :a_role } }
+    with_correct_role = May.permission_to?(:test_3_action, :people, Roles.new(:a_role))
+    without_correct_role = May.permission_to?(:test_3_action, :people, Roles.new(:b_role))
+    assert_equal [true, false], [with_correct_role, without_correct_role]
+  end
+
+  test "access allowed for specified roles" do
+    May.permissions_setup { controller(:people) { may :test_4_action, :only => [:a_role1, :a_role2] } }
+    with_first_role = May.permission_to?(:test_4_action, :people, Roles.new(:a_role1))
+    with_second_role = May.permission_to?(:test_4_action, :people, Roles.new(:a_role2))
+    with_both_roles = May.permission_to?(:test_4_action, :people, Roles.new([:a_role1, :a_role2]))
+    with_neither_role = May.permission_to?(:test_4_action, :people, Roles.new(:b_role))
+    assert_equal [true, true, true, false], [with_first_role, with_second_role, with_both_roles, with_neither_role]
+  end
+
+  test "access denied for specified roles" do
+    May.permissions_setup { controller(:people) { may :test_5_action, :except => [:a_role1, :a_role2] } }
+    with_first_role = May.permission_to?(:test_5_action, :people, Roles.new(:a_role1))
+    with_second_role = May.permission_to?(:test_5_action, :people, Roles.new(:a_role2))
+    with_both_roles = May.permission_to?(:test_5_action, :people, Roles.new([:a_role1, :a_role2]))
+    with_neither_role = May.permission_to?(:test_5_action, :people, Roles.new(:b_role))
+    assert_equal [false, false, false, true], [with_first_role, with_second_role, with_both_roles, with_neither_role]
+  end
+
+  test "access denied by block" do
+    May.permissions_setup { controller(:people) { may(:test_6_action) {|controller| false } } }
+    assert !May.permission_to?(:test_6_action, :people, Roles.new)
+  end
+
+  test "access allowed by block" do
+    May.permissions_setup { controller(:people) { may(:test_7_action) {|controller| true } } }
+    assert May.permission_to?(:test_7_action, :people, Roles.new)
+  end
+
+  test "controller may method works" do
+    May.permissions_setup { controller(:people) { may(:test_8_action, :only => [:a_role]) } }
+    with_role = Roles.new(:a_role).may?(:test_8_action, :people)
+    without_role = Roles.new.may?(:test_8_action, :people)
+    assert_equal [true, false], [with_role, without_role]
+  end
+
+  test "controller may method with block" do
+    May.permissions_setup { controller(:people) { may(:test_9_action, :only => [:a_role]) } }
+    with_role = false
+    Roles.new(:a_role).may?(:test_9_action, :people) { with_role = 'allowed!' }
+    without_role = Roles.new.may?(:test_9_action, :people) { without_role = 'not allowed!' }
+    assert_equal ['allowed!', false], [with_role, without_role]
+  end
+
+  test "controller may with permission block" do
+    can = true
+    May.permissions_setup {controller(:people) { may(:test_10_action) { can } } }
+    should = false
+    Roles.new.may?(:test_10_action, :people) { should = 'allowed!' }
+    can = false
+    should_not = false
+    should_not = Roles.new.may?(:test_10_action, :people) { should_not = 'not allowed!' }
+    assert_equal ['allowed!', false], [should, should_not]
+  end
+end

data/test/may_mays_controller_test.rb

@@ -0,0 +1,54 @@
+require 'test_helper'
+
+class MayMaysControllerTest < ActionController::TestCase
+  test "all may index" do
+    get :index, user: :guest
+    assert_response :success
+  end
+
+  test "standard may call new but no edit link returned" do
+    get :new, user: :standard
+    assert_response :success
+    assert_equal '', response.body
+  end
+
+  test "guest may show" do
+    get :show, :id => 1, user: :guest
+    assert_response :success
+  end
+
+  test "standard may show" do
+    get :show, :id => 1, user: :standard
+    assert_response :success
+  end
+
+  test "admin may not show" do
+    get :show, :id => 1, user: :admin
+    assert_response 403
+  end
+
+  test "new includes edit link for admin only" do
+    get :new, user: :admin
+    assert_response :success
+    assert_equal 'Edit link', response.body.strip
+  end
+
+  test "standard cannot destroy" do
+    delete :destroy, :id => 1, user: :standard
+    assert_response 403
+  end
+
+  test "admin may destroy" do
+    delete :destroy, :id => 1, user: :admin
+  end
+
+  test "guest may not create" do
+    post :create, user: :guest
+    assert_response 403
+  end
+
+  test "admin may create" do
+    post :create, user: :admin
+    assert_response :success
+  end
+end

data/test/role_test.rb

@@ -0,0 +1,7 @@
+require 'test_helper'
+
+class RoleTest < ActiveSupport::TestCase
+  test 'role names are symbols' do
+    assert_equal :admin, Role.admin.name
+  end
+end

data/test/test_helper.rb

@@ -0,0 +1,10 @@
+# Configure Rails Environment
+ENV["RAILS_ENV"] = "test"
+
+require File.expand_path("../dummy/config/environment.rb",  __FILE__)
+require "rails/test_help"
+
+Rails.backtrace_cleaner.remove_silencers!
+
+# Load support files
+Dir["#{File.dirname(__FILE__)}/support/**/*.rb"].each { |f| require f }

data/test/user_test.rb

@@ -0,0 +1,8 @@
+require 'test_helper'
+
+class UserTest < ActiveSupport::TestCase
+  test "admin has admin and standard roles" do
+    u = User.admin
+    assert u.role_names.include?(:admin) && u.role_names.include?(:standard)
+  end
+end

metadata

@@ -0,0 +1,170 @@
+--- !ruby/object:Gem::Specification
+name: may_may
+version: !ruby/object:Gem::Version
+  version: 0.0.1
+  prerelease: 
+platform: ruby
+authors:
+- Without Software (James Roscoe)
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2012-07-19 00:00:00.000000000Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: rails
+  requirement: &70277837961100 !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: 3.2.2
+  type: :runtime
+  prerelease: false
+  version_requirements: *70277837961100
+- !ruby/object:Gem::Dependency
+  name: sqlite3
+  requirement: &70277837960680 !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: *70277837960680
+description: ! 'Manage controller/action permissions easily in Rails. Returns 403
+  (Access Denied) unless current user has permission to perform the requested controller
+  action. Easy syntax for use in views to check permission: may?(:action, :controller).
+  Source at https://github.com/without/may_may.git'
+email:
+- james@withoutsoftware.com
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- lib/may_may/version.rb
+- lib/may_may.rb
+- lib/tasks/may_may_tasks.rake
+- MIT-LICENSE
+- Rakefile
+- README.md
+- test/dummy/app/assets/javascripts/application.js
+- test/dummy/app/assets/stylesheets/application.css
+- test/dummy/app/controllers/application_controller.rb
+- test/dummy/app/controllers/may_mays_controller.rb
+- test/dummy/app/helpers/application_helper.rb
+- test/dummy/app/models/may.rb
+- test/dummy/app/models/role.rb
+- test/dummy/app/models/user.rb
+- test/dummy/app/models/user_role.rb
+- test/dummy/app/views/layouts/application.html.erb
+- test/dummy/app/views/may_mays/new.html.erb
+- test/dummy/config/application.rb
+- test/dummy/config/boot.rb
+- test/dummy/config/database.yml
+- test/dummy/config/environment.rb
+- test/dummy/config/environments/development.rb
+- test/dummy/config/environments/production.rb
+- test/dummy/config/environments/test.rb
+- test/dummy/config/initializers/backtrace_silencers.rb
+- test/dummy/config/initializers/inflections.rb
+- test/dummy/config/initializers/mime_types.rb
+- test/dummy/config/initializers/secret_token.rb
+- test/dummy/config/initializers/session_store.rb
+- test/dummy/config/initializers/wrap_parameters.rb
+- test/dummy/config/locales/en.yml
+- test/dummy/config/routes.rb
+- test/dummy/config.ru
+- test/dummy/db/development.sqlite3
+- test/dummy/db/migrate/20120718155853_create_roles.rb
+- test/dummy/db/migrate/20120718160104_create_users.rb
+- test/dummy/db/migrate/20120718160138_create_user_roles.rb
+- test/dummy/db/schema.rb
+- test/dummy/db/test.sqlite3
+- test/dummy/log/development.log
+- test/dummy/log/test.log
+- test/dummy/public/404.html
+- test/dummy/public/422.html
+- test/dummy/public/500.html
+- test/dummy/public/favicon.ico
+- test/dummy/Rakefile
+- test/dummy/README.rdoc
+- test/dummy/script/rails
+- test/may_may_test.rb
+- test/may_mays_controller_test.rb
+- test/role_test.rb
+- test/test_helper.rb
+- test/user_test.rb
+homepage: http://withoutsoftware.com
+licenses: []
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  none: false
+  requirements:
+  - - ! '>='
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  none: false
+  requirements:
+  - - ! '>='
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubyforge_project: 
+rubygems_version: 1.8.10
+signing_key: 
+specification_version: 3
+summary: Rails Controller action permission management
+test_files:
+- test/dummy/app/assets/javascripts/application.js
+- test/dummy/app/assets/stylesheets/application.css
+- test/dummy/app/controllers/application_controller.rb
+- test/dummy/app/controllers/may_mays_controller.rb
+- test/dummy/app/helpers/application_helper.rb
+- test/dummy/app/models/may.rb
+- test/dummy/app/models/role.rb
+- test/dummy/app/models/user.rb
+- test/dummy/app/models/user_role.rb
+- test/dummy/app/views/layouts/application.html.erb
+- test/dummy/app/views/may_mays/new.html.erb
+- test/dummy/config/application.rb
+- test/dummy/config/boot.rb
+- test/dummy/config/database.yml
+- test/dummy/config/environment.rb
+- test/dummy/config/environments/development.rb
+- test/dummy/config/environments/production.rb
+- test/dummy/config/environments/test.rb
+- test/dummy/config/initializers/backtrace_silencers.rb
+- test/dummy/config/initializers/inflections.rb
+- test/dummy/config/initializers/mime_types.rb
+- test/dummy/config/initializers/secret_token.rb
+- test/dummy/config/initializers/session_store.rb
+- test/dummy/config/initializers/wrap_parameters.rb
+- test/dummy/config/locales/en.yml
+- test/dummy/config/routes.rb
+- test/dummy/config.ru
+- test/dummy/db/development.sqlite3
+- test/dummy/db/migrate/20120718155853_create_roles.rb
+- test/dummy/db/migrate/20120718160104_create_users.rb
+- test/dummy/db/migrate/20120718160138_create_user_roles.rb
+- test/dummy/db/schema.rb
+- test/dummy/db/test.sqlite3
+- test/dummy/log/development.log
+- test/dummy/log/test.log
+- test/dummy/public/404.html
+- test/dummy/public/422.html
+- test/dummy/public/500.html
+- test/dummy/public/favicon.ico
+- test/dummy/Rakefile
+- test/dummy/README.rdoc
+- test/dummy/script/rails
+- test/may_may_test.rb
+- test/may_mays_controller_test.rb
+- test/role_test.rb
+- test/test_helper.rb
+- test/user_test.rb