maybee 0.0.1 → 0.0.2

data/README.md

@@ -52,7 +52,7 @@ allows :to => :drive, :if => :license_plate_valid?, :if_subject => :has_drivers_
 
 With this declaration, the car would allow any (ruby) object to drive, if the car has a valid license plate and the ruby object responds to `#has_drivers_license?` with a true value. 
 
-In order to limit the access to instances of a certain class, you can include the desired subject class(es) in the rule declaration:
+In order to limit the access to instances of a certain class, you can include the desired subject class(es) in the rule definition:
 
 ```ruby
 class User < ActiveRecord::Base
@@ -72,16 +72,16 @@ class Car < ActiveRecord::Base
   allows :drivers, :to => :drive, :unless_subject => :drunk?
 end
 ```
+This will allow sober drivers to drive, but will reject normal users and drunk drivers.
 
 If you do not care for the subject class, you may also write
 
 ```ruby
 allows_to :drive, :if => ...
 ```
-
 which is the same as `allows :to => ...`
 
-Multiple access rights may be given in the same declaration:
+Multiple access rights may be given in the same definition:
 
 ```ruby
 allows :drivers, :to => [:start, :drive], :if => ...
@@ -101,7 +101,7 @@ Blocks passed to `:if` and `:unless` are evaluated inside the authorization obje
 
 ### Dealing with nil
 
-In most cases, you will want to restrict authorizations to authorized subjects only. So maybee will refuse any access by default if the subject is `nil`. For the special case, where an access should also be granted if the subject is nil, use the `:allow_nil` option:
+In most cases, you will want to restrict authorizations to authorized subjects only. So maybee will refuse any access by default if the subject is `nil`. For the special case where an access should also be granted if the subject is nil, use the `:allow_nil` option:
 
 ```ruby
 class Image
@@ -209,3 +209,17 @@ is equivalent.
 ### Default authorization subject
 
 For more generic implementations the subject argument to `authorize?` and `allow?` can be left out. It will then default to the value of the `authorization_subject` accessor, which should be set before, for example in a `before_filter`.
+
+### Inheritance
+
+By default, access rules are inherited by subclasses of auth objects. Additional rule definitions on the subclass extend the accesses possible on that class. If you want to redefine an access on a subclass without inheriting the access rules from its superclass, you can use the `exclusive` option:
+
+```ruby
+class Foo < ActiveRecord::Base
+  allows_to :view, :if => :visible?
+end
+
+class SubFoo < Foo
+  allows_to :view, :exclusive => true
+end
+```

data/lib/maybee/authorization_object.rb

@@ -39,7 +39,7 @@ module Maybee
     def authorize?(access, subject = authorization_subject)
       errors.clear
       return true if allow?(access, subject)
-      defaults = ([ActiveRecord::Base] + self.class.lookup_ancestors).map do |klass|
+      defaults = (self.class.lookup_ancestors + [ActiveRecord::Base]).map do |klass|
         :"#{self.class.i18n_scope}.authorizations.#{klass.model_name.i18n_key}.#{access}"
       end
       key = defaults.shift

data/lib/maybee/version.rb

@@ -1,3 +1,3 @@
 module Maybee
-  VERSION = '0.0.1'
+  VERSION = '0.0.2'
 end

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: maybee
 version: !ruby/object:Gem::Version
-  version: 0.0.1
+  version: 0.0.2
   prerelease: 
 platform: ruby
 authors:
@@ -9,11 +9,11 @@ authors:
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2012-06-18 00:00:00.000000000 Z
+date: 2012-07-05 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: i18n
-  requirement: &2151917620 !ruby/object:Gem::Requirement
+  requirement: &2151917600 !ruby/object:Gem::Requirement
     none: false
     requirements:
     - - ~>
@@ -21,10 +21,10 @@ dependencies:
         version: '0.5'
   type: :runtime
   prerelease: false
-  version_requirements: *2151917620
+  version_requirements: *2151917600
 - !ruby/object:Gem::Dependency
   name: activerecord
-  requirement: &2151916900 !ruby/object:Gem::Requirement
+  requirement: &2151916880 !ruby/object:Gem::Requirement
     none: false
     requirements:
     - - ~>
@@ -32,7 +32,7 @@ dependencies:
         version: 3.2.3
   type: :runtime
   prerelease: false
-  version_requirements: *2151916900
+  version_requirements: *2151916880
 - !ruby/object:Gem::Dependency
   name: activesupport
   requirement: &2151916160 !ruby/object:Gem::Requirement
@@ -46,7 +46,7 @@ dependencies:
   version_requirements: *2151916160
 - !ruby/object:Gem::Dependency
   name: sqlite3
-  requirement: &2151915520 !ruby/object:Gem::Requirement
+  requirement: &2151915460 !ruby/object:Gem::Requirement
     none: false
     requirements:
     - - ! '>='
@@ -54,10 +54,10 @@ dependencies:
         version: '0'
   type: :development
   prerelease: false
-  version_requirements: *2151915520
+  version_requirements: *2151915460
 - !ruby/object:Gem::Dependency
   name: simplecov
-  requirement: &2151914880 !ruby/object:Gem::Requirement
+  requirement: &2151914840 !ruby/object:Gem::Requirement
     none: false
     requirements:
     - - ! '>='
@@ -65,10 +65,10 @@ dependencies:
         version: '0'
   type: :development
   prerelease: false
-  version_requirements: *2151914880
+  version_requirements: *2151914840
 - !ruby/object:Gem::Dependency
   name: rake
-  requirement: &2151914120 !ruby/object:Gem::Requirement
+  requirement: &2151914060 !ruby/object:Gem::Requirement
     none: false
     requirements:
     - - ! '>='
@@ -76,7 +76,7 @@ dependencies:
         version: 0.8.7
   type: :development
   prerelease: false
-  version_requirements: *2151914120
+  version_requirements: *2151914060
 description: A simple, yet flexible approach to model-based authorization
 email: mtgrosser@gmx.net
 executables: []