mongoid_ability 0.3.8 → 0.3.9

Sign up to get free protection for your applications and to get access to all the features.
Files changed (8) hide show
  1. checksums.yaml +4 -4
  2. data/.travis.yml +1 -1
  3. data/README.md +10 -4
  4. data/lib/mongoid_ability/ability.rb +9 -7
  5. data/lib/mongoid_ability/accessible_query_builder.rb +22 -4
  6. data/lib/mongoid_ability/version.rb +1 -1
  7. data/test/mongoid_ability/accessible_query_builder_test.rb +5 -0
  8. metadata +2 -2
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA1:
3
- metadata.gz: 943814cee43339bf17cc8387496583fbbc797ddf
4
- data.tar.gz: 714784b30fa8dad9f3e5aa32c8a25f62f034005a
3
+ metadata.gz: 8f068e6315f26aa262a2e85aaa2d533028b284f8
4
+ data.tar.gz: 22a58ce215e9fc9982c23e3ebef2a03642a60f29
5
5
  SHA512:
6
- metadata.gz: 05c965309b7d19f5afe52ed51f47189e4a06049a33af6ec640eb845a02137b9938762dd77e32d4b80c6f58037a5b5a7fc09999d71a1c36da5ccbcde021f347b0
7
- data.tar.gz: e6d1dcf742c1c3dda15459b4dc1abdfbd7d08bbc419262033b72654df3c4e929a94d799027e42e4bc48c02f88b3d4d469287d7ed5ca5fc83208841150c9973e0
6
+ metadata.gz: 0823e671b6f4f9bc4e500fe83a0bb39502f26106012bd011be9dfea71ea71083b0936bbe6a24417467e7a56bffa7f85c28d86031e3a62ec58341e632cc0f6783
7
+ data.tar.gz: 2f416fbeecb89078b0846c9bb4a9084aad1db0c4c3b7c3c976ea5e40b7c00840949b783d45ea88da65d5cf181ad64094c2293eb482c05e9c9208ff71d9a55b98
data/.travis.yml CHANGED
@@ -2,7 +2,7 @@ language: ruby
2
2
  script: 'bundle exec rake'
3
3
  sudo: false
4
4
  rvm:
5
- - 2.2.2
5
+ - 2.2.3
6
6
  services:
7
7
  - mongodb
8
8
 
data/README.md CHANGED
@@ -43,10 +43,10 @@ end
43
43
 
44
44
  This class defines a permission itself using the following fields:
45
45
 
46
- `:subject_type, type: String`
47
- `:subject_id, type: Moped::BSON::ObjectId`
48
- `:action, type: Symbol, default: :read`
49
- `:outcome, type: Boolean, default: false`
46
+ `:subject_type, type: String`
47
+ `:subject_id, type: Moped::BSON::ObjectId`
48
+ `:action, type: Symbol, default: :read`
49
+ `:outcome, type: Boolean, default: false`
50
50
 
51
51
  These fields define what subject (respectively subject type, when referring to a class) the lock applies to, which action it is defined for (for example `:read`), and whether the outcome is positive or negative.
52
52
 
@@ -81,6 +81,12 @@ end
81
81
 
82
82
  The subject classes can be subclassed. Subclasses inherit the default locks (unless they override them), the resulting outcome being correctly calculated bottom-up the superclass chain.
83
83
 
84
+ Additionally the locks can be converted to Mongoid criteria:
85
+
86
+ ```ruby
87
+ MySubject.accessible_by(ability, :read)
88
+ ```
89
+
84
90
  ### Owner
85
91
 
86
92
  This `Ability` class supports two levels of inheritance (for example User and its Roles). The locks can be either embedded (via `.embeds_many`) or associated (via `.has_many`). Make sure to include the `as: :owner` option.
data/lib/mongoid_ability/ability.rb CHANGED
@@ -7,16 +7,16 @@ module MongoidAbility
7
7
  attr_reader :owner
8
8
 
9
9
  def self.subject_classes
10
- Object.descendants.select{ |cls| cls.included_modules.include?(MongoidAbility::Subject) }
10
+ Object.descendants.select { |cls| cls.included_modules.include?(MongoidAbility::Subject) }
11
11
  end
12
12
 
13
13
  def self.subject_root_classes
14
- subject_classes.reject{ |cls| cls.superclass.included_modules.include?(MongoidAbility::Subject) }
14
+ subject_classes.reject { |cls| cls.superclass.included_modules.include?(MongoidAbility::Subject) }
15
15
  end
16
16
 
17
17
  # =====================================================================
18
18
 
19
- def initialize owner
19
+ def initialize(owner)
20
20
  @owner = owner
21
21
 
22
22
  can do |action, subject_type, subject, options|
@@ -26,7 +26,7 @@ module MongoidAbility
26
26
 
27
27
  subject_class.self_and_ancestors_with_default_locks.each do |cls|
28
28
  outcome = ResolveInheritedLocks.call(owner, action, cls, subject, options)
29
- break if outcome != nil
29
+ break unless outcome.nil?
30
30
  end
31
31
 
32
32
  outcome
@@ -40,11 +40,13 @@ module MongoidAbility
40
40
  # .select(&current_ability.can_update)
41
41
  # .select(&current_ability.can_destroy)
42
42
  # etc.
43
- def method_missing name, *args
43
+ #
44
+ # TODO: allow to pass options .select(&current_ability.can_read(my_option: false))
45
+ #
46
+ def method_missing(name, *args)
44
47
  return super unless name.to_s =~ /\A(can|cannot)_/
45
48
  return unless action = name.to_s.gsub(/\A(can|cannot)_/, '').to_sym
46
- name =~ /can_/ ? lambda { |doc| can? action, doc } : lambda { |doc| cannot? action, doc }
49
+ name =~ /can_/ ? ->(doc) { can? action, doc } : ->(doc) { cannot? action, doc }
47
50
  end
48
-
49
51
  end
50
52
  end
data/lib/mongoid_ability/accessible_query_builder.rb CHANGED
@@ -4,6 +4,10 @@ module MongoidAbility
4
4
  new(*args).call
5
5
  end
6
6
 
7
+ def initialize(base_class, ability, action, options = {})
8
+ super(base_class, ability, action, options)
9
+ end
10
+
7
11
  # =====================================================================
8
12
 
9
13
  def call
@@ -17,18 +21,18 @@ module MongoidAbility
17
21
  private # =============================================================
18
22
 
19
23
  def closed_types_condition
20
- { _type: { '$nin' => values.closed_types.uniq } }
24
+ { type_key => { '$nin' => values.closed_types.uniq } }
21
25
  end
22
26
 
23
27
  def open_types_and_ids_condition
24
28
  {
25
- _type: { '$in' => values.open_types_and_ids.map(&:type).uniq },
26
- _id: { '$in' => values.open_types_and_ids.map(&:id).uniq }
29
+ type_key => { '$in' => values.open_types_and_ids.map(&:type).uniq },
30
+ id_key => { '$in' => values.open_types_and_ids.map(&:id).uniq }
27
31
  }
28
32
  end
29
33
 
30
34
  def closed_ids_condition
31
- { _id: { '$nin' => values.closed_ids.uniq } }
35
+ { id_key => { '$nin' => values.closed_ids.uniq } }
32
36
  end
33
37
 
34
38
  # ---------------------------------------------------------------------
@@ -42,5 +46,19 @@ module MongoidAbility
42
46
  def base_class_superclass
43
47
  @base_class_superclass ||= (base_class.ancestors_with_default_locks.last || base_class)
44
48
  end
49
+
50
+ # ---------------------------------------------------------------------
51
+
52
+ def prefix
53
+ options.fetch(:prefix, nil)
54
+ end
55
+
56
+ def id_key
57
+ [prefix, '_id'].reject(&:blank?).join.to_sym
58
+ end
59
+
60
+ def type_key
61
+ [prefix, '_type'].reject(&:blank?).join.to_sym
62
+ end
45
63
  end
46
64
  end
data/lib/mongoid_ability/version.rb CHANGED
@@ -1,3 +1,3 @@
1
1
  module MongoidAbility
2
- VERSION = "0.3.8"
2
+ VERSION = '0.3.9'.freeze
3
3
  end
data/test/mongoid_ability/accessible_query_builder_test.rb CHANGED
@@ -18,6 +18,11 @@ module MongoidAbility
18
18
  subject.must_be_kind_of Mongoid::Criteria
19
19
  end
20
20
 
21
+ it 'allows to pass prefix' do
22
+ skip 'not sure how to best test this'
23
+ selector = AccessibleQueryBuilder.call(base_class, ability, action, prefix: :foo).selector
24
+ end
25
+
21
26
  # ---------------------------------------------------------------------
22
27
 
23
28
  describe 'closed_types' do
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: mongoid_ability
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.3.8
4
+ version: 0.3.9
5
5
  platform: ruby
6
6
  authors:
7
7
  - Tomáš Celizna
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2016-04-14 00:00:00.000000000 Z
11
+ date: 2016-05-15 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: cancancan