plutonium 0.23.4 → 0.23.5

data/lib/plutonium/ui/table/resource.rb

@@ -59,9 +59,14 @@ module Plutonium
               column_definition = resource_definition.defined_columns[name] || {}
               column_options = column_definition[:options] || {}
 
+              # Check for conditional rendering
+              condition = column_options[:condition] || display_options[:condition] || field_options[:condition]
+              conditionally_hidden = condition && !instance_exec(&condition)
+              next if conditionally_hidden
+
               tag = column_options[:as] || display_definition[:as] || field_options[:as]
-              display_tag_attributes = display_options.except(:wrapper, :as)
-              column_tag_attributes = column_options.except(:wrapper, :as, :align)
+              display_tag_attributes = display_options.except(:wrapper, :as, :condition)
+              column_tag_attributes = column_options.except(:wrapper, :as, :align, :condition)
               tag_attributes = display_tag_attributes.merge(column_tag_attributes)
               tag_block = column_definition[:block] || ->(wrapped_object, key) {
                 f = wrapped_object.field(key)
@@ -69,7 +74,7 @@ module Plutonium
                 f.send(:"#{tag}_tag", **tag_attributes)
               }
 
-              field_options = field_options.merge(**column_options.slice(:align))
+              field_options = field_options.except(:condition).merge(**column_options.slice(:align))
               table.column name,
                 **field_options,
                 sort_params: current_query_object.sort_params_for(name),

data/lib/plutonium/version.rb

@@ -1,5 +1,5 @@
 module Plutonium
-  VERSION = "0.23.4"
+  VERSION = "0.23.5"
   NEXT_MAJOR_VERSION = VERSION.split(".").tap { |v|
     v[1] = v[1].to_i + 1
     v[2] = 0

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: plutonium
 version: !ruby/object:Gem::Version
-  version: 0.23.4
+  version: 0.23.5
 platform: ruby
 authors:
 - Stefan Froelich
 autorequire:
 bindir: exe
 cert_chain: []
-date: 2025-05-27 00:00:00.000000000 Z
+date: 2025-06-21 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: zeitwerk
@@ -493,21 +493,48 @@ files:
 - docs/.vitepress/theme/custom.css
 - docs/.vitepress/theme/index.ts
 - docs/api-examples.md
-- docs/guide/getting-started/authorization.md
-- docs/guide/getting-started/core-concepts.md
-- docs/guide/getting-started/index.md
-- docs/guide/getting-started/installation.md
-- docs/guide/getting-started/resources.md
-- docs/guide/tutorial.md
-- docs/guide/what-is-plutonium.md
+- docs/guide/cursor-rules.md
+- docs/guide/deep-dive/authorization.md
+- docs/guide/deep-dive/resources.md
+- docs/guide/getting-started/01-installation.md
+- docs/guide/index.md
+- docs/guide/introduction/01-what-is-plutonium.md
+- docs/guide/introduction/02-core-concepts.md
+- docs/guide/tutorial/01-project-setup.md
+- docs/guide/tutorial/02-creating-a-feature-package.md
+- docs/guide/tutorial/03-defining-resources.md
+- docs/guide/tutorial/04-creating-a-portal.md
+- docs/guide/tutorial/05-customizing-the-ui.md
+- docs/guide/tutorial/06-adding-custom-actions.md
+- docs/guide/tutorial/07-implementing-authorization.md
 - docs/index.md
 - docs/markdown-examples.md
+- docs/modules/action.md
+- docs/modules/authentication.md
+- docs/modules/configuration.md
+- docs/modules/controller.md
+- docs/modules/core.md
+- docs/modules/definition.md
+- docs/modules/display.md
+- docs/modules/form.md
+- docs/modules/generator.md
+- docs/modules/index.md
+- docs/modules/interaction.md
+- docs/modules/package.md
+- docs/modules/policy.md
+- docs/modules/portal.md
+- docs/modules/query.md
+- docs/modules/resource_record.md
+- docs/modules/routing.md
+- docs/modules/table.md
+- docs/modules/ui.md
 - docs/public/android-chrome-192x192.png
 - docs/public/android-chrome-512x512.png
 - docs/public/apple-touch-icon.png
 - docs/public/favicon-16x16.png
 - docs/public/favicon-32x32.png
 - docs/public/favicon.ico
+- docs/public/plutonium.mdc
 - docs/public/plutonium.png
 - docs/public/site.webmanifest
 - docs/public/templates/base.rb

data/docs/guide/getting-started/authorization.md

@@ -1,296 +0,0 @@
-# Authorization and Access Control
-
-Plutonium provides a robust authorization system built on top of [Action Policy](https://actionpolicy.evilmartians.io/), offering fine-grained access control, resource scoping, and entity-based authorization.
-
-## Overview
-
-Authorization in Plutonium operates at multiple levels:
-- Resource-level policies
-- Action-based permissions
-- Entity-based scoping
-- Attribute-level access control
-
-## Basic Policy Definition
-
-Every resource in Plutonium requires a policy. Here's a basic example:
-
-```ruby
-class BlogPolicy < ResourcePolicy
-  # Core CRUD Permissions
-
-  def create?
-    # All authenticated users can create blogs
-    true
-  end
-
-  def read?
-    # Allow anyone to read blogs
-    true
-  end
-
-  def update?
-    # Allow only the blog owner to update
-    owner?
-  end
-
-  def destroy?
-    # Allow only the blog owner or admins to destroy
-    owner? || user.admin?
-  end
-
-  # Attribute Control
-
-  def permitted_attributes_for_create
-    [:title, :content, :category]
-  end
-
-  def permitted_attributes_for_read
-    [:title, :content, :category, :created_at, :updated_at, :user_id]
-  end
-
-  def permitted_attributes_for_update
-    [:title, :content, :category]
-  end
-
-  # Association Access
-
-  def permitted_associations
-    [:comments]
-  end
-
-  private
-
-  def owner?
-    record.user_id == user.id
-  end
-end
-```
-
-## Default Behaviors in Plutonium Policies
-
-::: info Overview
-Plutonium's Policy system implements a secure-by-default pattern with clear inheritance chains for both permissions and attribute access.
-:::
-
-### Permission Defaults
-
-Permission methods follow two key patterns: core permissions that default to `false`, and derived permissions that inherit from core ones.
-
-#### Core Permission Chain
-
-```mermaid
-graph TD
-    subgraph Core Permissions
-        A[create? ❌] --> B[update? ❌]
-        A --> C[destroy? ❌]
-        D[read? ❌] --> E[index? ❌]
-        D --> F[show? ❌]
-    end
-```
-
-::: warning Security First
-All core permissions (`create?` and `read?`) default to `false`. You must explicitly override these to grant access.
-```ruby
-# Default implementations
-def create?
-  false
-end
-
-def read?
-  false
-end
-```
-:::
-
-#### Permission Inheritance
-
-::: code-group
-```ruby [Action Methods]
-def update?
-  create?    # Inherits from create?
-end
-
-def destroy?
-  create?    # Inherits from create?
-end
-
-def index?
-  read?      # Inherits from read?
-end
-
-def show?
-  read?      # Inherits from read?
-end
-```
-
-```ruby [Helper Methods]
-def new?
-  create?    # Matches create?
-end
-
-def edit?
-  update?    # Matches update?
-end
-
-def search?
-  index?     # Matches index?
-end
-```
-:::
-
-### Attribute Permission Defaults
-
-Attribute permissions also follow an inheritance pattern, but with auto-detection in development:
-
-::: details Inheritance Chain
-```mermaid
-graph TD
-    subgraph Core Attributes
-        A[permitted_attributes_for_create] --> B[permitted_attributes_for_update]
-        C[permitted_attributes_for_read] --> D[permitted_attributes_for_show]
-        C --> E[permitted_attributes_for_index]
-    end
-```
-:::
-
-#### Core Implementation Details
-
-::: code-group
-```ruby [Create Attributes]
-def permitted_attributes_for_create
-  # Auto-detects fields but excludes system columns
-  autodetect_permitted_fields(:permitted_attributes_for_create) - [
-    resource_class.primary_key.to_sym,
-    :created_at,
-    :updated_at
-  ]
-end
-```
-
-```ruby [Read Attributes]
-def permitted_attributes_for_read
-  # Auto-detects all fields
-  autodetect_permitted_fields(:permitted_attributes_for_read)
-end
-```
-
-```ruby [Update Attributes]
-def permitted_attributes_for_update
-  # Inherits from create
-  permitted_attributes_for_create
-end
-```
-:::
-
-::: danger Auto-detection Warning
-The default attribute detection:
-- Only works in development
-- Raises errors in other environments
-- Shows warning messages
-- Must be overridden in production
-:::
-
-### Association Defaults
-
-By default, no associations are permitted:
-
-```ruby
-def permitted_associations
-  []  # Must be explicitly defined
-end
-```
-
-### Context Object Defaults
-
-Two built-in authorization contexts:
-
-::: code-group
-```ruby [Required Context]
-# User must be present
-authorize :user, allow_nil: false
-```
-
-```ruby [Optional Context]
-# Entity scope is optional
-authorize :entity_scope, allow_nil: true
-```
-:::
-
-#### Default Scoping Behavior
-
-When an entity scope exists, records are automatically filtered:
-
-```ruby
-relation_scope do |relation|
-  next relation unless entity_scope
-  relation.associated_with(entity_scope)
-end
-```
-
-#### Adding Custom Contexts
-
-You can add additional authorization contexts:
-
-::: code-group
-```ruby [Policy]
-class BlogPolicy < ResourcePolicy
-  authorize :ability, allow_nil: true
-
-  def promote?
-    user.admin? && ability&.can?(:promote, record)
-  end
-end
-```
-
-```ruby [Controller]
-class BlogsController < ResourceController
-  authorize :ability, through: :current_ability
-
-  private
-
-  def current_ability
-    @current_ability ||= Ability.new(current_user)
-  end
-end
-```
-:::
-
-## Quick Reference
-
-| Method Type | Default | Inherits From |
-|------------|---------|---------------|
-| create? | false | - |
-| read? | false | - |
-| update? | false | create? |
-| destroy? | false | create? |
-| index? | false | read? |
-| show? | false | read? |
-| attributes_for_create | auto* | - |
-| attributes_for_read | auto* | - |
-| attributes_for_update | auto* | create |
-| associations | [] | - |
-
-::: warning
-\*Auto-detection only works in development
-:::
-
-## Security Best Practices
-
-### 1. Never Skip Authorization
-
-Plutonium controllers automatically verify authorization:
-
-```ruby
-class BlogsController < ResourceController
-  def show
-    # This will raise an error if you forget to authorize
-    # authorize! resource_record
-    render :show
-  end
-end
-```
-
-## Related Resources
-
-- [Action Policy Documentation](https://actionpolicy.evilmartians.io/)
-- [Rails Security Guide](https://guides.rubyonrails.org/security.html)