RubyGems - pundit - Versions diffs - 1.1.0 → 2.3.0 - Mend

pundit 1.1.0 → 2.3.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (31) hide show

checksums.yaml +5 -5
data/.gitignore +1 -0
data/.rubocop.yml +29 -52
data/.travis.yml +25 -10
data/CHANGELOG.md +88 -0
data/Gemfile +4 -1
data/LICENSE.txt +1 -1
data/README.md +304 -87
data/Rakefile +2 -1
data/config/rubocop-rspec.yml +5 -0
data/lib/generators/pundit/install/install_generator.rb +4 -2
data/lib/generators/pundit/install/templates/application_policy.rb +8 -8
data/lib/generators/pundit/policy/policy_generator.rb +4 -2
data/lib/generators/pundit/policy/templates/policy.rb +4 -3
data/lib/generators/rspec/policy_generator.rb +4 -2
data/lib/generators/rspec/templates/policy_spec.rb +1 -2
data/lib/generators/test_unit/policy_generator.rb +4 -2
data/lib/generators/test_unit/templates/policy_test.rb +0 -1
data/lib/pundit/authorization.rb +168 -0
data/lib/pundit/policy_finder.rb +28 -32
data/lib/pundit/rspec.rb +13 -17
data/lib/pundit/version.rb +3 -1
data/lib/pundit.rb +76 -190
data/pundit.gemspec +12 -9
data/spec/authorization_spec.rb +258 -0
data/spec/generators_spec.rb +43 -0
data/spec/policies/post_policy_spec.rb +3 -1
data/spec/policy_finder_spec.rb +187 -0
data/spec/pundit_spec.rb +147 -196
data/spec/spec_helper.rb +110 -30
metadata +59 -25

data/spec/spec_helper.rb CHANGED Viewed

@@ -1,3 +1,10 @@
+# frozen_string_literal: true
+require "simplecov"
+SimpleCov.start do
+  add_filter "/spec/"
+end
 require "pundit"
 require "pundit/rspec"
@@ -9,22 +16,6 @@ require "active_support/core_ext"
 require "active_model/naming"
 require "action_controller/metal/strong_parameters"
-I18n.enforce_available_locales = false
-module PunditSpecHelper
-  extend RSpec::Matchers::DSL
-  matcher :be_truthy do
-    match do |actual|
-      actual
-    end
-  end
-end
-RSpec.configure do |config|
-  config.include PunditSpecHelper
-end
 class PostPolicy < Struct.new(:user, :post)
   class Scope < Struct.new(:user, :scope)
     def resolve
@@ -46,7 +37,7 @@ class PostPolicy < Struct.new(:user, :post)
   def permitted_attributes
     if post.user == user
-      [:title, :votes]
+      %i[title votes]
     else
       [:votes]
     end
@@ -62,6 +53,10 @@ class Post < Struct.new(:user)
     :published
   end
+  def self.read
+    :read
+  end
   def to_s
     "Post"
   end
@@ -77,26 +72,50 @@ module Customer
       OpenStruct.new(param_key: "customer_post")
     end
-    def policy_class
+    def self.policy_class
       PostPolicy
     end
   end
 end
+class CommentScope
+  attr_reader :original_object
+  def initialize(original_object)
+    @original_object = original_object
+  end
+  def ==(other)
+    original_object == other.original_object
+  end
+end
 class CommentPolicy < Struct.new(:user, :comment)
   class Scope < Struct.new(:user, :scope)
     def resolve
-      scope
+      CommentScope.new(scope)
     end
   end
 end
+class PublicationPolicy < Struct.new(:user, :publication)
+  class Scope < Struct.new(:user, :scope)
+    def resolve
+      scope.published
+    end
+  end
+  def create?
+    true
+  end
+end
 class Comment
   extend ActiveModel::Naming
 end
 class CommentsRelation
-  def initialize(empty = false)
+  def initialize(empty: false)
     @empty = empty
   end
@@ -104,7 +123,7 @@ class CommentsRelation
     @empty
   end
-  def model_name
+  def self.model_name
     Comment.model_name
   end
 end
@@ -140,9 +159,39 @@ end
 class CriteriaPolicy < Struct.new(:user, :criteria); end
 module Project
-  class CommentPolicy < Struct.new(:user, :post); end
+  class CommentPolicy < Struct.new(:user, :comment)
+    def update?
+      true
+    end
+    class Scope < Struct.new(:user, :scope)
+      def resolve
+        scope
+      end
+    end
+  end
   class CriteriaPolicy < Struct.new(:user, :criteria); end
-  class PostPolicy < Struct.new(:user, :post); end
+  class PostPolicy < Struct.new(:user, :post)
+    class Scope < Struct.new(:user, :scope)
+      def resolve
+        scope.read
+      end
+    end
+  end
+  module Admin
+    class CommentPolicy < Struct.new(:user, :comment)
+      def update?
+        true
+      end
+      def destroy?
+        false
+      end
+    end
+  end
 end
 class DenierPolicy < Struct.new(:user, :record)
@@ -152,25 +201,56 @@ class DenierPolicy < Struct.new(:user, :record)
 end
 class Controller
-  include Pundit
+  include Pundit::Authorization
+  # Mark protected methods public so they may be called in test
+  # rubocop:disable Style/AccessModifierDeclarations
+  public(*Pundit::Authorization.protected_instance_methods)
+  # rubocop:enable Style/AccessModifierDeclarations
-  attr_reader :current_user, :params
+  attr_reader :current_user, :action_name, :params
-  def initialize(current_user, params)
+  def initialize(current_user, action_name, params)
     @current_user = current_user
+    @action_name = action_name
     @params = params
   end
 end
-class NilClassPolicy
+class NilClassPolicy < Struct.new(:user, :record)
   class Scope
     def initialize(*)
-      raise "I'm only here to be annoying!"
+      raise Pundit::NotDefinedError, "Cannot scope NilClass"
     end
   end
-  def initialize(*)
-    raise "I'm only here to be annoying!"
+  def show?
+    false
+  end
+  def destroy?
+    false
+  end
+end
+class Wiki; end
+class WikiPolicy
+  class Scope
+    # deliberate typo method
+    def initalize; end
+  end
+end
+class Thread
+  def self.all; end
+end
+class ThreadPolicy < Struct.new(:user, :thread)
+  class Scope < Struct.new(:user, :scope)
+    def resolve
+      # deliberate wrong useage of the method
+      scope.all(:unvalid, :parameters)
+    end
   end
 end

metadata CHANGED Viewed

@@ -1,15 +1,15 @@
 --- !ruby/object:Gem::Specification
 name: pundit
 version: !ruby/object:Gem::Version
-  version: 1.1.0
+  version: 2.3.0
 platform: ruby
 authors:
 - Jonas Nicklas
-- Elabs AB
-autorequire:
+- Varvet AB
+autorequire:
 bindir: bin
 cert_chain: []
-date: 2016-01-14 00:00:00.000000000 Z
+date: 2022-12-19 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: activesupport
@@ -26,7 +26,7 @@ dependencies:
       - !ruby/object:Gem::Version
         version: 3.0.0
 - !ruby/object:Gem::Dependency
-  name: activemodel
+  name: actionpack
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
@@ -40,7 +40,7 @@ dependencies:
       - !ruby/object:Gem::Version
         version: 3.0.0
 - !ruby/object:Gem::Dependency
-  name: actionpack
+  name: activemodel
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
@@ -57,44 +57,44 @@ dependencies:
   name: bundler
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - ">="
       - !ruby/object:Gem::Version
-        version: '1.3'
+        version: '0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - ">="
       - !ruby/object:Gem::Version
-        version: '1.3'
+        version: '0'
 - !ruby/object:Gem::Dependency
-  name: rspec
+  name: pry
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: 2.0.0
+        version: '0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: 2.0.0
+        version: '0'
 - !ruby/object:Gem::Dependency
-  name: pry
+  name: railties
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: '0'
+        version: 3.0.0
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: '0'
+        version: 3.0.0
 - !ruby/object:Gem::Dependency
   name: rake
   requirement: !ruby/object:Gem::Requirement
@@ -110,21 +110,49 @@ dependencies:
       - !ruby/object:Gem::Version
         version: '0'
 - !ruby/object:Gem::Dependency
-  name: yard
+  name: rspec
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: '0'
+        version: 3.0.0
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: '0'
+        version: 3.0.0
 - !ruby/object:Gem::Dependency
   name: rubocop
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - '='
+      - !ruby/object:Gem::Version
+        version: 1.24.0
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - '='
+      - !ruby/object:Gem::Version
+        version: 1.24.0
+- !ruby/object:Gem::Dependency
+  name: simplecov
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 0.17.0
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 0.17.0
+- !ruby/object:Gem::Dependency
+  name: yard
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
@@ -156,6 +184,7 @@ files:
 - LICENSE.txt
 - README.md
 - Rakefile
+- config/rubocop-rspec.yml
 - lib/generators/pundit/install/USAGE
 - lib/generators/pundit/install/install_generator.rb
 - lib/generators/pundit/install/templates/application_policy.rb
@@ -167,18 +196,22 @@ files:
 - lib/generators/test_unit/policy_generator.rb
 - lib/generators/test_unit/templates/policy_test.rb
 - lib/pundit.rb
+- lib/pundit/authorization.rb
 - lib/pundit/policy_finder.rb
 - lib/pundit/rspec.rb
 - lib/pundit/version.rb
 - pundit.gemspec
+- spec/authorization_spec.rb
+- spec/generators_spec.rb
 - spec/policies/post_policy_spec.rb
+- spec/policy_finder_spec.rb
 - spec/pundit_spec.rb
 - spec/spec_helper.rb
-homepage: https://github.com/elabs/pundit
+homepage: https://github.com/varvet/pundit
 licenses:
 - MIT
 metadata: {}
-post_install_message:
+post_install_message:
 rdoc_options: []
 require_paths:
 - lib
@@ -193,13 +226,14 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubyforge_project:
-rubygems_version: 2.4.8
-signing_key:
+rubygems_version: 3.3.7
+signing_key:
 specification_version: 4
 summary: OO authorization for Rails
 test_files:
+- spec/authorization_spec.rb
+- spec/generators_spec.rb
 - spec/policies/post_policy_spec.rb
+- spec/policy_finder_spec.rb
 - spec/pundit_spec.rb
 - spec/spec_helper.rb
-has_rdoc: