RubyGems - pundit - Versions diffs - 2.1.0 → 2.5.0 - Mend

pundit 2.1.0 → 2.5.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (91) hide show

checksums.yaml +4 -4
data/.github/ISSUE_TEMPLATE/bug_report.md +20 -0
data/.github/ISSUE_TEMPLATE/feature_request.md +26 -0
data/.github/PULL_REQUEST_TEMPLATE/gem_release_template.md +8 -0
data/.github/pull_request_template.md +9 -0
data/.github/workflows/main.yml +147 -0
data/.github/workflows/push_gem.yml +33 -0
data/.gitignore +1 -0
data/.rubocop.yml +26 -29
data/.rubocop_ignore_git.yml +7 -0
data/.yardopts +1 -1
data/CHANGELOG.md +120 -21
data/CODE_OF_CONDUCT.md +1 -1
data/CONTRIBUTING.md +3 -5
data/Gemfile +23 -2
data/README.md +175 -78
data/Rakefile +1 -0
data/SECURITY.md +19 -0
data/config/rubocop-rspec.yml +5 -0
data/lib/generators/pundit/install/install_generator.rb +6 -2
data/lib/generators/pundit/install/templates/{application_policy.rb → application_policy.rb.tt} +7 -3
data/lib/generators/pundit/policy/policy_generator.rb +6 -2
data/lib/generators/pundit/policy/templates/policy.rb.tt +16 -0
data/lib/generators/rspec/policy_generator.rb +7 -2
data/lib/generators/rspec/templates/{policy_spec.rb → policy_spec.rb.tt} +1 -1
data/lib/generators/test_unit/policy_generator.rb +7 -2
data/lib/pundit/authorization.rb +251 -0
data/lib/pundit/cache_store/legacy_store.rb +24 -0
data/lib/pundit/cache_store/null_store.rb +27 -0
data/lib/pundit/cache_store.rb +22 -0
data/lib/pundit/context.rb +177 -0
data/lib/pundit/policy_finder.rb +24 -3
data/lib/pundit/railtie.rb +19 -0
data/lib/pundit/rspec.rb +93 -20
data/lib/pundit/version.rb +2 -1
data/lib/pundit.rb +68 -257
data/pundit.gemspec +10 -10
data/spec/authorization_spec.rb +331 -0
data/spec/generators_spec.rb +43 -0
data/spec/policies/post_policy_spec.rb +28 -1
data/spec/policy_finder_spec.rb +84 -17
data/spec/pundit/helper_spec.rb +18 -0
data/spec/pundit_spec.rb +110 -233
data/spec/rspec_dsl_spec.rb +81 -0
data/spec/simple_cov_check_action_formatter.rb +79 -0
data/spec/spec_helper.rb +29 -265
data/spec/support/lib/controller.rb +38 -0
data/spec/support/lib/custom_cache.rb +19 -0
data/spec/support/lib/instance_tracking.rb +20 -0
data/spec/support/models/article.rb +4 -0
data/spec/support/models/article_tag.rb +7 -0
data/spec/support/models/artificial_blog.rb +7 -0
data/spec/support/models/blog.rb +4 -0
data/spec/support/models/comment.rb +5 -0
data/spec/support/models/comment_four_five_six.rb +5 -0
data/spec/support/models/comment_scope.rb +13 -0
data/spec/support/models/comments_relation.rb +15 -0
data/spec/support/models/customer/post.rb +11 -0
data/spec/support/models/default_scope_contains_error.rb +5 -0
data/spec/support/models/dummy_current_user.rb +7 -0
data/spec/support/models/foo.rb +4 -0
data/spec/support/models/post.rb +25 -0
data/spec/support/models/post_four_five_six.rb +9 -0
data/spec/support/models/project_one_two_three/avatar_four_five_six.rb +7 -0
data/spec/support/models/project_one_two_three/tag_four_five_six.rb +11 -0
data/spec/support/models/wiki.rb +4 -0
data/spec/support/policies/article_tag_other_name_policy.rb +13 -0
data/spec/support/policies/base_policy.rb +23 -0
data/spec/support/policies/blog_policy.rb +5 -0
data/spec/support/policies/comment_policy.rb +11 -0
data/spec/support/policies/criteria_policy.rb +5 -0
data/spec/support/policies/default_scope_contains_error_policy.rb +10 -0
data/spec/support/policies/denier_policy.rb +7 -0
data/spec/support/policies/dummy_current_user_policy.rb +9 -0
data/spec/support/policies/nil_class_policy.rb +17 -0
data/spec/support/policies/post_policy.rb +36 -0
data/spec/support/policies/project/admin/comment_policy.rb +15 -0
data/spec/support/policies/project/comment_policy.rb +17 -0
data/spec/support/policies/project/criteria_policy.rb +7 -0
data/spec/support/policies/project/post_policy.rb +13 -0
data/spec/support/policies/project_one_two_three/avatar_four_five_six_policy.rb +6 -0
data/spec/support/policies/project_one_two_three/comment_four_five_six_policy.rb +6 -0
data/spec/support/policies/project_one_two_three/criteria_four_five_six_policy.rb +6 -0
data/spec/support/policies/project_one_two_three/post_four_five_six_policy.rb +6 -0
data/spec/support/policies/project_one_two_three/tag_four_five_six_policy.rb +6 -0
data/spec/support/policies/publication_policy.rb +13 -0
data/spec/support/policies/wiki_policy.rb +8 -0
metadata +80 -130
data/.travis.yml +0 -21
data/lib/generators/pundit/policy/templates/policy.rb +0 -9
/data/lib/generators/test_unit/templates/{policy_test.rb → policy_test.rb.tt} +0 -0

data/spec/support/policies/post_policy.rb ADDED Viewed

@@ -0,0 +1,36 @@
+# frozen_string_literal: true
+class PostPolicy < BasePolicy
+  class Scope < BaseScope
+    def resolve
+      scope.published
+    end
+  end
+  alias post record
+  def update?
+    post.user == user
+  end
+  alias edit? update?
+  def destroy?
+    false
+  end
+  def show?
+    true
+  end
+  def permitted_attributes
+    if post.user == user
+      %i[title votes]
+    else
+      [:votes]
+    end
+  end
+  def permitted_attributes_for_revise
+    [:body]
+  end
+end

data/spec/support/policies/project/admin/comment_policy.rb ADDED Viewed

@@ -0,0 +1,15 @@
+# frozen_string_literal: true
+module Project
+  module Admin
+    class CommentPolicy < BasePolicy
+      def update?
+        true
+      end
+      def destroy?
+        false
+      end
+    end
+  end
+end

data/spec/support/policies/project/comment_policy.rb ADDED Viewed

@@ -0,0 +1,17 @@
+# frozen_string_literal: true
+module Project
+  class CommentPolicy < BasePolicy
+    class Scope < BaseScope
+      def resolve
+        scope
+      end
+    end
+    def update?
+      true
+    end
+    alias comment record
+  end
+end

data/spec/support/policies/project/criteria_policy.rb ADDED Viewed

@@ -0,0 +1,7 @@
+# frozen_string_literal: true
+module Project
+  class CriteriaPolicy < BasePolicy
+    alias criteria record
+  end
+end

data/spec/support/policies/project/post_policy.rb ADDED Viewed

@@ -0,0 +1,13 @@
+# frozen_string_literal: true
+module Project
+  class PostPolicy < BasePolicy
+    class Scope < BaseScope
+      def resolve
+        scope.read
+      end
+    end
+    alias post record
+  end
+end

data/spec/support/policies/project_one_two_three/avatar_four_five_six_policy.rb ADDED Viewed

@@ -0,0 +1,6 @@
+# frozen_string_literal: true
+module ProjectOneTwoThree
+  class AvatarFourFiveSixPolicy < BasePolicy
+  end
+end

data/spec/support/policies/project_one_two_three/comment_four_five_six_policy.rb ADDED Viewed

@@ -0,0 +1,6 @@
+# frozen_string_literal: true
+module ProjectOneTwoThree
+  class CommentFourFiveSixPolicy < BasePolicy
+  end
+end

data/spec/support/policies/project_one_two_three/criteria_four_five_six_policy.rb ADDED Viewed

@@ -0,0 +1,6 @@
+# frozen_string_literal: true
+module ProjectOneTwoThree
+  class CriteriaFourFiveSixPolicy < BasePolicy
+  end
+end

data/spec/support/policies/project_one_two_three/post_four_five_six_policy.rb ADDED Viewed

@@ -0,0 +1,6 @@
+# frozen_string_literal: true
+module ProjectOneTwoThree
+  class PostFourFiveSixPolicy < BasePolicy
+  end
+end

data/spec/support/policies/project_one_two_three/tag_four_five_six_policy.rb ADDED Viewed

@@ -0,0 +1,6 @@
+# frozen_string_literal: true
+module ProjectOneTwoThree
+  class TagFourFiveSixPolicy < BasePolicy
+  end
+end

data/spec/support/policies/publication_policy.rb ADDED Viewed

@@ -0,0 +1,13 @@
+# frozen_string_literal: true
+class PublicationPolicy < BasePolicy
+  class Scope < BaseScope
+    def resolve
+      scope.published
+    end
+  end
+  def create?
+    true
+  end
+end

data/spec/support/policies/wiki_policy.rb ADDED Viewed

@@ -0,0 +1,8 @@
+# frozen_string_literal: true
+class WikiPolicy
+  class Scope
+    # deliberate typo method
+    def initalize; end
+  end
+end

metadata CHANGED Viewed

@@ -1,15 +1,15 @@
 --- !ruby/object:Gem::Specification
 name: pundit
 version: !ruby/object:Gem::Version
-  version: 2.1.0
+  version: 2.5.0
 platform: ruby
 authors:
 - Jonas Nicklas
 - Varvet AB
-autorequire:
+autorequire:
 bindir: bin
 cert_chain: []
-date: 2019-08-14 00:00:00.000000000 Z
+date: 2025-03-03 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: activesupport
@@ -25,129 +25,23 @@ dependencies:
     - - ">="
       - !ruby/object:Gem::Version
         version: 3.0.0
-- !ruby/object:Gem::Dependency
-  name: actionpack
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: 3.0.0
-  type: :development
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: 3.0.0
-- !ruby/object:Gem::Dependency
-  name: activemodel
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: 3.0.0
-  type: :development
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: 3.0.0
-- !ruby/object:Gem::Dependency
-  name: bundler
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-  type: :development
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-- !ruby/object:Gem::Dependency
-  name: pry
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-  type: :development
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-- !ruby/object:Gem::Dependency
-  name: rake
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-  type: :development
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-- !ruby/object:Gem::Dependency
-  name: rspec
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: 2.0.0
-  type: :development
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: 2.0.0
-- !ruby/object:Gem::Dependency
-  name: rubocop
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - '='
-      - !ruby/object:Gem::Version
-        version: 0.57.2
-  type: :development
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - '='
-      - !ruby/object:Gem::Version
-        version: 0.57.2
-- !ruby/object:Gem::Dependency
-  name: yard
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-  type: :development
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
 description: Object oriented authorization for Rails applications
 email:
 - jonas.nicklas@gmail.com
-- dev@elabs.se
+- info@varvet.com
 executables: []
 extensions: []
 extra_rdoc_files: []
 files:
+- ".github/ISSUE_TEMPLATE/bug_report.md"
+- ".github/ISSUE_TEMPLATE/feature_request.md"
+- ".github/PULL_REQUEST_TEMPLATE/gem_release_template.md"
+- ".github/pull_request_template.md"
+- ".github/workflows/main.yml"
+- ".github/workflows/push_gem.yml"
 - ".gitignore"
 - ".rubocop.yml"
-- ".travis.yml"
+- ".rubocop_ignore_git.yml"
 - ".yardopts"
 - CHANGELOG.md
 - CODE_OF_CONDUCT.md
@@ -156,30 +50,90 @@ files:
 - LICENSE.txt
 - README.md
 - Rakefile
+- SECURITY.md
+- config/rubocop-rspec.yml
 - lib/generators/pundit/install/USAGE
 - lib/generators/pundit/install/install_generator.rb
-- lib/generators/pundit/install/templates/application_policy.rb
+- lib/generators/pundit/install/templates/application_policy.rb.tt
 - lib/generators/pundit/policy/USAGE
 - lib/generators/pundit/policy/policy_generator.rb
-- lib/generators/pundit/policy/templates/policy.rb
+- lib/generators/pundit/policy/templates/policy.rb.tt
 - lib/generators/rspec/policy_generator.rb
-- lib/generators/rspec/templates/policy_spec.rb
+- lib/generators/rspec/templates/policy_spec.rb.tt
 - lib/generators/test_unit/policy_generator.rb
-- lib/generators/test_unit/templates/policy_test.rb
+- lib/generators/test_unit/templates/policy_test.rb.tt
 - lib/pundit.rb
+- lib/pundit/authorization.rb
+- lib/pundit/cache_store.rb
+- lib/pundit/cache_store/legacy_store.rb
+- lib/pundit/cache_store/null_store.rb
+- lib/pundit/context.rb
 - lib/pundit/policy_finder.rb
+- lib/pundit/railtie.rb
 - lib/pundit/rspec.rb
 - lib/pundit/version.rb
 - pundit.gemspec
+- spec/authorization_spec.rb
+- spec/generators_spec.rb
 - spec/policies/post_policy_spec.rb
 - spec/policy_finder_spec.rb
+- spec/pundit/helper_spec.rb
 - spec/pundit_spec.rb
+- spec/rspec_dsl_spec.rb
+- spec/simple_cov_check_action_formatter.rb
 - spec/spec_helper.rb
+- spec/support/lib/controller.rb
+- spec/support/lib/custom_cache.rb
+- spec/support/lib/instance_tracking.rb
+- spec/support/models/article.rb
+- spec/support/models/article_tag.rb
+- spec/support/models/artificial_blog.rb
+- spec/support/models/blog.rb
+- spec/support/models/comment.rb
+- spec/support/models/comment_four_five_six.rb
+- spec/support/models/comment_scope.rb
+- spec/support/models/comments_relation.rb
+- spec/support/models/customer/post.rb
+- spec/support/models/default_scope_contains_error.rb
+- spec/support/models/dummy_current_user.rb
+- spec/support/models/foo.rb
+- spec/support/models/post.rb
+- spec/support/models/post_four_five_six.rb
+- spec/support/models/project_one_two_three/avatar_four_five_six.rb
+- spec/support/models/project_one_two_three/tag_four_five_six.rb
+- spec/support/models/wiki.rb
+- spec/support/policies/article_tag_other_name_policy.rb
+- spec/support/policies/base_policy.rb
+- spec/support/policies/blog_policy.rb
+- spec/support/policies/comment_policy.rb
+- spec/support/policies/criteria_policy.rb
+- spec/support/policies/default_scope_contains_error_policy.rb
+- spec/support/policies/denier_policy.rb
+- spec/support/policies/dummy_current_user_policy.rb
+- spec/support/policies/nil_class_policy.rb
+- spec/support/policies/post_policy.rb
+- spec/support/policies/project/admin/comment_policy.rb
+- spec/support/policies/project/comment_policy.rb
+- spec/support/policies/project/criteria_policy.rb
+- spec/support/policies/project/post_policy.rb
+- spec/support/policies/project_one_two_three/avatar_four_five_six_policy.rb
+- spec/support/policies/project_one_two_three/comment_four_five_six_policy.rb
+- spec/support/policies/project_one_two_three/criteria_four_five_six_policy.rb
+- spec/support/policies/project_one_two_three/post_four_five_six_policy.rb
+- spec/support/policies/project_one_two_three/tag_four_five_six_policy.rb
+- spec/support/policies/publication_policy.rb
+- spec/support/policies/wiki_policy.rb
 homepage: https://github.com/varvet/pundit
 licenses:
 - MIT
-metadata: {}
-post_install_message:
+metadata:
+  rubygems_mfa_required: 'true'
+  bug_tracker_uri: https://github.com/varvet/pundit/issues
+  changelog_uri: https://github.com/varvet/pundit/blob/main/CHANGELOG.md
+  documentation_uri: https://github.com/varvet/pundit/blob/main/README.md
+  homepage_uri: https://github.com/varvet/pundit
+  source_code_uri: https://github.com/varvet/pundit
+post_install_message:
 rdoc_options: []
 require_paths:
 - lib
@@ -194,12 +148,8 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.0.3
-signing_key:
+rubygems_version: 3.5.11
+signing_key:
 specification_version: 4
 summary: OO authorization for Rails
-test_files:
-- spec/policies/post_policy_spec.rb
-- spec/policy_finder_spec.rb
-- spec/pundit_spec.rb
-- spec/spec_helper.rb
+test_files: []

data/.travis.yml DELETED Viewed

@@ -1,21 +0,0 @@
-language: ruby
-before_install:
-  - gem install bundler -v 1.17.3
-matrix:
-  include:
-    - rvm: 2.5.1 # Pre-installed Ruby version
-      script: bundle exec rake rubocop # ONLY lint once, first
-    - rvm: 2.1
-    - rvm: 2.2
-    - rvm: 2.3.5
-    - rvm: 2.4.6
-    - rvm: 2.5.5
-    - rvm: 2.6.3
-    - rvm: jruby-9.1.8.0
-      env:
-        - JRUBY_OPTS="--debug"
-      jdk: openjdk8
-    - rvm: jruby-9.2.8.0
-      env:
-        - JRUBY_OPTS="--debug"

data/lib/generators/pundit/policy/templates/policy.rb DELETED Viewed

@@ -1,9 +0,0 @@
-<% module_namespacing do -%>
-class <%= class_name %>Policy < ApplicationPolicy
-  class Scope < Scope
-    def resolve
-      scope.all
-    end
-  end
-end
-<% end -%>

/data/lib/generators/test_unit/templates/{policy_test.rb → policy_test.rb.tt} RENAMED Viewed

File without changes