pundit 2.1.1 → 2.4.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: def6c710d9f9d1705ca43cdad9364bb34ce5d878b8a3a9bf26d336802e40efeb
-  data.tar.gz: 0d6618cb61dfef8ae18f811a73b3f059d9945f8def7f9b2f794ae095b3a0f0cf
+  metadata.gz: 1cc7a931867875af2c1a7cd5c4225da689b33e101f76bb7a471afb967323e615
+  data.tar.gz: 8ca35ba01f65b52b1b8bbb2061858bdc61cd0034b01818b07dbbba4b7ddd3a69
 SHA512:
-  metadata.gz: 7105cd0a84469071de9211e19f7e7a31f4ea8b5283d7b1ed007b6533805de18d105c09128a9936144612f3daa8fadfdf0698f7448d8db94e47bb459efaa11c4b
-  data.tar.gz: 3805e2664f21f30c66e9a9a05606f0d0d18b1607137e794948c7907bd33c6d6e64a45b9abb97d2f1a21df0d46497ff708679442807e152fa167abc461c8c0abe
+  metadata.gz: 0f495747f61c744c04dffa7811d3a86fc818812807a971591d71542d798d5a7aa4438333534082e755bbead592b4b1b5465e23030e535b03420c643e088bcaf1
+  data.tar.gz: 951ec8a8c02c081bc6b412bb0b5d1d6ffcc33543fa71f66fef9c4f4a6f391ea53a057e20b94bdef5faf4c8f2ef0deffd09357c9580ef6a739575c94a70d9d950

data/.github/ISSUE_TEMPLATE/bug_report.md

@@ -0,0 +1,20 @@
+---
+name: Bug report
+about: Create a bug report to report a problem
+title: ''
+labels: problem
+assignees: ''
+
+---
+
+**Describe the bug**
+A clear and concise description of what the bug is.
+
+**To Reproduce**
+Steps or runnable code to reproduce the problem.
+
+**Expected behavior**
+A clear and concise description of what you expected to happen.
+
+**Additional context**
+Add any other context about the problem here.

data/.github/ISSUE_TEMPLATE/feature_request.md

@@ -0,0 +1,26 @@
+---
+name: Feature request
+about: Suggest an idea
+title: ''
+labels: ['feature request']
+assignees: ''
+---
+
+**Please consider**
+- Could this feature break backwards-compatibility?
+- Could this feature benefit the many who use Pundit?
+- Could this feature be useful in _most_ projects that use Pundit?
+- Would this feature require Rails?
+- Am I open to creating a Pull Request with the necessary changes?
+
+**Is your feature request related to a problem? Please describe.**
+A clear and concise description of what the problem is. Ex. I'm always frustrated when [...]
+
+**Describe the solution you'd like**
+A clear and concise description of how you'd like to approach solving the problem.
+
+**Describe alternatives you've considered**
+A clear and concise description of any alternative solutions or features you've considered.
+
+**Additional context**
+Add any other context. Ex. if you've solved this problem in your own projects already, how that worked, and why the feature should be moved and maintained in Pundit instead.

data/.github/PULL_REQUEST_TEMPLATE/gem_release_template.md

@@ -0,0 +1,8 @@
+## To do
+
+- [ ] Make changes:
+  - [ ] Bump `Pundit::VERSION` in `lib/pundit/version.rb`.
+  - [ ] Update `CHANGELOG.md`.
+- [ ] Open pull request 🚀 and merge it.
+- [ ] Run [push gem](https://github.com/varvet/pundit/actions/workflows/push_gem.yml) GitHub Action.
+- [ ] Make an announcement in [Pundit discussions](https://github.com/varvet/pundit/discussions/categories/announcements)

data/.github/pull_request_template.md

@@ -0,0 +1,9 @@
+## To do
+
+- [ ] I have read the [contributing guidelines](https://github.com/varvet/pundit/contribute).
+- [ ] I have added relevant tests.
+- [ ] I have adjusted relevant documentation.
+- [ ] I have made sure the individual commits are meaningful.
+- [ ] I have added relevant lines to the CHANGELOG.
+
+PS: Thank you for contributing to Pundit ❤️

data/.github/workflows/main.yml

@@ -0,0 +1,112 @@
+name: Main
+
+on:
+  push:
+    branches: [ "main" ]
+  pull_request:
+    branches: [ "main" ]
+  workflow_dispatch:
+
+permissions:
+  contents: read
+
+env:
+  CC_TEST_REPORTER_ID: "ac477089fe20ab4fc7e0d304cab75f72d73d58a7596d366935d18fcc7d51f8f9"
+
+  # `github.ref` points to the *merge commit* when running tests on a pull request, which will be a commit
+  # that doesn't exists in our code base. Since this workflow triggers from a PR, we use the HEAD SHA instead.
+  #
+  # NOTE: These are both used by Code Climate (cc-test-reporter).
+  GIT_COMMIT_SHA: ${{ github.event.pull_request.head.sha }}
+  GIT_BRANCH: ${{ github.head_ref }}
+
+jobs:
+  matrix-test:
+    runs-on: ubuntu-latest
+    continue-on-error: ${{ matrix.allow-failure || false }}
+    strategy:
+      fail-fast: false
+      matrix:
+        ruby-version:
+          - '3.1'
+          - '3.2'
+          - '3.3'
+          - 'jruby-9.3.10' # oldest supported jruby
+          - 'jruby'
+        include: # HEAD-versions
+          - ruby-version: 'head'
+            allow-failure: true
+          - ruby-version: 'jruby-head'
+            allow-failure: true
+          - ruby-version: 'truffleruby-head'
+            allow-failure: true
+
+    steps:
+    - uses: actions/checkout@v4
+    - name: Set up Ruby
+      uses: ruby/setup-ruby@v1
+      with:
+        rubygems: latest
+        ruby-version: ${{ matrix.ruby-version }}
+        bundler-cache: ${{ !startsWith(matrix.ruby-version, 'jruby') }}
+    - name: Bundler install (JRuby workaround)
+      if: ${{ startsWith(matrix.ruby-version, 'jruby') }}
+      run: |
+        gem install psych
+        bundle install
+    - name: Run tests
+      run: bundle exec rspec
+
+  test:
+    runs-on: ubuntu-latest
+    steps:
+    - uses: actions/checkout@v4
+    - name: Set up Ruby
+      uses: ruby/setup-ruby@v1
+      with:
+        rubygems: latest
+        ruby-version: 'ruby'
+        bundler-cache: true
+    - name: "Download cc-test-reporter from codeclimate.com"
+      run: |
+        curl -L https://codeclimate.com/downloads/test-reporter/test-reporter-latest-linux-amd64 > ./cc-test-reporter
+        chmod +x ./cc-test-reporter
+    - name: "Report to Code Climate that we will send a coverage report."
+      run: ./cc-test-reporter before-build
+    - name: Run tests
+      run: bundle exec rspec
+      env:
+        COVERAGE: 1
+    - name: Upload code coverage to Code Climate
+      run: |
+        ./cc-test-reporter after-build \
+          --coverage-input-type simplecov \
+          ./coverage/.resultset.json
+
+  rubocop:
+    runs-on: ubuntu-latest
+    steps:
+    - uses: actions/checkout@v4
+    - name: Set up Ruby
+      uses: ruby/setup-ruby@v1
+      with:
+        rubygems: default
+        ruby-version: 'ruby'
+        bundler-cache: false
+    - run: bundle install
+    - name: Run RuboCop
+      run: bundle exec rubocop
+
+  required-checks:
+    runs-on: ubuntu-latest
+    if: ${{ always() }}
+    needs:
+      - test
+      - matrix-test
+      - rubocop
+    steps:
+      - name: failure
+        if: ${{ failure() || contains(needs.*.result, 'failure') }}
+        run: exit 1
+      - name: success
+        run: exit 0

data/.github/workflows/push_gem.yml

@@ -0,0 +1,33 @@
+name: Push Gem
+
+on:
+  workflow_dispatch:
+
+permissions:
+  contents: read
+
+jobs:
+  push:
+    if: github.repository == 'varvet/pundit'
+    runs-on: ubuntu-latest
+
+    permissions:
+      contents: write
+      id-token: write
+
+    steps:
+      # Set up
+      - name: Harden Runner
+        uses: step-security/harden-runner@5c7944e73c4c2a096b17a9cb74d65b6c2bbafbde # v2.9.1
+        with:
+          egress-policy: audit
+
+      - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
+      - name: Set up Ruby
+        uses: ruby/setup-ruby@a6e6f86333f0a2523ece813039b8b4be04560854 # v1.190.0
+        with:
+          bundler-cache: true
+          ruby-version: ruby
+
+      # Release
+      - uses: rubygems/release-gem@612653d273a73bdae1df8453e090060bb4db5f31 # v1+ unreleased

data/.rubocop.yml

@@ -1,7 +1,12 @@
 AllCops:
-  TargetRubyVersion: 2.6
+  TargetRubyVersion: 3.1
   Exclude:
     - "lib/generators/**/templates/**/*"
+    <% `git status --ignored --porcelain`.lines.grep(/^!! /).each do |path| %>
+    - <%= path.sub(/^!! /, '').sub(/\/$/, '/**/*') %>
+    <% end %>
+  SuggestExtensions: false
+  NewCops: disable
 
 Metrics/BlockLength:
   Exclude:
@@ -15,19 +20,13 @@ Metrics/ModuleLength:
   Exclude:
     - "**/*_spec.rb"
 
-Metrics/LineLength:
+Layout/LineLength:
   Max: 120
 
-Metrics/AbcSize:
-  Enabled: false
-
-Metrics/CyclomaticComplexity:
-  Enabled: false
-
-Metrics/PerceivedComplexity:
-  Enabled: false
+Gemspec/RequiredRubyVersion:
+ Enabled: false
 
-Layout/AlignParameters:
+Layout/ParameterAlignment:
   EnforcedStyle: with_fixed_indentation
 
 Layout/CaseIndentation:
@@ -54,14 +53,11 @@ Style/StringLiteralsInInterpolation:
 Style/StructInheritance:
   Enabled: false
 
-Style/AndOr:
-  Enabled: false
-
-Style/Not:
-  Enabled: false
-
 Style/DoubleNegation:
   Enabled: false
 
-Documentation:
+Style/Documentation:
   Enabled: false # TODO: Enable again once we have more docs
+
+Style/HashSyntax:
+  EnforcedShorthandSyntax: never

data/CHANGELOG.md

@@ -2,6 +2,58 @@
 
 ## Unreleased
 
+## 2.4.0 (2024-08-26)
+
+## Changed
+
+- Improve the `NotAuthorizedError` message to include the policy class.
+  Furthermore, in the case where the record passed is a class instead of an instance, the class name is given. (#812)
+
+## Added
+
+- Add customizable permit matcher description (#806)
+- Add support for filter_run_when_matching :focus with permissions helper. (#820)
+
+## 2.3.2 (2024-05-08)
+
+- Refactor: First pass of Pundit::Context (#797)
+
+## Changed
+
+- Update `ApplicationPolicy` generator to qualify the `Scope` class name (#792)
+- Policy generator uses `NoMethodError` to indicate `#resolve` is not implemented (#776)
+
+## Deprecated
+
+- Dropped support for Ruby 3.0 (#796)
+
+## 2.3.1 (2023-07-17)
+
+### Fixed
+
+- Use `Kernel.warn` instead of `ActiveSupport::Deprecation.warn` for deprecations (#764)
+- Policy generator now works on Ruby 3.2 (#754)
+
+## 2.3.0 (2022-12-19)
+
+### Added
+
+- add support for rubocop-rspec syntax extensions (#745)
+
+## 2.2.0 (2022-02-11)
+
+### Fixed
+
+- Using `policy_class` and a namespaced record now passes only the record when instantiating the policy. (#697, #689, #694, #666)
+
+### Changed
+
+- Require users to explicitly define Scope#resolve in generated policies (#711, #722)
+
+### Deprecated
+
+- Deprecate `include Pundit` in favor of `include Pundit::Authorization` (#621)
+
 ## 2.1.1 (2021-08-13)
 
 Friday 13th-release!

data/CODE_OF_CONDUCT.md

@@ -25,4 +25,4 @@ maintainers.
 
 This Code of Conduct is adapted from the [Contributor
 Covenant](http:contributor-covenant.org), version 1.0.0, available at
-[http://contributor-covenant.org/version/1/0/0/](http://contributor-covenant.org/version/1/0/0/)
+[https://contributor-covenant.org/version/1/0/0/](https://contributor-covenant.org/version/1/0/0/)

data/CONTRIBUTING.md

@@ -1,9 +1,6 @@
 ## Security issues
 
-If you have found a security related issue, please do not file an issue on
-GitHub or send a PR addressing the issue. Contact
-[Jonas](mailto:jonas.nicklas@gmail.com) directly. You will be given public
-credit for your disclosure.
+If you have found a security related issue, please do not file an issue on GitHub or send a PR addressing the issue. Refer to [SECURITY.md](./SECURITY.md) for instructions.
 
 ## Reporting issues
 
@@ -23,7 +20,7 @@ Pundit version, OS version and any stack traces you have are very valuable.
 - **Document any change in behaviour**. Make sure the README and any other
   relevant documentation are kept up-to-date.
 
-- **Create topic branches**. Please don't ask us to pull from your master branch.
+- **Create topic branches**. Please don't ask us to pull from your main branch.
 
 - **One pull request per feature**. If you want to do more than one thing, send
   multiple pull requests.
@@ -31,3 +28,4 @@ Pundit version, OS version and any stack traces you have are very valuable.
 - **Send coherent history**. Make sure each individual commit in your pull
   request is meaningful. If you had to make multiple intermediate commits while
   developing, please squash them before sending them to us.
+- **Update the CHANGELOG.** Don't forget to add your new changes to the CHANGELOG.

data/Gemfile

@@ -2,6 +2,7 @@
 
 source "https://rubygems.org"
 
-ruby RUBY_VERSION
-
 gemspec
+
+# https://github.com/ruby/psych/issues/655
+gem "psych", "!= 5.1.1", platforms: %i[jruby]