rails-acu 1.2.1

data/lib/acu/utilities.rb

@@ -0,0 +1,14 @@
+module Acu
+  module Utilities
+    protected
+    def helper_initialize
+      instance_variable_set("@_params", {}) if not instance_variable_defined?("@_params")
+    end
+    def pass args = {}
+      helper_initialize
+      args.each { |k, v| @_params[k] = v }
+      yield
+      args.each { |k, _| @_params.delete k }
+    end
+  end
+end

data/lib/acu/version.rb

@@ -0,0 +1,3 @@
+module Acu
+  VERSION = '1.2.1'
+end

data/lib/generators/acu/install_generator.rb

@@ -0,0 +1,20 @@
+require 'rails/generators/base'
+
+module Acu
+  module Generators
+    class InstallGenerator < Rails::Generators::Base
+      source_root File.expand_path("../../templates", __FILE__)
+
+      desc "Creates an Acu initializer and copy locale files to your application."
+
+      def copy_setup
+        template 'setup.rb', "config/initializers/acu_setup.rb"
+      end
+
+      def copy_rule
+        template 'rules.rb', "config/initializers/acu_rules.rb"
+      end
+
+    end
+  end
+end

data/lib/generators/templates/rules.rb

@@ -0,0 +1,34 @@
+# This is an examble, modify it as well
+Acu::Rules.define do
+  # anyone make a request could be count as everyone!
+  whois :everyone { true }
+
+  # whois :admin, args: [:user] { |c| c and c.user_type.symbol == :ADMIN.to_s }
+  # whois :client, args: [:user] { |c| c and c.user_type.symbol == :PUBLIC.to_s }
+
+  # assume anyone can access
+  # this has security leak of overrideing the `allow_by_default` config
+  # allow :everyone
+
+  # the default namespace
+  # namespace do
+  #   controller :home do
+  #     allow [:admin, :client], on: [:some_secret_action]
+  #   end
+  # end
+
+  # the admin namespace
+  # namespace :admin do
+  #   allow :admin
+
+  #   controller :contact, only: [:send_message] do
+  #     allow :everyone
+  #   end
+
+  #   controller :contact do
+  #     action :support {
+  #       allow :client
+  #     }
+  #   end
+  # end
+end

data/lib/generators/templates/setup.rb

@@ -0,0 +1,30 @@
+Acu.setup do |config|
+  # name it to the Base Application Controller that your project
+  # is going to use as a base of all of your controllers.
+  config.base_controller = :ApplicationController
+
+  # to tighten the security this is enabled by default
+  # i.e if it checked to be true, then if a request didn't match to any of rules, it will get passed through
+  # otherwise the requests which don't fit into any of rules, the request is denied by default
+  config.allow_by_default = false
+
+  # the audit log file, to log how the requests handles, good for production
+  # leave it black for nil to disable the logging
+  config.audit_log_file   = ""
+
+  # cache the rules to make rule matching much faster
+  # it's not recommended to use it in developement/test evn.
+  config.use_cache = false
+
+  # the caching namespace
+  config.cache_namespace = 'acu'
+
+  # define the expiration of cached entries
+  config.cache_expires_in = nil
+
+  # the race condition ttl
+  config.cache_race_condition_ttl = nil
+
+  # more details about cache options:
+  # http://guides.rubyonrails.org/caching_with_rails.html
+end

data/lib/rails-acu.rb

@@ -0,0 +1,26 @@
+require 'rails'
+require 'active_support'
+
+module Acu
+
+  def self.register *files, under: 'acu/', global: false
+    command = 'autoload'
+    command = "Acu.#{command}" if not global
+    files.each { |f| eval "#{command} :#{f.humanize.to_sym}, '#{under}#{f}'" }
+  end
+
+  register 'engine', 'rules', 'monitor', 'listeners', 'injectors', 'configs', 'errors'
+
+  # Default way to set up Acu. Run rails generate devise_install to create
+  # a fresh initializer with all configuration values.
+  def self.setup
+    yield Acu::Configs
+  end
+
+  # include the error utilities
+  include Errors
+  # include listeners
+  include Listeners
+  # include Injector operations
+  include Injectors
+end

data/rails-acu.gemspec

@@ -0,0 +1,23 @@
+$:.push File.expand_path("../lib", __FILE__)
+
+# Maintain your gem's version:
+require "acu/version"
+
+# Describe your gem and declare its dependencies:
+Gem::Specification.new do |s|
+  s.name        = "rails-acu"
+  s.version     = Acu::VERSION
+  s.authors     = ["Dariush Hasanpour"]
+  s.email       = ["b.g.dariush@gmail.com"]
+  s.homepage    = "https://github.com/noise2/rails-acu"
+  s.summary     = "Access Control Unit"
+  s.description = "Access control unit for controller-action sets"
+  s.license     = "MIT"
+
+  s.files         = `git ls-files`.split("\n")
+  s.test_files    = `git ls-files -- spec/*`.split("\n")
+
+  s.require_paths = ["lib"]
+
+  s.add_dependency "rails", "~> 5.0.0", '>= 5.0.0'
+end

data/spec/dummy/Rakefile

@@ -0,0 +1,6 @@
+# Add your own tasks in files placed in lib/tasks ending in .rake,
+# for example lib/tasks/capistrano.rake, and they will automatically be available to Rake.
+
+require_relative 'config/application'
+
+Rails.application.load_tasks

data/spec/dummy/app/assets/config/manifest.js

@@ -0,0 +1,5 @@
+
+//= link_tree ../images
+//= link_directory ../javascripts .js
+//= link_directory ../stylesheets .css
+//= link acu_manifest.js

data/spec/dummy/app/assets/javascripts/admin/manage.js

@@ -0,0 +1,2 @@
+// Place all the behaviors and hooks related to the matching controller here.
+// All this logic will automatically be available in application.js.

data/spec/dummy/app/assets/javascripts/application.js

@@ -0,0 +1,15 @@
+// This is a manifest file that'll be compiled into application.js, which will include all the files
+// listed below.
+//
+// Any JavaScript/Coffee file within this directory, lib/assets/javascripts, vendor/assets/javascripts,
+// or any plugin's vendor/assets/javascripts directory can be referenced here using a relative path.
+//
+// It's not advisable to add code directly here, but if you do, it'll appear at the bottom of the
+// compiled file. JavaScript code in this file should be added after the last require_* statement.
+//
+// Read Sprockets README (https://github.com/rails/sprockets#sprockets-directives) for details
+// about supported directives.
+//
+//= require jquery
+//= require jquery_ujs
+//= require_tree .

data/spec/dummy/app/assets/javascripts/books.js

@@ -0,0 +1,2 @@
+// Place all the behaviors and hooks related to the matching controller here.
+// All this logic will automatically be available in application.js.

data/spec/dummy/app/assets/javascripts/cable.js

@@ -0,0 +1,12 @@
+// Action Cable provides the framework to deal with WebSockets in Rails.
+// You can generate new channels where WebSocket features live using the rails generate channel command.
+//
+//= require action_cable
+//= require_self
+
+(function() {
+  this.App || (this.App = {});
+
+  App.cable = ActionCable.createConsumer();
+
+}).call(this);

data/spec/dummy/app/assets/javascripts/comments.js

@@ -0,0 +1,2 @@
+// Place all the behaviors and hooks related to the matching controller here.
+// All this logic will automatically be available in application.js.

data/spec/dummy/app/assets/javascripts/home.js

@@ -0,0 +1,2 @@
+// Place all the behaviors and hooks related to the matching controller here.
+// All this logic will automatically be available in application.js.

data/spec/dummy/app/assets/stylesheets/admin/manage.css

@@ -0,0 +1,4 @@
+/*
+  Place all the styles related to the matching controller here.
+  They will automatically be included in application.css.
+*/

data/spec/dummy/app/assets/stylesheets/application.css

@@ -0,0 +1,15 @@
+/*
+ * This is a manifest file that'll be compiled into application.css, which will include all the files
+ * listed below.
+ *
+ * Any CSS and SCSS file within this directory, lib/assets/stylesheets, vendor/assets/stylesheets,
+ * or any plugin's vendor/assets/stylesheets directory can be referenced here using a relative path.
+ *
+ * You're free to add application-wide styles to this file and they'll appear at the bottom of the
+ * compiled file so the styles you add here take precedence over styles defined in any other CSS/SCSS
+ * files in this directory. Styles in this file should be added after the last require_* statement.
+ * It is generally better to create a new file per style scope.
+ *
+ *= require_tree .
+ *= require_self
+ */

data/spec/dummy/app/assets/stylesheets/books.css

@@ -0,0 +1,4 @@
+/*
+  Place all the styles related to the matching controller here.
+  They will automatically be included in application.css.
+*/

data/spec/dummy/app/assets/stylesheets/comments.css

@@ -0,0 +1,4 @@
+/*
+  Place all the styles related to the matching controller here.
+  They will automatically be included in application.css.
+*/

data/spec/dummy/app/assets/stylesheets/home.css

@@ -0,0 +1,4 @@
+/*
+  Place all the styles related to the matching controller here.
+  They will automatically be included in application.css.
+*/

data/spec/dummy/app/assets/stylesheets/scaffold.css

@@ -0,0 +1,84 @@
+body {
+  background-color: #fff;
+  color: #333;
+}
+
+body, p, ol, ul, td {
+  font-family: verdana, arial, helvetica, sans-serif;
+  font-size: 13px;
+  line-height: 18px;
+  margin: 33px;
+}
+
+pre {
+  background-color: #eee;
+  padding: 10px;
+  font-size: 11px;
+}
+
+a {
+  color: #000;
+}
+
+a:visited {
+  color: #666;
+}
+
+a:hover {
+  color: #fff;
+  background-color: #000;
+}
+
+th {
+  padding-bottom: 5px;
+}
+
+td {
+  padding-bottom: 7px;
+  padding-left: 5px;
+  padding-right: 5px;
+}
+
+div.field,
+div.actions {
+  margin-bottom: 10px;
+}
+
+#notice {
+  color: green;
+}
+
+.field_with_errors {
+  padding: 2px;
+  background-color: red;
+  display: table;
+}
+
+#error_explanation {
+  width: 450px;
+  border: 2px solid red;
+  padding: 7px;
+  padding-bottom: 0;
+  margin-bottom: 20px;
+  background-color: #f0f0f0;
+}
+
+#error_explanation h2 {
+  text-align: left;
+  font-weight: bold;
+  padding: 5px 5px 5px 15px;
+  font-size: 12px;
+  margin: -7px;
+  margin-bottom: 0;
+  background-color: #c00;
+  color: #fff;
+}
+
+#error_explanation ul li {
+  font-size: 12px;
+  list-style: square;
+}
+
+label {
+  display: block;
+}

data/spec/dummy/app/channels/application_cable/channel.rb

@@ -0,0 +1,4 @@
+module ApplicationCable
+  class Channel < ActionCable::Channel::Base
+  end
+end

data/spec/dummy/app/channels/application_cable/connection.rb

@@ -0,0 +1,4 @@
+module ApplicationCable
+  class Connection < ActionCable::Connection::Base
+  end
+end

data/spec/dummy/app/controllers/admin/manage_controller.rb

@@ -0,0 +1,19 @@
+class Admin::ManageController < ApplicationController
+  def index
+  end
+
+  def show
+  end
+
+  def list
+  end
+
+  def delete
+  end
+
+  def add
+  end
+
+  def prove
+  end
+end

data/spec/dummy/app/controllers/application_controller.rb

@@ -0,0 +1,4 @@
+class ApplicationController < ActionController::Base
+  protect_from_forgery with: :exception
+  before_action { Acu::Monitor.by user: current_user }
+end

data/spec/dummy/app/controllers/home_controller.rb

@@ -0,0 +1,7 @@
+class HomeController < ApplicationController
+  def index
+  end
+
+  def contact
+  end
+end

data/spec/dummy/app/helpers/admin/manage_helper.rb

@@ -0,0 +1,2 @@
+module Admin::ManageHelper
+end

data/spec/dummy/app/helpers/application_helper.rb

@@ -0,0 +1,2 @@
+module ApplicationHelper
+end

data/spec/dummy/app/helpers/home_helper.rb

@@ -0,0 +1,2 @@
+module HomeHelper
+end

data/spec/dummy/app/jobs/application_job.rb

@@ -0,0 +1,2 @@
+class ApplicationJob < ActiveJob::Base
+end

data/spec/dummy/app/mailers/application_mailer.rb

@@ -0,0 +1,4 @@
+class ApplicationMailer < ActionMailer::Base
+  default from: 'from@example.com'
+  layout 'mailer'
+end

data/spec/dummy/app/models/application_record.rb

@@ -0,0 +1,3 @@
+class ApplicationRecord < ActiveRecord::Base
+  self.abstract_class = true
+end

data/spec/dummy/app/models/user.rb

@@ -0,0 +1,8 @@
+class User < ApplicationRecord
+  # Include default devise modules. Others available are:
+  # :confirmable, :lockable, :timeoutable and :omniauthable
+  devise :database_authenticatable, :registerable,
+         :recoverable, :rememberable, :trackable, :validatable
+
+   belongs_to :user_type
+end

data/spec/dummy/app/models/user_type.rb

@@ -0,0 +1,3 @@
+class UserType < ApplicationRecord
+  has_many :user
+end

data/spec/dummy/app/views/admin/manage/add.html.erb

@@ -0,0 +1,2 @@
+<h1>Admin::Manage#add</h1>
+<p>Find me in app/views/admin/manage/add.html.erb</p>

data/spec/dummy/app/views/admin/manage/delete.html.erb

@@ -0,0 +1,2 @@
+<h1>Admin::Manage#delete</h1>
+<p>Find me in app/views/admin/manage/delete.html.erb</p>