rbac_rls 0.1.4 → 0.1.5

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (31) hide show
  1. checksums.yaml +4 -4
  2. data/README.md +4 -0
  3. data/app/controllers/rbac_rls/permissions_controller.rb +5 -1
  4. data/app/controllers/rbac_rls/roles_controller.rb +7 -1
  5. data/app/models/rbac_rls/group.rb +2 -5
  6. data/app/models/rbac_rls/permission.rb +26 -5
  7. data/app/models/rbac_rls/role.rb +23 -1
  8. data/app/views/rbac_rls/groups/_form.html.erb +6 -6
  9. data/app/views/rbac_rls/groups/_group.html.erb +8 -12
  10. data/app/views/rbac_rls/groups/_group_permission_fields.html.erb +2 -2
  11. data/app/views/rbac_rls/groups/_group_user_fields.html.erb +1 -1
  12. data/app/views/rbac_rls/groups/edit.html.erb +2 -2
  13. data/app/views/rbac_rls/groups/index.html.erb +12 -6
  14. data/app/views/rbac_rls/groups/new.html.erb +1 -1
  15. data/app/views/rbac_rls/groups/show.html.erb +4 -5
  16. data/app/views/rbac_rls/permissions/_form.html.erb +15 -12
  17. data/app/views/rbac_rls/permissions/_permission.html.erb +37 -54
  18. data/app/views/rbac_rls/permissions/_role_permission_fields.html.erb +2 -2
  19. data/app/views/rbac_rls/permissions/index.html.erb +12 -5
  20. data/app/views/rbac_rls/permissions/show.html.erb +7 -6
  21. data/app/views/rbac_rls/roles/_form.html.erb +13 -12
  22. data/app/views/rbac_rls/roles/_user_role_fields.html.erb +1 -1
  23. data/app/views/rbac_rls/roles/index.html.erb +1 -3
  24. data/app/views/rbac_rls/roles/new.html.erb +1 -1
  25. data/app/views/rbac_rls/roles/show.html.erb +9 -3
  26. data/app/views/rbac_rls/shared/_user.html.erb +6 -0
  27. data/lib/generators/rbac_rls/templates/group_permission_migration.rb +1 -1
  28. data/lib/generators/rbac_rls/templates/rls_migration.rb +4 -4
  29. data/lib/rbac_rls/version.rb +2 -2
  30. data/lib/rbac_rls.rb +4 -0
  31. metadata +3 -2
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 27a062559ce3ed39a8354ebde354c8d7977d14e9b1d9863e982987019bf7be4d
4
- data.tar.gz: 3e7a744ca0cac8908a708685a3c198b0ec8d1608100445ad9712f30c15a5c228
3
+ metadata.gz: a78283c1080582d297d67402835e23261cb3676c1083b7a11283fe983f5b6e4c
4
+ data.tar.gz: b4193df304d181c3e51c8e0a2de4229dbc11279833314bc77fa571102275a27c
5
5
  SHA512:
6
- metadata.gz: 27559ee87603c01c7aed6426dfaefb81ee7ffdc3c36aa59116da0195c8e6555b7cce360173e5be35331ebbedbbb8d338758d53ccefda29f6a6b82ce1646887f2
7
- data.tar.gz: 6a2fd3df7b7ed6447acc1c8c99925f51bf71a3ad1bbca8d06196ae075c3cfd0de797104f428a1b860da5cbe723b5bf27ca0fa59f72bbc0ee86051d3782b3a8db
6
+ metadata.gz: 80ce3e50e315e100fc31febcb62c8f4e8f1068d0d87933c6a45b0fd609eba6f42b4898a0aae8f12549249a21d433fddc21bbbdef93dcaea9a58a156898c85e71
7
+ data.tar.gz: beb7a1969bd9bad2f70e460a51e403e9fc2798ccf2edbe7dc1d3894d05f2c87927dc8bc133d325160d06af524a360da36ac61acdb9b317c5345ea60173386b52
data/README.md CHANGED
@@ -23,6 +23,10 @@ banco de dados.
23
23
 
24
24
  # Como utilizar esta Gem ?.
25
25
 
26
+ ###
27
+ Caso queira Apenas Testar há essa aplicação principal com um Scaffold básico "produtos" de exemplo: https://gitlab.com/FilipeBeserraMaia/example_to_test
28
+
29
+
26
30
  ### Instalação:
27
31
 
28
32
  Adicione esta linha no arquivo da sua aplicação Gemfile
data/app/controllers/rbac_rls/permissions_controller.rb CHANGED
@@ -43,8 +43,12 @@ module RbacRls
43
43
 
44
44
  # DELETE /permissions/1
45
45
  def destroy
46
+ notice_msg = "Permission was successfully destroyed."
46
47
  @permission.destroy
47
- redirect_to permissions_url, notice: "Permission was successfully destroyed."
48
+ if @permission.errors.size > 0
49
+ notice_msg = @permission.errors&.messages&.first&.last&.last
50
+ end
51
+ redirect_to permissions_url, notice: notice_msg
48
52
  end
49
53
 
50
54
  private
data/app/controllers/rbac_rls/roles_controller.rb CHANGED
@@ -42,8 +42,14 @@ module RbacRls
42
42
 
43
43
  # DELETE /roles/1
44
44
  def destroy
45
+ notice_msg = "Role was successfully destroyed."
46
+
45
47
  @role.destroy
46
- redirect_to roles_url, notice: "Role was successfully destroyed."
48
+ if @role.errors.size > 0
49
+ notice_msg = @role.errors&.messages&.first&.last&.last
50
+ end
51
+ redirect_to roles_url, notice: notice_msg
52
+
47
53
  end
48
54
 
49
55
  private
data/app/models/rbac_rls/group.rb CHANGED
@@ -1,14 +1,11 @@
1
1
  class RbacRls::Group < ApplicationRecord
2
2
 
3
3
  self.table_name = :groups
4
- has_many :group_permissions, :class_name => 'RbacRls::GroupPermission'
5
- has_many :group_users, :class_name => 'RbacRls::GroupUser'
4
+ has_many :group_permissions, :class_name => 'RbacRls::GroupPermission', dependent: :delete_all
5
+ has_many :group_users, :class_name => 'RbacRls::GroupUser', dependent: :delete_all
6
6
  accepts_nested_attributes_for :group_permissions, reject_if: :all_blank, allow_destroy: true
7
7
  accepts_nested_attributes_for :group_users, reject_if: :all_blank, allow_destroy: true
8
8
 
9
-
10
9
  private
11
10
 
12
-
13
-
14
11
  end
data/app/models/rbac_rls/permission.rb CHANGED
@@ -2,7 +2,8 @@ class RbacRls::Permission < ApplicationRecord
2
2
  include ManageRlsMigrationConcern
3
3
  self.table_name = :permissions
4
4
  belongs_to :permission, :class_name => 'RbacRls::Permission', optional: true
5
- has_many :role_permissions, :class_name => 'RbacRls::RolePermission'
5
+ has_many :role_permissions, :class_name => 'RbacRls::RolePermission', dependent: :delete_all
6
+ has_many :group_permissions, :class_name => 'RbacRls::GroupPermission'
6
7
  accepts_nested_attributes_for :role_permissions, reject_if: :all_blank, allow_destroy: true
7
8
 
8
9
  #validations
@@ -11,12 +12,15 @@ class RbacRls::Permission < ApplicationRecord
11
12
  validates_presence_of :table_name
12
13
  before_validation :set_permission_name
13
14
  after_validation :create_rls_policy
14
-
15
-
16
- def self.all_tables(schema = :public)
15
+ before_destroy :validate_destroy, prepend: true do
16
+ throw(:abort) if errors.present?
17
+ end
18
+ def self.all_tables(schema = :public, except = [])
19
+ removed = [:permissions, :roles, :user_roles, :schema_migrations, :ar_internal_metadata, :users,
20
+ :groups, :group_permissions, :group_users, :role_permissions] + except
17
21
  sql = "SELECT table_name FROM information_schema.tables #{where_schema(schema)} "
18
22
  result = ActiveRecord::Base.connection.select_all(sql)
19
- tables = result.map { |k| k['table_name'] }
23
+ tables = result.map { |k| k['table_name'] }.select { |t| removed.exclude?(t.to_sym) }
20
24
  tables
21
25
  end
22
26
 
@@ -61,4 +65,21 @@ class RbacRls::Permission < ApplicationRecord
61
65
  def has_role_permission?() end
62
66
 
63
67
 
68
+ def validate_destroy
69
+ if not can_destroy?
70
+ self.errors.add(:base, @error)
71
+ end
72
+ end
73
+
74
+ private
75
+
76
+ def can_destroy?
77
+ out = true
78
+ if group_permissions.count > 0
79
+ @error = "Can't be destroyed because of Has associations With Groups"
80
+ out = false
81
+ end
82
+ out
83
+ end
84
+
64
85
  end
data/app/models/rbac_rls/role.rb CHANGED
@@ -3,8 +3,30 @@ class RbacRls::Role < ApplicationRecord
3
3
 
4
4
  # has_many :permissions, :class_name => 'RbacRls::Permission'
5
5
 
6
- has_many :user_roles, :class_name => 'RbacRls::UserRole'
6
+ has_many :user_roles, :class_name => 'RbacRls::UserRole', dependent: :delete_all
7
+ has_many :user_permissions, :class_name => 'RbacRls::RolePermission'
7
8
  accepts_nested_attributes_for :user_roles, reject_if: :all_blank, allow_destroy: true
8
9
 
10
+ before_destroy :validate_destroy, prepend: true do
11
+ throw(:abort) if errors.present?
12
+ end
13
+
14
+ def validate_destroy
15
+ if not can_destroy?
16
+ self.errors.add(:base, @error)
17
+ end
18
+ end
19
+
20
+ private
21
+
22
+ def can_destroy?
23
+ out = true
24
+ if user_permissions.count > 0
25
+ @error = "Can't be destroyed because of Has associations With permissions"
26
+ out = false
27
+ end
28
+ out
29
+ end
30
+
9
31
  end
10
32
 
data/app/views/rbac_rls/groups/_form.html.erb CHANGED
@@ -13,18 +13,18 @@
13
13
 
14
14
  <div>
15
15
  <%= form.label :name, style: "display: block" %>
16
- <%= form.text_field :name %>
16
+ <%= form.text_field :name, class: "form-control" %>
17
17
  </div>
18
18
 
19
19
  <div>
20
20
  <%= form.label :comments, style: "display: block" %>
21
- <%= form.text_field :comments %>
21
+ <%= form.text_field :comments, class: "form-control" %>
22
22
  </div>
23
23
  <div class="m-2">
24
24
  <%= link_to_add_nested(form, :group_permissions, '#group_permissions',
25
25
  partial: 'rbac_rls/groups/group_permission_fields',
26
26
  link_text: 'Add new Permission to this Group Permission',
27
- link_classes: 'btn-primary btn-sm') %>
27
+ link_classes: 'btn-primary btn') %>
28
28
  </div>
29
29
  <div id='group_permissions'>
30
30
  <%= form.fields_for :group_permissions do |p| %>
@@ -35,8 +35,8 @@
35
35
  <div class="m-2">
36
36
  <%= link_to_add_nested(form, :group_users, '#group_users',
37
37
  partial: 'rbac_rls/groups/group_user_fields',
38
- link_text: 'Add new User to this Group User',
39
- link_classes: 'btn-primary btn-sm') %>
38
+ link_text: 'Associate User to this Group',
39
+ link_classes: 'btn-primary btn') %>
40
40
  </div>
41
41
  <div id='group_users'>
42
42
  <%= form.fields_for :group_users do |p| %>
@@ -45,7 +45,7 @@
45
45
  </div>
46
46
 
47
47
  <div>
48
- <%= form.submit %>
48
+ <%= form.submit "Save", class: "btn btn-success" %>
49
49
  </div>
50
50
 
51
51
  <% end %>
data/app/views/rbac_rls/groups/_group.html.erb CHANGED
@@ -1,12 +1,8 @@
1
- <div id="<%= dom_id group %>">
2
- <p>
3
- <strong>Name:</strong>
4
- <%= group.name %>
5
- </p>
6
-
7
- <p>
8
- <strong>Comments:</strong>
9
- <%= group.comments %>
10
- </p>
11
-
12
- </div>
1
+ <ul class="list-group">
2
+ <li class="list-group-item">
3
+ <b>name:</b> <%= group.name %>
4
+ </li>
5
+ <li class="list-group-item">
6
+ <b>comments:</b> <%= group.comments %>
7
+ </li>
8
+ </ul>
data/app/views/rbac_rls/groups/_group_permission_fields.html.erb CHANGED
@@ -1,7 +1,7 @@
1
1
  <% utc = Time.now.utc.to_formatted_s(:number) %>
2
2
  <div class="wrapper-div m-2">
3
3
  <div class="">
4
- <%= link_to_remove_nested(form, fields_wrapper_selector: '.wrapper-div', link_classes: 'btn-danger btn-sm') %>
4
+ <%= link_to_remove_nested(form, fields_wrapper_selector: '.wrapper-div', link_classes: 'btn-danger btn') %>
5
5
  </div>
6
6
  <div class="">
7
7
  <%= form.label :permission_id %> <br>
@@ -13,6 +13,6 @@
13
13
  </div>
14
14
  <div class="">
15
15
  <%= form.label :table_value %> <br>
16
- <%= form.text_field :table_value %>
16
+ <%= form.text_field :table_value,class:"form-control" %>
17
17
  </div>
18
18
  </div>
data/app/views/rbac_rls/groups/_group_user_fields.html.erb CHANGED
@@ -1,6 +1,6 @@
1
1
  <div class="wrapper-div m-2">
2
2
  <div class="">
3
- <%= link_to_remove_nested(form, fields_wrapper_selector: '.wrapper-div', link_classes: 'btn-danger btn-sm') %>
3
+ <%= link_to_remove_nested(form, fields_wrapper_selector: '.wrapper-div', link_classes: 'btn-danger btn') %>
4
4
  </div>
5
5
  <div class="">
6
6
  <%= form.label :user_id %> <br>
data/app/views/rbac_rls/groups/edit.html.erb CHANGED
@@ -5,6 +5,6 @@
5
5
  <br>
6
6
 
7
7
  <div>
8
- <%= link_to "Show this group", @group %> |
9
- <%= link_to "Back to groups", groups_path %>
8
+ <%= link_to "Show this group", @group, class: "btn btn-secondary" %> |
9
+ <%= link_to "Back to groups", groups_path, class: "btn btn-secondary" %>
10
10
  </div>
data/app/views/rbac_rls/groups/index.html.erb CHANGED
@@ -2,13 +2,19 @@
2
2
 
3
3
  <h1>Groups</h1>
4
4
 
5
- <div id="groups">
5
+ <div id="groups" class="mt-3">
6
6
  <% @groups.each do |group| %>
7
- <%= render group %>
8
- <p>
9
- <%= link_to "Show this group", group %>
10
- </p>
7
+ <div class="mt-3">
8
+ <%= render group %>
9
+ </div>
10
+ <div class="mt-3 row">
11
+ <div class="col"><%= link_to "Edit this group", edit_group_path(group), class: "btn btn-warning" %></div>
12
+ <div class="col"> <%= link_to "Show this group", group, class: "btn btn-secondary" %></div>
13
+ <div class="col"><%= button_to "Destroy this group", group, method: :delete, class: "btn btn-danger" %></div>
14
+ </div>
11
15
  <% end %>
12
16
  </div>
13
17
 
14
- <%= link_to "New group", new_group_path %>
18
+ <div class="mt-3">
19
+ <%= link_to "New group", new_group_path, class: "btn btn-primary" %>
20
+ </div>
data/app/views/rbac_rls/groups/new.html.erb CHANGED
@@ -5,5 +5,5 @@
5
5
  <br>
6
6
 
7
7
  <div>
8
- <%= link_to "Back to groups", groups_path %>
8
+ <%= link_to "Back to groups", groups_path, class: "btn btn-secondary" %>
9
9
  </div>
data/app/views/rbac_rls/groups/show.html.erb CHANGED
@@ -2,9 +2,8 @@
2
2
 
3
3
  <%= render @group %>
4
4
 
5
- <div>
6
- <%= link_to "Edit this group", edit_group_path(@group) %> |
7
- <%= link_to "Back to groups", groups_path %>
8
-
9
- <%= button_to "Destroy this group", @group, method: :delete %>
5
+ <div class="row mt-3">
6
+ <div class="col"><%= link_to "Edit this group", edit_group_path(@group), class: "btn btn-warning" %></div>
7
+ <div class="col"><%= link_to "Back to groups", groups_path, class: "btn btn-secondary" %></div>
8
+ <div class="col"><%= button_to "Destroy this group", @group, method: :delete, class: "btn btn-danger" %></div>
10
9
  </div>
data/app/views/rbac_rls/permissions/_form.html.erb CHANGED
@@ -56,23 +56,26 @@
56
56
  </div>
57
57
  </div>
58
58
 
59
- <div class="">
60
- <%= form.label :permission_id %> <br>
61
- <%= form.select(:permission_id, permission_options_for_select(form), { :prompt => "...", include_blank: true }, class: 'form-control') %>
62
- </div>
63
- <div class="m-2">
64
- <%= link_to_add_nested(form, :role_permissions, '#roles_permission',
65
- partial: 'rbac_rls/permissions/role_permission_fields',
66
- link_text: 'Add new User to this Role Permission',
67
- link_classes: 'btn-primary btn-sm') %>
68
- </div>
69
- <div id='roles_permission'>
59
+ <!-- <div class="">-->
60
+ <!-- <%#= form.label :permission_id %> <br>-->
61
+ <%#= form.select(:permission_id, permission_options_for_select(form), { :prompt => "...", include_blank: true }, class: 'form-control') %>
62
+ <!-- </div>-->
63
+ <hr>
64
+ <div id='roles_permission' class="m-3">
65
+ <hr>
70
66
  <%= form.fields_for :role_permissions do |p| %>
71
67
  <% render 'rbac_rls/permissions/role_permission_fields', form: p %>
72
68
  <% end %>
69
+
73
70
  </div>
74
71
  <div class="m-2">
75
- <%= form.submit %>
72
+ <%= link_to_add_nested(form, :role_permissions, '#roles_permission',
73
+ partial: 'rbac_rls/permissions/role_permission_fields',
74
+ link_text: 'Associate Role to this Permission',
75
+ link_classes: 'btn btn-primary btn-sm') %>
76
+ </div>
77
+ <div class="m-5">
78
+ <%= form.submit "Save", class: 'btn btn-primary' %>
76
79
  </div>
77
80
  <% end %>
78
81
  </div>
data/app/views/rbac_rls/permissions/_permission.html.erb CHANGED
@@ -1,54 +1,37 @@
1
- <div id="<%= dom_id permission %>">
2
- <p>
3
- <strong>Name:</strong>
4
- <%= permission.name %>
5
- </p>
6
-
7
- <p>
8
- <strong>Table name:</strong>
9
- <%= permission.table_name %>
10
- </p>
11
-
12
- <p>
13
- <strong>Read:</strong>
14
- <%= permission.read %>
15
- </p>
16
-
17
- <p>
18
- <strong>Write:</strong>
19
- <%= permission.write %>
20
- </p>
21
-
22
- <p>
23
- <strong>Update:</strong>
24
- <%= permission.change %>
25
- </p>
26
-
27
- <p>
28
- <strong>Delete:</strong>
29
- <%= permission.remove %>
30
- </p>
31
-
32
- <p>
33
- <strong>Permission:</strong>
34
- <%= permission.permission_id %>
35
- </p>
36
- <p>
37
- <strong>
38
- owner_read
39
- </strong>
40
- <%= permission.owner_read %>
41
- </p>
42
- <p>
43
- <strong>
44
- owner_change
45
- </strong>
46
- <%= permission.owner_change %>
47
- </p>
48
- <p>
49
- <strong>
50
- owner_remove
51
- </strong>
52
- <%= permission.owner_remove %>
53
- </p>
54
- </div>
1
+ <div class="row">
2
+ <div class="col">
3
+ <ul class="list-group">
4
+ <li class="list-group-item">
5
+ <b>name:</b> <%= permission.name %>
6
+ </li>
7
+ <li class="list-group-item">
8
+ <b>table name:</b> <%= permission.table_name %>
9
+ </li>
10
+ <li class="list-group-item">
11
+ <b>read:</b> <%= permission.read %>
12
+ </li>
13
+ <li class="list-group-item">
14
+ <b>write:</b> <%= permission.write %>
15
+ </li>
16
+ <li class="list-group-item">
17
+ <b>change:</b> <%= permission.change %>
18
+ </li>
19
+ <li class="list-group-item">
20
+ <b>remove:</b> <%= permission.remove %>
21
+ </li>
22
+ </ul>
23
+ </div>
24
+ <div class="col">
25
+ <ul class="list-group">
26
+ <li class="list-group-item">
27
+ <b>owner read:</b> <%= permission.owner_read %>
28
+ </li>
29
+ <li class="list-group-item">
30
+ <b>owner change:</b> <%= permission.owner_change %>
31
+ </li>
32
+ <li class="list-group-item">
33
+ <b>owner remove:</b> <%= permission.owner_remove %>
34
+ </li>
35
+ </ul>
36
+ </div>
37
+ </div>
data/app/views/rbac_rls/permissions/_role_permission_fields.html.erb CHANGED
@@ -1,9 +1,9 @@
1
1
  <div class="wrapper-div m-2">
2
2
  <div class="">
3
- <%= link_to_remove_nested(form, fields_wrapper_selector: '.wrapper-div', link_classes: 'btn-danger btn-sm') %>
3
+ <%= link_to_remove_nested(form, fields_wrapper_selector: '.wrapper-div', link_classes: 'btn btn-danger btn-sm') %>
4
4
  </div>
5
5
  <div class="">
6
6
  <%= form.label :role_id %> <br>
7
- <%= form.select(:role_id, role_options_for_select(form), { :prompt => "...", include_blank: true }, class: 'form-control') %>
7
+ <%= form.select(:role_id, role_options_for_select(form), { :prompt => "..."}, class: 'form-control') %>
8
8
  </div>
9
9
  </div>
data/app/views/rbac_rls/permissions/index.html.erb CHANGED
@@ -3,16 +3,23 @@
3
3
  <h1 class="display-3">Permissions</h1>
4
4
 
5
5
  <div class="">
6
- <%= link_to new_permission_path, class: 'btn-primary btn-sm' do %>
6
+ <%= link_to new_permission_path, class: 'btn btn-primary btn-sm' do %>
7
7
  New permission
8
8
  <% end %>
9
9
  </div>
10
10
 
11
11
  <div id="permissions">
12
12
  <% @permissions.each do |permission| %>
13
- <%= render permission %>
14
- <p>
15
- <%= link_to "Show this permission", permission,class: 'btn btn-secondary'%>
16
- </p>
13
+
14
+ <div class="m-3">
15
+ <%= render permission %>
16
+ </div>
17
+ <div class="m-3">
18
+ <div class="row">
19
+ <div class="col"><%= link_to "Edit this permission", edit_permission_path(permission), class: "btn btn-warning" %></div>
20
+ <div class="col"><%= button_to "Destroy this permission", permission, method: :delete, class: "btn btn-danger" %></div>
21
+ <div class="col"><%= link_to "Show this permission", permission, class: 'btn btn-secondary' %></div>
22
+ </div>
23
+ </div>
17
24
  <% end %>
18
25
  </div>
data/app/views/rbac_rls/permissions/show.html.erb CHANGED
@@ -1,10 +1,11 @@
1
1
  <p style="color: green"><%= notice %></p>
2
2
 
3
- <%= render @permission %>
4
-
5
- <div>
6
- <%= link_to "Edit this permission", edit_permission_path(@permission) %> |
7
- <%= link_to "Back to permissions", permissions_path %>
3
+ <div class="m-3">
4
+ <%= render @permission %>
5
+ </div>
8
6
 
9
- <%= button_to "Destroy this permission", @permission, method: :delete %>
7
+ <div class="row">
8
+ <div class="col"><%= link_to "Edit this permission", edit_permission_path(@permission), class: "btn btn-warning" %></div>
9
+ <div class="col"><%= link_to "Back to permissions", permissions_path, class: "btn btn-secondary" %></div>
10
+ <div class="col"><%= button_to "Destroy this permission", @permission, method: :delete, class: "btn btn-danger" %></div>
10
11
  </div>
data/app/views/rbac_rls/roles/_form.html.erb CHANGED
@@ -22,21 +22,22 @@
22
22
  <%= form.text_area :comments, class: 'form-control' %>
23
23
  </div>
24
24
 
25
-
26
- <div id='user_roles'>
27
- <%= form.fields_for :user_roles do |p| %>
28
- <% render 'rbac_rls/roles/user_role_fields', form: p %>
29
- <% end %>
30
- </div>
31
- <div class="m-2">
32
- <%= link_to_add_nested(form, :user_roles, '#user_roles',
33
- partial: 'rbac_rls/roles/user_role_fields',
34
- link_text: 'Add new User to role',
35
- link_classes: 'btn-primary btn-sm') %>
25
+ <div class="container">
26
+ <div id='user_roles'>
27
+ <%= form.fields_for :user_roles do |p| %>
28
+ <% render 'rbac_rls/roles/user_role_fields', form: p %>
29
+ <% end %>
30
+ </div>
31
+ <div class="m-2">
32
+ <%= link_to_add_nested(form, :user_roles, '#user_roles',
33
+ partial: 'rbac_rls/roles/user_role_fields',
34
+ link_text: 'Add new User to role',
35
+ link_classes: 'btn btn-primary btn-sm') %>
36
+ </div>
36
37
  </div>
37
38
 
38
39
  <div class="m-2">
39
- <%= form.submit "Create Role", class: 'btn-primary btn-sm' %>
40
+ <%= form.submit "Create Role", class: 'btn btn-primary btn-sm' %>
40
41
  </div>
41
42
  <% end %>
42
43
  </div>
data/app/views/rbac_rls/roles/_user_role_fields.html.erb CHANGED
@@ -1,6 +1,6 @@
1
1
  <div class="wrapper-div m-2">
2
2
  <div class="">
3
- <%= link_to_remove_nested(form, fields_wrapper_selector: '.wrapper-div', link_classes: 'btn-danger btn-sm') %>
3
+ <%= link_to_remove_nested(form, fields_wrapper_selector: '.wrapper-div', link_classes: 'btn btn-danger btn-sm') %>
4
4
  </div>
5
5
  <div class="">
6
6
  <%= form.label :user_id %> <br>
data/app/views/rbac_rls/roles/index.html.erb CHANGED
@@ -1,10 +1,8 @@
1
1
  <div class="container">
2
2
  <p style="color: green"><%= notice %></p>
3
-
4
3
  <h1 class="display-3">Roles</h1>
5
-
6
4
  <div class="">
7
- <%= link_to new_role_path, class: 'btn-primary btn-sm' do %>
5
+ <%= link_to new_role_path, class: 'btn btn-primary btn-sm' do %>
8
6
  New Role
9
7
  <% end %>
10
8
  </div>
data/app/views/rbac_rls/roles/new.html.erb CHANGED
@@ -1,7 +1,7 @@
1
1
  <div class="container">
2
2
  <h1 class="display-3">New role</h1>
3
3
  <div>
4
- <%= link_to "Back to roles", roles_path, class: 'btn-danger btn-sm' %>
4
+ <%= link_to "Back to roles", roles_path, class: 'btn btn-sm btn-danger' %>
5
5
  </div>
6
6
 
7
7
  <%= render "form", role: @role %>
data/app/views/rbac_rls/roles/show.html.erb CHANGED
@@ -1,12 +1,18 @@
1
1
  <div class="container">
2
2
  <p style="color: green"><%= notice %></p>
3
- <%= link_to "Edit this role", edit_role_path(@role), class: 'btn-primary btn-sm' %>
4
- <%= link_to "Back to roles", roles_path, class: 'btn-danger btn-sm' %>
3
+ <%= link_to "Edit this role", edit_role_path(@role), class: 'btn btn-primary btn-sm' %>
4
+ <%= link_to "Back to roles", roles_path, class: 'btn btn-danger btn-sm' %>
5
5
 
6
6
 
7
7
  <div class="w-75 m-2">
8
8
  <%= render @role %>
9
+ <div class="m-3">
10
+ <div><h5>Associated Users</h5></div>
11
+ <% @role.user_roles.each do |user| %>
12
+ <%= render 'rbac_rls/shared/user', obj: user %>
13
+ <% end %>
14
+ </div>
9
15
  </div>
10
16
 
11
- <%= button_to "Destroy this role", @role, method: :delete, class: 'btn-danger btn-sm', data: { confirm: "Are you sure?" } %>
17
+ <%= button_to "Destroy this role", @role, method: :delete, class: 'btn btn-danger btn-sm', data: { confirm: "Are you sure?" } %>
12
18
  </div>
data/app/views/rbac_rls/shared/_user.html.erb ADDED
@@ -0,0 +1,6 @@
1
+ <div class="container">
2
+ <div class="w-75 m-2">
3
+ <div><b>User:</b> <%= obj.user.email %></div>
4
+ </div>
5
+
6
+ </div>
data/lib/generators/rbac_rls/templates/group_permission_migration.rb CHANGED
@@ -37,7 +37,7 @@ def change
37
37
  INNER JOIN group_users gu on gu.group_id = gp.group_id
38
38
  WHERE (p.\"#{type_polices[type.to_sym]}\")
39
39
  AND p.table_name = '#{gen_table_name}'
40
- ) and owner_id = NULLIF(current_setting('rls.user_id', TRUE), '')::bigint )
40
+ ) and #{RbacRls::Settings.owner_column_name} = NULLIF(current_setting('rls.user_id', TRUE), '')::bigint )
41
41
  "
42
42
  end
43
43
  }
data/lib/generators/rbac_rls/templates/rls_migration.rb CHANGED
@@ -2,7 +2,7 @@
2
2
  # rails generate rbac_rls:custom_migration table_name
3
3
  time_now = Time.now.getutc.to_i
4
4
  attrs = attributes.map { |i| i.name.camelize }
5
-
5
+ gen_table_name = name.underscore
6
6
  limit_policy_name = 63
7
7
  type_polices = {insert: :write,
8
8
  select: :read,
@@ -33,8 +33,8 @@ def change
33
33
  INNER JOIN role_permissions rp on rp.permission_id = p.id
34
34
  INNER JOIN user_roles ur on rp.role_id = ur.role_id
35
35
  WHERE (p.\"#{type_polices_owner[type.to_sym]}\")
36
- AND p.table_name = 'products'
37
- ) and owner_id = NULLIF(current_setting('rls.user_id', TRUE), '')::bigint )
36
+ AND p.table_name = '#{gen_table_name}'
37
+ ) and #{RbacRls::Settings.owner_column_name} = NULLIF(current_setting('rls.user_id', TRUE), '')::bigint )
38
38
  "
39
39
  end
40
40
  }
@@ -47,7 +47,7 @@ def change
47
47
  INNER JOIN role_permissions rp on rp.permission_id = p.id
48
48
  INNER JOIN user_roles ur on rp.role_id = ur.role_id
49
49
  WHERE (p.\"#{type_polices[type.to_sym]}\")
50
- AND p.table_name = 'products'
50
+ AND p.table_name = '#{gen_table_name}'
51
51
  )
52
52
  #{owner_rls_policy[type]}
53
53
  "
data/lib/rbac_rls/version.rb CHANGED
@@ -1,3 +1,3 @@
1
1
  module RbacRls
2
- VERSION = "0.1.4"
3
- end
2
+ VERSION = "0.1.5"
3
+ end
data/lib/rbac_rls.rb CHANGED
@@ -11,6 +11,10 @@ module RbacRls
11
11
  "rake db:migrate:down VERSION=#{version} RAILS_ENV=migrations"
12
12
  end
13
13
 
14
+ def self.owner_column_name
15
+ "owner_id"
16
+ end
17
+
14
18
  def self.application_db_user
15
19
  "app_user"
16
20
  end
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: rbac_rls
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.1.4
4
+ version: 0.1.5
5
5
  platform: ruby
6
6
  authors:
7
7
  - FilipeBeserraMaia
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2022-10-14 00:00:00.000000000 Z
11
+ date: 2022-10-26 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: rails
@@ -128,6 +128,7 @@ files:
128
128
  - app/views/rbac_rls/roles/index.html.erb
129
129
  - app/views/rbac_rls/roles/new.html.erb
130
130
  - app/views/rbac_rls/roles/show.html.erb
131
+ - app/views/rbac_rls/shared/_user.html.erb
131
132
  - config/assets.rb
132
133
  - config/importmap.rb
133
134
  - config/routes.rb