RubyGems - responder_controller - Versions diffs - 0.2.0 → 0.3.0 - Mend

responder_controller 0.2.0 → 0.3.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (13) hide show

data/CHANGELOG +6 -0
data/Rakefile +1 -1
data/VERSION +1 -1
data/lib/responder_controller.rb +4 -297
data/lib/responder_controller/actions.rb +57 -0
data/lib/responder_controller/class_methods.rb +126 -0
data/lib/responder_controller/instance_methods.rb +118 -0
data/responder_controller.gemspec +14 -5
data/spec/responder_controller/actions_spec.rb +140 -0
data/spec/responder_controller/class_methods_spec.rb +266 -0
data/spec/responder_controller/instance_methods_spec.rb +239 -0
data/spec/responder_controller_spec.rb +2 -586
metadata +13 -4

data/CHANGELOG CHANGED

@@ -1,3 +1,9 @@
+*ResponderController 0.2.0*
+* Added .serves_scopes, which takes :only and :except options to restrict the list of active
+  record scopes that #index will serve.  If a forbidden scope is requested, ForbiddenScope will be
+  raised, which will render as a 403 if uncaught.
 *ResponderController 0.1.3*
 * Render BadScopes as 400s, not 422s

data/Rakefile CHANGED

@@ -10,7 +10,7 @@ begin
     gem.email = "phil.h.smith@gmail.com"
     gem.homepage = "http://github.com/phs/responder_controller"
     gem.authors = ["Phil Smith"]
-    gem.add_dependency "activesupport", ">= 3.0.0.beta2"
+    gem.add_dependency "activesupport", ">= 3.0.0.beta3"
     gem.add_development_dependency "rspec", ">= 1.2.9"
     # gem is a Gem::Specification... see http://www.rubygems.org/read/chapter/20 for additional settings
   end

data/VERSION CHANGED

	@@ -1 +1 @@
1	- 0.2.0
1	+ 0.3.0

data/lib/responder_controller.rb CHANGED

@@ -1,8 +1,11 @@
 require 'active_support/inflector'
 require 'active_support/core_ext/string/inflections'
-require 'active_support/core_ext/module/delegation'
 module ResponderController
+  autoload :ClassMethods, 'responder_controller/class_methods'
+  autoload :InstanceMethods, 'responder_controller/instance_methods'
+  autoload :Actions, 'responder_controller/actions'
   # Root of scope-related exceptions.
   class ScopeError < StandardError
   end
@@ -30,300 +33,4 @@ module ResponderController
       ForbiddenScope.name => :forbidden
     }) if defined? ActionDispatch
   end
-  # Configure how the controller finds and serves models of what flavor.
-  module ClassMethods
-    # The underscored, fully-qualified name of the served model class.
-    #
-    # By default, it is the underscored controller class name, without +_controller+.
-    def model_class_name
-      @model_class_name || name.underscore.gsub(/_controller$/, '').singularize
-    end
-    # Declare the underscored, fully-qualified name of the served model class.
-    #
-    # Modules are declared with separating slashes, such as in <tt>admin/setting</tt>.  Strings
-    # or symbols are accepted, but other values (including actual classes) will raise
-    # <tt>ArgumentError</tt>s.
-    def serves_model(model_class_name)
-      unless model_class_name.is_a? String or model_class_name.is_a? Symbol
-        raise ArgumentError.new "Model must be a string or symbol"
-      end
-      @model_class_name = model_class_name.to_s
-    end
-    # Declare what active record scopes to allow or forbid to requests.
-    #
-    # .serves_scopes follows the regular :only/:except form:  white-listed scopes are passed by
-    # name as <tt>:only => [:allowed, :scopes]</tt> or <tt>:only => :just_one</tt>.  Similarly,
-    # black-listed ones are passed under <tt>:except</tt>.
-    #
-    # If a white-list is passed, all other requested scopes (i.e. scopes named by query parameters)
-    # will be denied, raising <tt>ForbiddenScope</tt>.  If a black-list is passed, only they will
-    # raise the exception.
-    def serves_scopes(options = nil)
-      @serves_scopes ||= {}
-      if options
-        raise TypeError unless options.is_a? Hash
-        new_keys = @serves_scopes.keys | options.keys
-        unless new_keys == [:only] or new_keys == [:except]
-          raise ArgumentError.new("serves_scopes takes exactly one of :only and :except")
-        end
-        @serves_scopes[options.keys.first] ||= []
-        @serves_scopes[options.keys.first].concat [*options.values.first]
-      end
-      @serves_scopes
-    end
-    # Declare leading arguments ("responder context") for +respond_with+ calls.
-    #
-    # +respond_with+ creates urls from models.  To avoid strongly coupling models to a url
-    # structure, it can take any number of leading parameters a la +polymorphic_url+.
-    # +responds_within+ declares these leading parameters, to be used on each +respond_with+ call.
-    #
-    # It takes either a varargs or a block, but not both.  In
-    # InstanceMethods#respond_with_contextual, the blocks are called with +instance_exec+, taking
-    # the model (or models) as a parameter.  They should return an array.
-    def responds_within(*args, &block)
-      if block and args.any?
-        raise ArgumentError.new("responds_within can take arguments or a block, but not both")
-      elsif block or args.any?
-        @responds_within ||= []
-        if not args.empty?
-          @responds_within.concat args
-        else
-          @responds_within << block
-        end
-      end
-      @responds_within || model_class_name.split('/')[0...-1].collect { |m| m.to_sym }
-    end
-    # The served model class, identified by #model_class_name.
-    def model_class
-      model_class_name.camelize.constantize
-    end
-    # Declare a class-level scope for model collections.
-    #
-    # The model class is expected to respond to +all+, returning an Enumerable of models.
-    # Declared scopes are applied to (and replace) this collection, suitable for active record
-    # scopes.
-    #
-    # It takes one of a string, symbol or block.  Symbols and strings are called as methods on the
-    # collection without arguments.  Blocks are called with +instance_exec+ taking the current,
-    # accumulated query and returning the new, scoped one.
-    def scope(*args, &block)
-      scope = args.first || block
-      scope = scope.to_sym if String === scope
-      unless scope.is_a? Symbol or scope.is_a? Proc
-        raise ArgumentError.new "Scope must be a string, symbol or block"
-      end
-      (@scopes ||= []) << scope
-    end
-    # The array of declared class-level scopes, as symbols or procs.
-    attr_reader :scopes
-    # Declare a (non-singleton) parent resource class.
-    #
-    # <tt>children_of 'accounts/user'</tt> implies a scope and some responder context.  The scope
-    # performs an ActiveRecord <tt>where :user_id => params[:user_id]</tt>.  The responder context
-    # is a call to <tt>#responds_within</tt> declaring the parent model's modules along with the
-    # parent itself, found with <tt>Accounts::User.find(params[:user_id])</tt>.
-    def children_of(parent_model_class_name)
-      parent_model_class_name = parent_model_class_name.to_s.underscore
-      parent_name_parts = parent_model_class_name.split('/')
-      parent_modules = parent_name_parts[0...-1].collect(&:to_sym)
-      parent_id = "#{parent_name_parts.last}_id".to_sym # TODO: primary key
-      scope do |query|
-        query.where parent_id => params[parent_id]
-      end
-      responds_within do
-        parent = parent_model_class_name.camelize.constantize.find params[parent_id]
-        parent_modules + [parent]
-      end
-    end
-  end
-  # Instance methods that support the Actions module.
-  module InstanceMethods
-    delegate :model_class_name, :model_class, :scopes, :responds_within, :serves_scopes,
-      :to => "self.class"
-    # Apply scopes to the given query.
-    #
-    # Applicable scopes come from two places.  They are either declared at the class level with
-    # <tt>ClassMethods#scope</tt>, or named in the request itself.  The former is good for
-    # defining topics or enforcing security, while the latter is free slicing and dicing for
-    # clients.
-    #
-    # Class-level scopes are applied first.  Request scopes come after, and are discovered by
-    # examining +params+.  If any +params+ key matches a name found in
-    # <tt>ClassMethods#model_class.scopes.keys</tt>, then it is taken to be a scope and is
-    # applied.  The values under that +params+ key are passed along as arguments.
-    def scope(query)
-      query = (scopes || []).inject(query) do |query, scope|
-        if Symbol === scope and model_class.scopes.key? scope
-          query.send scope
-        elsif Proc === scope
-          instance_exec query, &scope
-        else
-          raise ArgumentError.new "Unknown scope #{model_class}.#{scope}"
-        end
-      end
-      requested = (model_class.scopes.keys & params.keys.collect { |k| k.to_sym })
-      raise ForbiddenScope if serves_scopes[:only] && (requested - serves_scopes[:only]).any?
-      raise ForbiddenScope if serves_scopes[:except] && (requested & serves_scopes[:except]).any?
-      query = requested.inject(query) do |query, scope|
-        query.send scope, *params[scope.to_s] rescue raise BadScope
-      end
-      query
-    end
-    # Find all models in #scope.
-    #
-    # The initial query is <tt>ClassMethods#model_class.scoped</tt>.
-    def find_models
-      scope model_class.scoped
-    end
-    # Find a particular model.
-    #
-    # #find_models is asked to find a model with <tt>params[:id]</tt>.  This ensures that
-    # class-level scopes are enforced (potentially for security.)
-    def find_model
-      find_models.find(params[:id])
-    end
-    # The underscored model class name, as a symbol.
-    #
-    # Model modules are omitted.
-    def model_slug
-      model_class_name.split('/').last.to_sym
-    end
-    # Like #model_slug, but plural.
-    def models_slug
-      model_slug.to_s.pluralize.to_sym
-    end
-    # The name of the instance variable holding a single model instance.
-    def model_ivar
-      "@#{model_slug}"
-    end
-    # The name of the instance variable holding a collection of models.
-    def models_ivar
-      model_ivar.pluralize
-    end
-    # Retrive #models_ivar
-    def models
-      instance_variable_get models_ivar
-    end
-    # Assign #models_ivar
-    def models=(models)
-      instance_variable_set models_ivar, models
-    end
-    # Retrive #model_ivar
-    def model
-      instance_variable_get model_ivar
-    end
-    # Assign #model_ivar
-    def model=(model)
-      instance_variable_set model_ivar, model
-    end
-    # Apply ClassMethods#responds_within to the given model (or symbol.)
-    #
-    # "Apply" just means turning +responds_within+ into an array and appending +model+ to the
-    # end.  If +responds_within+ is an array, it used directly.
-    #
-    # If it is a proc, it is called with +instance_exec+, passing +model+ in.  It should return an
-    # array, which +model+ will be appended to.  (So, don't include it in the return value.)
-    def responder_context(model)
-      context = responds_within.collect do |o|
-        o = instance_exec model, &o if o.is_a? Proc
-        o
-      end.flatten + [model]
-    end
-    # Pass +model+ through InstanceMethods#responder_context, and pass that to #respond_with.
-    def respond_with_contextual(model)
-      respond_with *responder_context(model)
-    end
-  end
-  # The seven standard restful actions.
-  module Actions
-    # Find, assign and respond with models.
-    def index
-      self.models = find_models
-      respond_with_contextual models
-    end
-    # Find, assign and respond with a single model.
-    def show
-      self.model = find_model
-      respond_with_contextual model
-    end
-    # Build (but do not save), assign and respond with a new model.
-    #
-    # The new model is built from the <tt>InstanceMethods#find_models</tt> collection, meaning it
-    # could inherit any properties implied by those scopes.
-    def new
-      self.model = find_models.build
-      respond_with_contextual model
-    end
-    # Find, assign and respond with a single model.
-    def edit
-      self.model = find_model
-      respond_with_contextual model
-    end
-    # Build, save, assign and respond with a new model.
-    #
-    # The model is created with attributes from the request params, under the
-    # <tt>InstanceMethods#model_slug</tt> key.
-    def create
-      self.model = find_models.build(params[model_slug])
-      model.save
-      respond_with_contextual model
-    end
-    # Find, update, assign and respond with a single model.
-    #
-    # The new attributes are taken from the request params, under the
-    # <tt>InstanceMethods#model_slug</tt> key.
-    def update
-      self.model = find_model
-      model.update_attributes(params[model_slug])
-      respond_with_contextual model
-    end
-    # Find and destroy a model.  Respond with <tt>InstanceMethods#models_slug</tt>.
-    def destroy
-      find_model.destroy
-      respond_with_contextual models_slug
-    end
-  end
 end

data/lib/responder_controller/actions.rb ADDED

@@ -0,0 +1,57 @@
+module ResponderController
+  # The seven standard restful actions.
+  module Actions
+    # Find, assign and respond with models.to_a.
+    def index
+      self.models = find_models
+      respond_with_contextual models.to_a
+    end
+    # Find, assign and respond with a single model.
+    def show
+      self.model = find_model
+      respond_with_contextual model
+    end
+    # Build (but do not save), assign and respond with a new model.
+    #
+    # The new model is built from the <tt>InstanceMethods#find_models</tt> collection, meaning it
+    # could inherit any properties implied by those scopes.
+    def new
+      self.model = find_models.build
+      respond_with_contextual model
+    end
+    # Find, assign and respond with a single model.
+    def edit
+      self.model = find_model
+      respond_with_contextual model
+    end
+    # Build, save, assign and respond with a new model.
+    #
+    # The model is created with attributes from the request params, under the
+    # <tt>InstanceMethods#model_slug</tt> key.
+    def create
+      self.model = find_models.build(params[model_slug])
+      model.save
+      respond_with_contextual model
+    end
+    # Find, update, assign and respond with a single model.
+    #
+    # The new attributes are taken from the request params, under the
+    # <tt>InstanceMethods#model_slug</tt> key.
+    def update
+      self.model = find_model
+      model.update_attributes(params[model_slug])
+      respond_with_contextual model
+    end
+    # Find and destroy a model.  Respond with <tt>InstanceMethods#models_slug</tt>.
+    def destroy
+      find_model.destroy
+      respond_with_contextual models_slug
+    end
+  end
+end

data/lib/responder_controller/class_methods.rb ADDED

@@ -0,0 +1,126 @@
+module ResponderController
+  # Configure how the controller finds and serves models of what flavor.
+  module ClassMethods
+    # The underscored, fully-qualified name of the served model class.
+    #
+    # By default, it is the underscored controller class name, without +_controller+.
+    def model_class_name
+      @model_class_name || name.underscore.gsub(/_controller$/, '').singularize
+    end
+    # Declare the underscored, fully-qualified name of the served model class.
+    #
+    # Modules are declared with separating slashes, such as in <tt>admin/setting</tt>.  Strings
+    # or symbols are accepted, but other values (including actual classes) will raise
+    # <tt>ArgumentError</tt>s.
+    def serves_model(model_class_name)
+      unless model_class_name.is_a? String or model_class_name.is_a? Symbol
+        raise ArgumentError.new "Model must be a string or symbol"
+      end
+      @model_class_name = model_class_name.to_s
+    end
+    # Declare what active record scopes to allow or forbid to requests.
+    #
+    # .serves_scopes follows the regular :only/:except form:  white-listed scopes are passed by
+    # name as <tt>:only => [:allowed, :scopes]</tt> or <tt>:only => :just_one</tt>.  Similarly,
+    # black-listed ones are passed under <tt>:except</tt>.
+    #
+    # If a white-list is passed, all other requested scopes (i.e. scopes named by query parameters)
+    # will be denied, raising <tt>ForbiddenScope</tt>.  If a black-list is passed, only they will
+    # raise the exception.
+    def serves_scopes(options = nil)
+      @serves_scopes ||= {}
+      if options
+        raise TypeError unless options.is_a? Hash
+        new_keys = @serves_scopes.keys | options.keys
+        unless new_keys == [:only] or new_keys == [:except]
+          raise ArgumentError.new("serves_scopes takes exactly one of :only and :except")
+        end
+        @serves_scopes[options.keys.first] ||= []
+        @serves_scopes[options.keys.first].concat [*options.values.first]
+      end
+      @serves_scopes
+    end
+    # Declare leading arguments ("responder context") for +respond_with+ calls.
+    #
+    # +respond_with+ creates urls from models.  To avoid strongly coupling models to a url
+    # structure, it can take any number of leading parameters a la +polymorphic_url+.
+    # +responds_within+ declares these leading parameters, to be used on each +respond_with+ call.
+    #
+    # It takes either a varargs or a block, but not both.  In
+    # InstanceMethods#respond_with_contextual, the blocks are called with +instance_exec+, taking
+    # the model (or models) as a parameter.  They should return an array.
+    def responds_within(*args, &block)
+      if block and args.any?
+        raise ArgumentError.new("responds_within can take arguments or a block, but not both")
+      elsif block or args.any?
+        @responds_within ||= []
+        if not args.empty?
+          @responds_within.concat args
+        else
+          @responds_within << block
+        end
+      end
+      @responds_within || model_class_name.split('/')[0...-1].collect { |m| m.to_sym }
+    end
+    # The served model class, identified by #model_class_name.
+    def model_class
+      model_class_name.camelize.constantize
+    end
+    # Declare a class-level scope for model collections.
+    #
+    # The model class is expected to respond to +all+, returning an Enumerable of models.
+    # Declared scopes are applied to (and replace) this collection, suitable for active record
+    # scopes.
+    #
+    # It takes one of a string, symbol or block.  Symbols and strings are called as methods on the
+    # collection without arguments.  Blocks are called with +instance_exec+ taking the current,
+    # accumulated query and returning the new, scoped one.
+    def scope(*args, &block)
+      scope = args.first || block
+      scope = scope.to_sym if String === scope
+      unless scope.is_a? Symbol or scope.is_a? Proc
+        raise ArgumentError.new "Scope must be a string, symbol or block"
+      end
+      (@scopes ||= []) << scope
+    end
+    # The array of declared class-level scopes, as symbols or procs.
+    attr_reader :scopes
+    # Declare a (non-singleton) parent resource class.
+    #
+    # <tt>children_of 'accounts/user'</tt> implies a scope and some responder context.  The scope
+    # performs an ActiveRecord <tt>where :user_id => params[:user_id]</tt>.  The responder context
+    # is a call to <tt>#responds_within</tt> declaring the parent model's modules along with the
+    # parent itself, found with <tt>Accounts::User.find(params[:user_id])</tt>.
+    def children_of(parent_model_class_name)
+      parent_model_class_name = parent_model_class_name.to_s.underscore
+      parent_name_parts = parent_model_class_name.split('/')
+      parent_modules = parent_name_parts[0...-1].collect(&:to_sym)
+      parent_id = "#{parent_name_parts.last}_id".to_sym # TODO: primary key
+      scope do |query|
+        query.where parent_id => params[parent_id]
+      end
+      responds_within do
+        parent = parent_model_class_name.camelize.constantize.find params[parent_id]
+        parent_modules + [parent]
+      end
+    end
+  end
+end