restrict 0.0.3 → 0.0.4
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/CHANGELOG.md +4 -0
- data/README.md +4 -0
- data/lib/restrict.rb +1 -0
- data/lib/restrict/gatekeeper.rb +5 -4
- data/lib/restrict/rails/controller.rb +1 -2
- data/lib/restrict/version.rb +1 -1
- data/spec/lib/restrict/gatekeeper_spec.rb +12 -0
- metadata +1 -1
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA1:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: 09e06d807f7718b921ec0d017f48ff530dcd9543
|
4
|
+
data.tar.gz: 75009eec3d441e82bd472ab8b263080fcc45a8f6
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: 436c9d5a3c3c85463ea8685660c99f5263be59d55d064282d6dcd8a200f0533d9e1a4913142ebb2191eab8478e1a6d61b08e72a747f6979f88464958961cd907
|
7
|
+
data.tar.gz: 3a79026f12d31af31fcde2904ef3d860c519649be71c54e7ec059933c3b09e59fc4a22a4c51f05f5a39ba8f6e38fd519223b2a2b31618869c229c7499e1b8d50
|
data/CHANGELOG.md
CHANGED
data/README.md
CHANGED
@@ -58,6 +58,10 @@ Restrict.config.authentication_validation_method = :current_user
|
|
58
58
|
|
59
59
|
You may set the method that is used to figure out whether a user is signed in or not to whatever you like, however it's default is `:user_signed_in?` which is the most common (devise) method in use.
|
60
60
|
|
61
|
+
## Todo Ideas
|
62
|
+
|
63
|
+
* restrict :all_actions, except: [:new], allow_if: 'dsfsdf'
|
64
|
+
|
61
65
|
## Contributing
|
62
66
|
|
63
67
|
You know how this works and bonus points for feature branches!
|
data/lib/restrict.rb
CHANGED
data/lib/restrict/gatekeeper.rb
CHANGED
@@ -1,8 +1,9 @@
|
|
1
1
|
module Restrict
|
2
2
|
class Gatekeeper
|
3
3
|
def eye(controller)
|
4
|
-
|
5
|
-
|
4
|
+
Array(concerning_restrictions(controller)).each do |restriction|
|
5
|
+
handle_restriction(restriction, controller)
|
6
|
+
end
|
6
7
|
end
|
7
8
|
|
8
9
|
private
|
@@ -17,9 +18,9 @@ module Restrict
|
|
17
18
|
end
|
18
19
|
end
|
19
20
|
|
20
|
-
def
|
21
|
+
def concerning_restrictions(controller)
|
21
22
|
controller.restrictions or return
|
22
|
-
controller.restrictions.
|
23
|
+
controller.restrictions.select do |restriction|
|
23
24
|
restriction.concerning?(controller.action_name)
|
24
25
|
end
|
25
26
|
end
|
data/lib/restrict/version.rb
CHANGED
@@ -63,5 +63,17 @@ describe Restrict::Gatekeeper do
|
|
63
63
|
expect { gatekeeper.eye(controller) }.not_to raise_error
|
64
64
|
end
|
65
65
|
end
|
66
|
+
|
67
|
+
context 'with multiple restrictions' do
|
68
|
+
before do
|
69
|
+
controller.class.restrict :all_actions
|
70
|
+
controller.class.restrict :edit, allow_if: :falsy
|
71
|
+
end
|
72
|
+
|
73
|
+
it 'denies access if any restriction fails' do
|
74
|
+
controller.current_user = user
|
75
|
+
expect { gatekeeper.eye(controller) }.to raise_error(Restrict::AccessDenied)
|
76
|
+
end
|
77
|
+
end
|
66
78
|
end
|
67
79
|
end
|