role_core 0.0.22 → 0.0.27

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 51e76d863886f70d4e13653f9362f9d371e0b7c09a3220452bebd31956858ffe
-  data.tar.gz: 37e81a839ac84ddb7820b7c10aeb8f09c71ca6bcefbb24132f24cc3aac0c54a0
+  metadata.gz: b871889f8b71162c5c7c24045116015b8150665efba84a9b2016bad9027899ba
+  data.tar.gz: 17023a72c92dd4b0db76b0f38cd553c0e23b12e06fc963c0410b5dc9c05bf34c
 SHA512:
-  metadata.gz: 5899784f1dfed67c57a3ac7049561d58e9a18011f494ca14f397ce4ff4ae4b0ef6be6f1e7f2a1059ed016dcec7afb3c28729bb3cbe9f7168ebd40039dba344fe
-  data.tar.gz: 63456cd8728e87613285eef79f7f51b804e806f260d772fa6620c05ac6ec377b4b0bc8f83530a4d59e7200d918cf16c751d8b284b6f55accfb1062f0299bc143
+  metadata.gz: c0064979352e03f2ed97771968a7a268ae2682b21b89eaa7bd132cd8026a727974430d212bcae3a75e06e67e848891bf62879eb63ee480d4823092ce76d2e4a9
+  data.tar.gz: 8253d8d25ae47411db785c44170dec128d0e0a802e8c259c358f95c0440b8b31cd54701d3d4f9a1c97b5e05142bbe0bc11baf7818eddd4584f340fe55d3bd629

data/README.md

@@ -47,7 +47,7 @@ Open your browser, and visit `http://localhost:3000`
 
 The essence of RBAC is the role, despite your application, there are many possibilities: single-role, multi-roles, extendable-role and the role may associate to different kinds of resources (e.g: users and groups)
 
-RoleCore provides a essential definition of Role,
+RoleCore provides an essential definition of Role,
 you have to add association to adapt to your application,
 for example:
 
@@ -76,8 +76,8 @@ In fact, the essence of permissions is Hash, keys are permissions, and values ar
 
 ### Management UI
 
-Building a management UI is difficult, 
-but virtual model technique will translates permissions to a virtual model's (a class that conforms to ActiveModel) attributes, 
+Building a management UI is difficult,
+but virtual model technique will translates permissions to a virtual model's (a class that conforms to ActiveModel) attributes,
 and groups will translates to nested virtual models,
 that means you can use all Rails view helpers including the mighty form builder,
 and can benefit to Strong Parameter.
@@ -305,7 +305,7 @@ class PostPolicy
   def update?
     user.permissions.post.update?
   end
-  
+
   def update_my_own?
     return true if user.permissions.post.update?
     return unless user.permissions.post.update_my_own?
@@ -340,6 +340,20 @@ Open your User model:
 
 Open `app/models/ability.rb`, add `user.computed_permissions.call(self, user)` to `initialize` method.
 
+```ruby
+class Ability
+  include CanCan::Ability
+
+  def initialize(user)
+    # Apply RoleCole managing permissions
+    user.computed_permissions.call(self, user)
+
+    # You still can add other permissions
+    can :read_public, :all
+  end
+end
+```
+
 You can check dummy app for better understanding.
 
 ### Management UI
@@ -368,14 +382,14 @@ By design, RoleCore is for static permissions, but dynamic permissions is easy t
 
 The key is `RoleCore::PermissionSet#derive`, that will generate a new anonymous sub-class of `PermissionSet`.
 
-There's a example:
+Here's an example:
 
 - Design a model to persisting dynamic permissions, e.g `DynamicPermission(id: bigint, name: string, default: bool)`
 - Add `dynamic_permissions` column (`text` type) to Role model to persisting dynamic permissions' configuration, and in your model `serialize :dynamic_permissions, Hash`
 - Generate dynamic permissions set in runtime
   ```ruby
   # Create a new permission set to containerize dynamic permissions
-  # `"Dynamic"` can be named to other but must be a valid Ruby class name, 
+  # `"Dynamic"` can be named to other but must be a valid Ruby class name,
   # that's a hacking for `ActiveModel::Naming`,
   # and can be used as I18n key, in this case, the key is `role_core/models/dynamic`.
   dynamic_permission_set_class = PermissionSet.derive "Dynamic"

data/Rakefile

@@ -16,7 +16,7 @@ RDoc::Task.new(:rdoc) do |rdoc|
   rdoc.rdoc_files.include("lib/**/*.rb")
 end
 
-APP_RAKEFILE = File.expand_path("../test/dummy/Rakefile", __FILE__)
+APP_RAKEFILE = File.expand_path("test/dummy/Rakefile", __dir__)
 load "rails/tasks/engine.rake"
 
 load "rails/tasks/statistics.rake"

data/db/migrate/20170705174003_create_roles.rb

@@ -1,3 +1,5 @@
+# frozen_string_literal: true
+
 class CreateRoles < ActiveRecord::Migration[5.1]
   def change
     create_table :roles do |t|

data/lib/generators/role_core/config/config_generator.rb

@@ -3,7 +3,7 @@
 module RoleCore
   module Generators
     class ConfigGenerator < Rails::Generators::Base
-      source_root File.expand_path("../templates", __FILE__)
+      source_root File.expand_path("templates", __dir__)
 
       def generate_config
         copy_file "role_core.rb", "config/initializers/role_core.rb"

data/lib/generators/role_core/model/model_generator.rb

@@ -3,7 +3,7 @@
 module RoleCore
   module Generators
     class ModelGenerator < Rails::Generators::Base
-      source_root File.expand_path("../templates", __FILE__)
+      source_root File.expand_path("templates", __dir__)
 
       def generate_model
         copy_file "role.rb", "app/models/role.rb"

data/lib/role_core/computed_permissions.rb

@@ -26,9 +26,9 @@ module RoleCore
 
     private
 
-    def regroup!
-      @permissions.uniq!
-      @permissions.sort_by!(&:priority)
-    end
+      def regroup!
+        @permissions.uniq!
+        @permissions.sort_by!(&:priority)
+      end
   end
 end

data/lib/role_core/concerns/models/role.rb

@@ -15,7 +15,7 @@ module RoleCore::Concerns
       end
 
       def permissions_attributes=(value)
-        permissions.update_attributes value
+        self[:permissions].replace value
       end
     end
   end

data/lib/role_core/contrib/can_can_can_permission.rb

@@ -9,20 +9,23 @@ module RoleCore
       return unless _callable
 
       @model_name = options[:model_name]
+      @subject = options[:subject]
       @action = options[:action] || name
-      @options = options.except(:model, :model_name, :action)
+      @options = options.except(:model, :model_name, :subject, :action)
       @block = block
     end
 
     def call(context, *args)
       return unless callable
 
-      model = @model_name.constantize
+      subject = @subject || @model_name.constantize
       if block_attached?
-        context.can @action, model, &@block.curry[*args]
+        context.can @action, subject, &@block.curry[*args]
       else
-        context.can @action, model, @options
+        context.can @action, subject, @options
       end
+    rescue NameError
+      raise "You must provide a valid model name."
     end
 
     def block_attached?

data/lib/role_core/mapper.rb

@@ -2,7 +2,7 @@
 
 module RoleCore
   class Mapper
-    def initialize(set, **constraints) #:nodoc:
+    def initialize(set, constraints = {}) # :nodoc:
       @constraints = constraints
       @constraints[:_namespace] ||= []
       @set = set
@@ -13,7 +13,7 @@ module RoleCore
       self
     end
 
-    def group(name, **constraints, &block)
+    def group(name, constraints = {}, &block)
       raise ArgumentError, "`name` can't be blank" if name.blank?
       raise ArgumentError, "must provide a block" unless block_given?
 
@@ -21,7 +21,7 @@ module RoleCore
       constraints[:_namespace] << name
 
       sub_permission_set_class =
-        if @set.nested_classes.has_key?(name)
+        if @set.nested_classes.key?(name)
           @set.nested_classes[name]
         else
           klass_name = constraints[:_namespace].map { |n| n.to_s.classify }.join("::")

data/lib/role_core/permission.rb

@@ -4,25 +4,21 @@ module RoleCore
   class Permission
     attr_reader :name, :namespace, :priority, :callable
 
-    def initialize(name, _namespace: [], _priority: 0, _callable: false, **options, &block)
+    def initialize(name, _namespace: [], _priority: 0, _callable: false, **_options, &_block)
       @name = name
       @namespace = _namespace
       @priority = _priority
       @callable = _callable
     end
 
-    def call(context, *)
+    def call(_context, *)
       raise NotImplementedError
     end
 
-    def hash
-      instance_values.hash
-    end
+    delegate :hash, to: :instance_values
 
     def ==(other)
-      unless other.is_a?(RoleCore::Permission)
-        return false
-      end
+      return false unless other.is_a?(RoleCore::Permission)
 
       instance_values == other.instance_values
     end

data/lib/role_core/permission_set.rb

@@ -8,9 +8,7 @@ module RoleCore
 
     def computed_permissions(include_nesting: true)
       permissions = self.class.registered_permissions.slice(*permitted_permission_names).values
-      if include_nesting && nested_attributes.any?
-        permissions.concat nested_attributes.values.map(&:computed_permissions).flatten!
-      end
+      permissions.concat nested_attributes.values.map(&:computed_permissions).flatten! if include_nesting && nested_attributes.any?
 
       ComputedPermissions.new(permissions)
     end
@@ -29,17 +27,13 @@ module RoleCore
       end
 
       def permission_class=(klass)
-        unless klass && klass < Permission
-          raise ArgumentError, "#{klass} should be sub-class of #{Permission}."
-        end
+        raise ArgumentError, "#{klass} should be sub-class of #{Permission}." unless klass && klass < Permission
 
         @permission_class = klass
       end
 
-      def draw(**constraints, &block)
-        unless block_given?
-          raise ArgumentError, "must provide a block"
-        end
+      def draw(constraints = {}, &block)
+        raise ArgumentError, "must provide a block" unless block_given?
 
         Mapper.new(self, constraints).instance_exec(&block)
 
@@ -50,11 +44,16 @@ module RoleCore
         @registered_permissions ||= ActiveSupport::HashWithIndifferentAccess.new
       end
 
-      def register_permission(name, default = false, **options, &block)
+      def register_permission(name, default = false, options = {}, &block)
         raise ArgumentError, "`name` can't be blank" if name.blank?
 
         attribute name, :boolean, default: default
-        registered_permissions[name] = permission_class.new name, options, &block
+        registered_permissions[name] = permission_class.new name, **options, &block
+      end
+
+      PERMITTED_ATTRIBUTE_CLASSES = [Symbol].freeze
+      def permitted_attribute_classes
+        PERMITTED_ATTRIBUTE_CLASSES
       end
     end
   end

data/lib/role_core/version.rb

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 
 module RoleCore
-  VERSION = "0.0.22"
+  VERSION = "0.0.27"
 end

data/lib/role_core.rb

@@ -17,9 +17,7 @@ module RoleCore
     end
 
     def permission_set_class=(klass)
-      unless klass && klass < PermissionSet
-        raise ArgumentError, "#{klass} should be sub-class of #{PermissionSet}."
-      end
+      raise ArgumentError, "#{klass} should be sub-class of #{PermissionSet}." unless klass && klass < PermissionSet
 
       @permission_set_class = klass.derive "Global"
     end
@@ -29,9 +27,7 @@ module RoleCore
     end
 
     def permission_class=(klass)
-      unless klass && klass < Permission
-        raise ArgumentError, "#{klass} should be sub-class of #{Permission}."
-      end
+      raise ArgumentError, "#{klass} should be sub-class of #{Permission}." unless klass && klass < Permission
 
       @permission_class = klass
     end

metadata

@@ -1,55 +1,55 @@
 --- !ruby/object:Gem::Specification
 name: role_core
 version: !ruby/object:Gem::Version
-  version: 0.0.22
+  version: 0.0.27
 platform: ruby
 authors:
 - jasl
-autorequire: 
+autorequire:
 bindir: bin
 cert_chain: []
-date: 2018-06-22 00:00:00.000000000 Z
+date: 2021-12-25 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
-  name: rails
+  name: options_model
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: '4.2'
+        version: 0.0.15
     - - "<"
       - !ruby/object:Gem::Version
-        version: '6.0'
+        version: '1.0'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: '4.2'
+        version: 0.0.15
     - - "<"
       - !ruby/object:Gem::Version
-        version: '6.0'
+        version: '1.0'
 - !ruby/object:Gem::Dependency
-  name: options_model
+  name: rails
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: 0.0.10
+        version: '5'
     - - "<"
       - !ruby/object:Gem::Version
-        version: '1.0'
+        version: '8'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: 0.0.10
+        version: '5'
     - - "<"
       - !ruby/object:Gem::Version
-        version: '1.0'
+        version: '8'
 description: RoleCore is a Rails engine which could provide essential industry of
   Role-based access control.
 email:
@@ -85,7 +85,7 @@ homepage: https://github.com/rails-engine/role_core
 licenses:
 - MIT
 metadata: {}
-post_install_message: 
+post_install_message:
 rdoc_options: []
 require_paths:
 - lib
@@ -100,9 +100,8 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubyforge_project: 
-rubygems_version: 2.7.7
-signing_key: 
+rubygems_version: 3.2.32
+signing_key:
 specification_version: 4
 summary: RoleCore is a Rails engine which could provide essential industry of Role-based
   access control.