rspec-authorization 0.0.1

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA1:
+  metadata.gz: d32c0f50faa40a57496f87a21d5ec3cdbf538f01
+  data.tar.gz: 4ad22903e43240efdf66a025c70d9812bb97c8a2
+SHA512:
+  metadata.gz: 68c08236ab63ec53595788a07de8256941934bf1993727d2edf002ab71efd6d6681060feb64ec4e96748a22a7d5457d4cf960d132a5d1d99744e53e7c8471da5
+  data.tar.gz: 342c1b6aa908f713b56eba516821f47af14d78e0659c8ff8f8574e11143570d1940d2f31d2a30ace4e05c4f65f02d8d4ee5555fb947cd47b30dd0393ed715840

data/.editorconfig

@@ -0,0 +1,9 @@
+root = true
+
+[*]
+end_of_line = lf
+indent_style = space
+indent_size = 2
+insert_final_newline = true
+trim_trailing_whitespace = true
+

data/.gitignore

@@ -0,0 +1,17 @@
+/.bundle/
+/.yardoc
+/Gemfile.lock
+/_yardoc/
+/coverage/
+/doc/
+/pkg/
+/spec/reports/
+/tmp/
+*.bundle
+*.so
+*.o
+*.a
+mkmf.log
+
+/config
+/spec/.rails

data/.rspec

@@ -0,0 +1,3 @@
+--color
+--format documentation
+--require spec_helper

data/.ruby-version

@@ -0,0 +1 @@
+2.1.4

data/Gemfile

@@ -0,0 +1,14 @@
+source 'https://rubygems.org'
+ruby '2.1.4'
+
+gemspec
+
+group :development, :test do
+  gem 'declarative_authorization', github: 'stffn/declarative_authorization'
+  gem 'guard-rspec'
+  gem 'pry'
+  gem 'terminal-notifier-guard' if `uname` =~ /Darwin/
+
+  gem 'jquery-rails'
+  gem 'turbolinks'
+end

data/Guardfile

@@ -0,0 +1,9 @@
+guard :rspec, cmd: 'bundle exec rspec' do
+  watch(%r{^spec/.+_spec\.rb$})
+
+  watch(%r{^lib/(.+)\.rb$})     { |m| "spec/lib/#{m[1]}_spec.rb" }
+  watch(%r{^tools/(.+)\.rb$})   { |m| "spec/tools/#{m[1]}_spec.rb" }
+
+  watch(%r{^controllers/(.+)\.rb$}) { |m| "spec/controllers/#{m[1]}_spec.rb" }
+end
+

data/LICENSE.txt

@@ -0,0 +1,22 @@
+Copyright (c) 2014 Hendra Uzia
+
+MIT License
+
+Permission is hereby granted, free of charge, to any person obtaining
+a copy of this software and associated documentation files (the
+"Software"), to deal in the Software without restriction, including
+without limitation the rights to use, copy, modify, merge, publish,
+distribute, sublicense, and/or sell copies of the Software, and to
+permit persons to whom the Software is furnished to do so, subject to
+the following conditions:
+
+The above copyright notice and this permission notice shall be
+included in all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
+EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
+NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
+LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
+OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
+WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

data/README.md

@@ -0,0 +1,29 @@
+# Rspec::Authorization
+
+RSpec matcher for declarative_authorization. A neat way of asserting declarative_authorization's rules inside controller using RSpec matcher.
+
+## Installation
+
+Add this line to your application's Gemfile:
+
+```ruby
+gem 'rspec-authorization'
+```
+
+And then execute:
+
+    $ bundle
+
+Or install it yourself as:
+
+    $ gem install rspec-authorization
+
+## Contributing
+
+1. Fork it ( https://github.com/hendrauzia/rspec-authorization/fork )
+2. Create your feature branch (`git checkout -b my-new-feature`)
+3. Setup rails test app (`bundle exec rake setup`)
+3. Test your changes (`bundle exec rake spec`)
+5. Commit your changes (`git commit -am 'Add some feature'`)
+6. Push to the branch (`git push origin my-new-feature`)
+7. Create a new Pull Request

data/Rakefile

@@ -0,0 +1,13 @@
+$LOAD_PATH << File.expand_path('../tools', __FILE__)
+
+require 'rspec/core/rake_task'
+require "bundler/gem_tasks"
+
+# Default directory to look is `/spec`
+# Run with `rake spec`
+RSpec::Core::RakeTask.new(:spec)
+task default: :spec
+
+Dir["tasks/*.rake"].each do |task|
+  import task
+end

data/lib/rspec/authorization.rb

@@ -0,0 +1,9 @@
+require "rspec/rails"
+require "rspec/authorization/adapters"
+require "rspec/authorization/matchers"
+require "rspec/authorization/version"
+
+module RSpec
+  module Authorization
+  end
+end

data/lib/rspec/authorization/adapters.rb

@@ -0,0 +1,10 @@
+require "rspec/authorization/adapters/example"
+require "rspec/authorization/adapters/group"
+require "rspec/authorization/adapters/request"
+require "rspec/authorization/adapters/route"
+
+module RSpec::Authorization
+  module Adapters
+  end
+end
+

data/lib/rspec/authorization/adapters/example.rb

@@ -0,0 +1,28 @@
+module RSpec::Authorization
+  module Adapters
+    class Example
+      attr_reader :group, :example
+
+      def initialize(group)
+        @group   = group
+        @example = RSpec::Core::Example.new(group, "", {})
+
+        set_example_group_instance
+      end
+
+      def run
+        run_before_example
+      end
+
+      private
+
+      def set_example_group_instance
+        @example.instance_variable_set :@example_group_instance, group.new
+      end
+
+      def run_before_example
+        @example.send :run_before_example
+      end
+    end
+  end
+end

data/lib/rspec/authorization/adapters/group.rb

@@ -0,0 +1,14 @@
+module RSpec::Authorization
+  module Adapters
+    class Group
+      class << self
+        def new(klass)
+          RSpec::Core::ExampleGroup.describe klass do
+            include RSpec::Rails::ControllerExampleGroup
+          end
+        end
+      end
+    end
+  end
+end
+

data/lib/rspec/authorization/adapters/request.rb

@@ -0,0 +1,57 @@
+module RSpec::Authorization
+  module Adapters
+    class Request
+      attr_reader :klass, :action, :role, :group, :route, :response
+
+      def initialize(klass, action, role)
+        @klass, @action, @role = klass, action, role
+        @group, @route = Group.new(klass), Route.new(action)
+
+        stub_current_user
+
+        setup_response_retrieval
+        dispatch
+      end
+
+      private
+
+      def response_setter
+        lambda { |r| @response = r }
+      end
+
+      def role_symbols
+        [role]
+      end
+
+      def stub_current_user
+        roles  = role_symbols
+
+        group.before do
+          user = double(:user, role_symbols: roles)
+          allow(controller).to receive(:current_user).and_return(user)
+        end
+      end
+
+      def setup_response_retrieval
+        args   = route
+        setter = response_setter
+
+        group.before do
+          begin
+            send *args
+          rescue ActiveRecord::RecordNotFound
+            response.status = 404
+          end
+
+          setter.call(response)
+        end
+      end
+
+      def dispatch
+        example = Example.new(group)
+        example.run
+      end
+    end
+  end
+end
+

data/lib/rspec/authorization/adapters/route.rb

@@ -0,0 +1,40 @@
+module RSpec::Authorization
+  module Adapters
+    class Route
+      attr_reader :action
+
+      DICTIONARIES = {
+        index:   :get,
+        show:    :get,
+        new:     :get,
+        create:  :post,
+        edit:    :get,
+        update:  :patch,
+        destroy: :delete
+      }
+
+      PARAMS = {
+        show:    { id: 1 },
+        edit:    { id: 1 },
+        update:  { id: 1 },
+        destroy: { id: 1 }
+      }
+
+      def initialize(action)
+        @action = action
+      end
+
+      def params
+        PARAMS[action]
+      end
+
+      def verb
+        DICTIONARIES.fetch(action)
+      end
+
+      def to_a
+        [verb, action, params]
+      end
+    end
+  end
+end

data/lib/rspec/authorization/matchers.rb

@@ -0,0 +1,10 @@
+require 'rspec/authorization/matchers/have_permission_for'
+
+module RSpec::Authorization
+  module Matchers
+  end
+end
+
+RSpec.configure do |config|
+  config.include RSpec::Authorization::Matchers::HavePermissionFor, type: :controller
+end

data/lib/rspec/authorization/matchers/have_permission_for.rb

@@ -0,0 +1,46 @@
+module RSpec::Authorization
+  module Matchers
+    module HavePermissionFor
+      def have_permission_for(role)
+        HavePermissionFor.new(role)
+      end
+
+      # @private
+      class HavePermissionFor
+        include Adapters
+
+        attr_reader :controller, :role, :action
+
+        def initialize(role)
+          @role   = role
+          @action = :index
+        end
+
+        def to(action)
+          @action = action
+          self
+        end
+
+        def matches?(controller)
+          @controller = controller
+
+          request = Request.new(controller.class, action, role)
+          request.response.status != 403
+        end
+
+        def failure_message
+          "Expected #{controller.class} to have permission for #{role} to #{action}"
+        end
+
+        def failure_message_when_negated
+          "Did not expect #{controller.class} to have permission for #{role} to #{action}"
+        end
+
+        def description
+          "have permission for #{role} on #{action}"
+        end
+      end
+    end
+  end
+end
+

data/lib/rspec/authorization/version.rb

@@ -0,0 +1,5 @@
+module Rspec
+  module Authorization
+    VERSION = "0.0.1"
+  end
+end

data/rspec-authorization.gemspec

@@ -0,0 +1,28 @@
+lib = File.expand_path('../lib', __FILE__)
+$LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
+require 'rspec/authorization/version'
+
+Gem::Specification.new do |spec|
+  spec.name          = "rspec-authorization"
+  spec.version       = Rspec::Authorization::VERSION
+  spec.authors       = ["Hendra Uzia"]
+  spec.email         = ["hendra.uzia@gmail.com"]
+  spec.summary       = %q{RSpec matcher for declarative_authorization.}
+  spec.description   = %q{A neat way of asserting declarative_authorization's rules inside controller using RSpec matcher.}
+  spec.homepage      = "https://github.com/hendrauzia/rspec-authorization"
+  spec.license       = "MIT"
+
+  spec.files         = `git ls-files -z`.split("\x0")
+  spec.executables   = spec.files.grep(%r{^bin/}) { |f| File.basename(f) }
+  spec.test_files    = spec.files.grep(%r{^(test|spec|features)/})
+  spec.require_paths = ["lib"]
+
+  spec.add_runtime_dependency "declarative_authorization"
+  spec.add_runtime_dependency "rspec-rails"
+
+  spec.add_development_dependency "bundler", "~> 1.7"
+  spec.add_development_dependency "rails", "~> 4.0"
+  spec.add_development_dependency "rake", "~> 10.0"
+  spec.add_development_dependency "rspec-its"
+  spec.add_development_dependency "sqlite3"
+end

data/spec/controllers/posts_controller_spec.rb

@@ -0,0 +1,11 @@
+require 'rails_helper'
+
+describe PostsController do
+  it { is_expected.to have_permission_for(:user).to(:index) }
+  it { is_expected.to have_permission_for(:user).to(:new) }
+  it { is_expected.to have_permission_for(:user).to(:create) }
+  it { is_expected.to have_permission_for(:user).to(:show) }
+  it { is_expected.to have_permission_for(:user).to(:edit) }
+  it { is_expected.to have_permission_for(:user).to(:update) }
+  it { is_expected.to have_permission_for(:user).to(:destroy) }
+end

data/spec/lib/rspec/authorization/adapters/example_spec.rb

@@ -0,0 +1,26 @@
+require 'rails_helper'
+
+include RSpec::Authorization::Adapters
+
+describe Example do
+  let(:klass)   { GroupTestClass }
+  let(:group)   { Group.new(klass) }
+  let(:example) { Example.new(group) }
+
+  subject { example }
+
+  its(:group)   { is_expected.to eq group }
+  its(:example) { is_expected.to be_a_kind_of RSpec::Core::Example }
+
+  context "private" do
+    describe "#set_example_group_instance" do
+      before { example.send :set_example_group_instance }
+      specify { expect(example.example.instance_variable_get :@example_group_instance).to be_a_kind_of group }
+    end
+
+    describe "#run_before_example" do
+      before { expect(example.example).to receive(:run_before_example).and_return(true) }
+      specify { expect(example.example.send :run_before_example).to be_present }
+    end
+  end
+end

data/spec/lib/rspec/authorization/adapters/group_spec.rb

@@ -0,0 +1,13 @@
+require 'rails_helper'
+
+include RSpec::Authorization::Adapters
+
+describe Group do
+  let(:klass) { GroupTestClass }
+  let(:group) { Group.new(klass) }
+
+  describe ".new" do
+    subject { group }
+    its(:described_class) { is_expected.to eq GroupTestClass }
+  end
+end

data/spec/lib/rspec/authorization/adapters/request_spec.rb

@@ -0,0 +1,30 @@
+require 'rails_helper'
+
+include RSpec::Authorization::Adapters
+
+describe Request do
+  let(:klass)   { PostsController }
+  let(:action)  { :index }
+  let(:role)    { :user }
+  let(:request) { Request.new(klass, action, role) }
+
+  subject { request }
+
+  its(:klass)  { is_expected.to eq klass }
+  its(:action) { is_expected.to eq action }
+  its(:role)   { is_expected.to eq role }
+
+  context "private" do
+    describe "#response_setter" do
+      let(:response_setter) { request.send :response_setter }
+
+      before { response_setter.call(:response) }
+
+      its(:response) { is_expected.to eq :response }
+    end
+
+    describe "#role_symbols" do
+      specify { expect(request.send(:role_symbols)).to include role }
+    end
+  end
+end

data/spec/lib/rspec/authorization/adapters/route_spec.rb

@@ -0,0 +1,94 @@
+require 'rails_helper'
+
+include RSpec::Authorization::Adapters
+
+describe Route do
+  let(:route)  { Route.new(:action) }
+
+  subject { route }
+  its(:action) { is_expected.to eq :action }
+
+  describe "#params" do
+    def param_of(action)
+      Route.new(action).params
+    end
+
+    context "without params" do
+      context "index" do
+        specify { expect(param_of(:index)).not_to be_present }
+      end
+
+      context "new" do
+        specify { expect(param_of(:new)).not_to be_present }
+      end
+
+      context "create" do
+        specify { expect(param_of(:create)).not_to be_present }
+      end
+    end
+
+    context "with params" do
+      context "show" do
+        specify { expect(param_of(:show)).to be_present }
+      end
+
+      context "edit" do
+        specify { expect(param_of(:edit)).to be_present }
+      end
+
+      context "update" do
+        specify { expect(param_of(:update)).to be_present }
+      end
+
+      context "destroy" do
+        specify { expect(param_of(:destroy)).to be_present }
+      end
+    end
+  end
+
+  describe "#verb" do
+    def verb_of(action)
+      Route.new(action).verb
+    end
+
+    context "RESTful routes" do
+      context "index" do
+        specify { expect(verb_of(:index)).to eq :get }
+      end
+
+      context "show" do
+        specify { expect(verb_of(:show)).to eq :get }
+      end
+
+      context "new" do
+        specify { expect(verb_of(:new)).to eq :get }
+      end
+
+      context "create" do
+        specify { expect(verb_of(:create)).to eq :post }
+      end
+
+      context "edit" do
+        specify { expect(verb_of(:edit)).to eq :get }
+      end
+
+      context "update" do
+        specify { expect(verb_of(:update)).to eq :patch }
+      end
+
+      context "detroy" do
+        specify { expect(verb_of(:destroy)).to eq :delete }
+      end
+    end
+  end
+
+  describe "#to_a" do
+    before do
+      allow(route).to receive(:verb).and_return(:verb)
+      allow(route).to receive(:action).and_return(:action)
+      allow(route).to receive(:params).and_return(:params)
+    end
+
+    specify { expect(route.to_a).to eq [:verb, :action, :params] }
+  end
+end

data/spec/rails_helper.rb

@@ -0,0 +1,55 @@
+require 'rails/version'
+
+ENV['RAILS_ENV']  ||= 'test'
+ENV['RAILS_ROOT'] ||= File.expand_path("../.rails/rails-#{::Rails::VERSION::STRING}", __FILE__)
+
+require 'spec_helper'
+require "#{ENV['RAILS_ROOT']}/config/environment"
+require 'rspec/rails'
+require 'rspec/authorization'
+
+# Add additional requires below this line. Rails is not loaded until this point!
+
+# Requires supporting ruby files with custom matchers and macros, etc, in
+# spec/support/ and its subdirectories. Files matching `spec/**/*_spec.rb` are
+# run as spec files by default. This means that files in spec/support that end
+# in _spec.rb will both be required and run as specs, causing the specs to be
+# run twice. It is recommended that you do not name files matching this glob to
+# end with _spec.rb. You can configure this pattern with the --pattern
+# option on the command line or in ~/.rspec, .rspec or `.rspec-local`.
+#
+# The following line is provided for convenience purposes. It has the downside
+# of increasing the boot-up time by auto-requiring all files in the support
+# directory. Alternatively, in the individual `*_spec.rb` files, manually
+# require only the support files necessary.
+#
+# Dir[Rails.root.join("spec/support/**/*.rb")].each { |f| require f }
+
+# Checks for pending migrations before tests are run.
+# If you are not using ActiveRecord, you can remove this line.
+ActiveRecord::Migration.maintain_test_schema!
+
+RSpec.configure do |config|
+  # Remove this line if you're not using ActiveRecord or ActiveRecord fixtures
+  config.fixture_path = "#{::Rails.root}/spec/fixtures"
+  #
+  # If you're not using ActiveRecord, or you'd prefer not to run each of your
+  # examples within a transaction, remove the following line or assign false
+  # instead of true.
+  config.use_transactional_fixtures = true
+
+  #  # RSpec Rails can automatically mix in different behaviours to your tests
+  # based on their file location, for example enabling you to call `get` and
+  # `post` in specs under `spec/controllers`.
+  #
+  # You can disable this behaviour by removing the line below, and instead
+  # explicitly tag your specs with their type, e.g.:
+  #
+  #     RSpec.describe UsersController, :type => :controller do
+  #       # ...
+  #     end
+  #
+  # The different available types are documented in the features, such as in
+  # https://relishapp.com/rspec/rspec-rails/docs
+  config.infer_spec_type_from_file_location!
+end

data/spec/spec_helper.rb

@@ -0,0 +1,92 @@
+require 'rspec/its'
+
+$LOAD_PATH << File.expand_path('../../tools', __FILE__)
+$LOAD_PATH << File.expand_path('../support', __FILE__)
+
+require 'group_test_class'
+
+# This file was generated by the `rails generate rspec:install` command. Conventionally, all
+# specs live under a `spec` directory, which RSpec adds to the `$LOAD_PATH`.
+# The generated `.rspec` file contains `--require spec_helper` which will cause this
+# file to always be loaded, without a need to explicitly require it in any files.
+#
+# Given that it is always loaded, you are encouraged to keep this file as
+# light-weight as possible. Requiring heavyweight dependencies from this file
+# will add to the boot time of your test suite on EVERY test run, even for an
+# individual file that may not need all of that loaded. Instead, consider making
+# a separate helper file that requires the additional dependencies and performs
+# the additional setup, and require it from the spec files that actually need it.
+#
+# The `.rspec` file also contains a few flags that are not defaults but that
+# users commonly want.
+#
+# See http://rubydoc.info/gems/rspec-core/RSpec/Core/Configuration
+RSpec.configure do |config|
+  # rspec-expectations config goes here. You can use an alternate
+  # assertion/expectation library such as wrong or the stdlib/minitest
+  # assertions if you prefer.
+  config.expect_with :rspec do |expectations|
+    # This option will default to `true` in RSpec 4. It makes the `description`
+    # and `failure_message` of custom matchers include text for helper methods
+    # defined using `chain`, e.g.:
+    # be_bigger_than(2).and_smaller_than(4).description
+    #   # => "be bigger than 2 and smaller than 4"
+    # ...rather than:
+    #   # => "be bigger than 2"
+    expectations.include_chain_clauses_in_custom_matcher_descriptions = true
+  end
+
+  # rspec-mocks config goes here. You can use an alternate test double
+  # library (such as bogus or mocha) by changing the `mock_with` option here.
+  config.mock_with :rspec do |mocks|
+    # Prevents you from mocking or stubbing a method that does not exist on
+    # a real object. This is generally recommended, and will default to
+    # `true` in RSpec 4.
+    mocks.verify_partial_doubles = true
+  end
+
+# The settings below are suggested to provide a good initial experience
+# with RSpec, but feel free to customize to your heart's content.
+=begin
+  # These two settings work together to allow you to limit a spec run
+  # to individual examples or groups you care about by tagging them with
+  # `:focus` metadata. When nothing is tagged with `:focus`, all examples
+  # get run.
+  config.filter_run :focus
+  config.run_all_when_everything_filtered = true
+
+  # Limits the available syntax to the non-monkey patched syntax that is recommended.
+  # For more details, see:
+  #   - http://myronmars.to/n/dev-blog/2012/06/rspecs-new-expectation-syntax
+  #   - http://teaisaweso.me/blog/2013/05/27/rspecs-new-message-expectation-syntax/
+  #   - http://myronmars.to/n/dev-blog/2014/05/notable-changes-in-rspec-3#new__config_option_to_disable_rspeccore_monkey_patching
+  config.disable_monkey_patching!
+
+  # Many RSpec users commonly either run the entire suite or an individual
+  # file, and it's useful to allow more verbose output when running an
+  # individual spec file.
+  if config.files_to_run.one?
+    # Use the documentation formatter for detailed output,
+    # unless a formatter has already been configured
+    # (e.g. via a command-line flag).
+    config.default_formatter = 'doc'
+  end
+
+  # Print the 10 slowest examples and example groups at the
+  # end of the spec run, to help surface which specs are running
+  # particularly slow.
+  config.profile_examples = 10
+
+  # Run specs in random order to surface order dependencies. If you find an
+  # order dependency and want to debug it, you can fix the order by providing
+  # the seed, which is printed after each run.
+  #     --seed 1234
+  config.order = :random
+
+  # Seed global randomization in this process using the `--seed` CLI option.
+  # Setting this allows you to use `--seed` to deterministically reproduce
+  # test failures related to randomization by passing the same `--seed` value
+  # as the one that triggered the failure.
+  Kernel.srand config.seed
+=end
+end

data/spec/support/group_test_class.rb

@@ -0,0 +1,2 @@
+class GroupTestClass
+end

data/spec/tools/rails_test_app_spec.rb

@@ -0,0 +1,98 @@
+require 'spec_helper'
+require 'rails_test_app'
+
+describe RailsTestApp do
+  let(:test_app)   { RailsTestApp.new(:version) }
+  let(:dummy_file) { 'tmp/dummy-rails-test-app' }
+
+  describe ".new" do
+    subject(:test_app) { RailsTestApp.new("4.1.6", "--skip-javascript") }
+
+    its(:path)    { is_expected.to include("4.1.6") }
+    its(:options) { is_expected.to include("--skip-javascript") }
+    its(:create_command)  { is_expected.to include("4.1.6") }
+    its(:destroy_command) { is_expected.to include("4.1.6") }
+  end
+
+  describe "#create" do
+    before { allow(test_app).to receive(:create_command).and_return("touch #{dummy_file}") }
+    before { allow(test_app).to receive(:template_param) }
+    before { allow(test_app).to receive(:option) }
+    after  { `rm -rf #{dummy_file}` }
+
+    context "path does not exists" do
+      before { allow(test_app).to receive(:exists?).and_return(false) }
+
+      it { expect(test_app.create).to be_truthy }
+    end
+
+    context "path exists" do
+      before { allow(test_app).to receive(:exists?).and_return(true) }
+
+      it { expect(test_app.create).to be_falsy }
+    end
+  end
+
+  describe "#destroy" do:w
+    before { `touch #{dummy_file}` }
+    before { allow(test_app).to receive(:destroy_command).and_return("rm -rf #{dummy_file}") }
+
+    context "path does not exists" do
+      before { allow(test_app).to receive(:exists?).and_return(false) }
+
+      it { expect(test_app.destroy).to be_falsy }
+    end
+
+    context "path exists" do
+      before { allow(test_app).to receive(:exists?).and_return(true) }
+
+      it { expect(test_app.destroy).to be_truthy }
+    end
+  end
+
+  describe "#exists?" do
+    let(:spec_path) { "spec/" }
+    let(:void_path) { "does-not-exist" }
+
+    context "path does not exists" do
+      before { allow(test_app).to receive(:path).and_return(void_path) }
+
+      it { expect(test_app.exists?).to be_falsy }
+    end
+
+    context "path exists" do
+      before { allow(test_app).to receive(:path).and_return(spec_path) }
+
+      it { expect(test_app.exists?).to be_truthy }
+    end
+  end
+
+  describe "#option" do
+    let(:options) { %i(a b) }
+    before { allow(test_app).to receive(:options).and_return(options) }
+
+    it { expect(test_app.option).to eq "a b" }
+  end
+
+  describe "#template" do
+    context "template is not assigned" do
+      let(:default_template) { 'default-template' }
+      before { stub_const("RailsTestApp::DEFAULT_TEMPLATE", default_template) }
+
+      it { expect(test_app.template).to eq default_template }
+    end
+
+    context "template is assigned" do
+      let(:a_template) { 'a-template' }
+      before { test_app.template = a_template }
+
+      it { expect(test_app.template).to eq a_template }
+    end
+  end
+
+  describe "#template_param" do
+    before { allow(test_app).to receive(:template).and_return('a-template') }
+
+    it { expect(test_app.template_param).to eq '--template=a-template' }
+  end
+end

data/tasks/clean.rake

@@ -0,0 +1,8 @@
+require 'rails/version'
+require 'rails_test_app'
+
+desc "Cleanup test rails apps"
+task :clean do
+  rails = RailsTestApp.new(Rails::VERSION::STRING)
+  puts "#{rails.path} has been deleted" if rails.destroy
+end

data/tasks/reset.rake

@@ -0,0 +1,6 @@
+desc "Reset test rails app to clean state"
+task :reset do
+  %i(clean setup).each do |task|
+    Rake::Task[task].invoke
+  end
+end

data/tasks/setup.rake

@@ -0,0 +1,11 @@
+require 'rails/version'
+require 'rails_test_app'
+
+desc "Create a test rails app for the specs to run against"
+task :setup do
+  system('rm -rf config')
+
+  rails = RailsTestApp.new(Rails::VERSION::STRING)
+  puts "#{rails.path} exists!" unless rails.create
+end
+

data/tools/rails_test_app.rb

@@ -0,0 +1,38 @@
+class RailsTestApp
+  attr_reader :path, :create_command, :destroy_command, :options
+  attr_writer :template
+
+  DEFAULT_TEMPLATE = "tools/rails_test_app/template.rb"
+
+  def initialize(version, *options)
+    @path    = "spec/.rails/rails-#{version}"
+    @options = ( %w(--skip-bundle --skip-test-unit --skip-gemfile) + options ).uniq
+
+    @create_command  = "bundle exec rails new #{path}"
+    @destroy_command = "rm -rf #{path}"
+  end
+
+  def create
+    system("#{create_command} #{template_param} #{option}") unless exists?
+  end
+
+  def exists?
+    Dir.exists?(path)
+  end
+
+  def destroy
+    system(destroy_command) if exists?
+  end
+
+  def template
+    @template || DEFAULT_TEMPLATE
+  end
+
+  def template_param
+    "--template=#{template}"
+  end
+
+  def option
+    options.join(" ")
+  end
+end

data/tools/rails_test_app/template.rb

@@ -0,0 +1,40 @@
+generate "authorization:install --create-user"
+
+rules = "config/authorization_rules.rb"
+
+run "mkdir ../../../config"
+run "ln -s ../spec/.rails/rails-#{Rails::VERSION::STRING}/#{rules} ../../../#{rules}"
+
+generate "scaffold post --skip-assets --skip-helper"
+generate "migration AddUserIdToPosts user:references"
+
+rake "db:migrate"
+run "bundle exec rake db:migrate RAILS_ENV=test"
+
+first_line = /\A.*/
+last_line  = /^.*\Z/
+
+inject_into_file "app/models/post.rb", %q{
+  belongs_to :user
+}, after: first_line
+
+inject_into_file "app/models/user.rb", %q{
+  has_many :posts
+}, after: first_line
+
+inject_into_file "config/authorization_rules.rb", %q{
+  role :user do
+    has_permission_on :posts, to: :manage
+  end
+}, after: first_line
+
+inject_into_file "app/controllers/application_controller.rb", %q{
+  def current_user
+    User.where(id: session[:user_id]).presence
+  end
+}, before: last_line
+
+inject_into_file "app/controllers/posts_controller.rb", %q{
+  filter_resource_access
+}, after: first_line
+

metadata

@@ -0,0 +1,187 @@
+--- !ruby/object:Gem::Specification
+name: rspec-authorization
+version: !ruby/object:Gem::Version
+  version: 0.0.1
+platform: ruby
+authors:
+- Hendra Uzia
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2014-11-05 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: declarative_authorization
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: rspec-rails
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: bundler
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.7'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.7'
+- !ruby/object:Gem::Dependency
+  name: rails
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '4.0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '4.0'
+- !ruby/object:Gem::Dependency
+  name: rake
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '10.0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '10.0'
+- !ruby/object:Gem::Dependency
+  name: rspec-its
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: sqlite3
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+description: A neat way of asserting declarative_authorization's rules inside controller
+  using RSpec matcher.
+email:
+- hendra.uzia@gmail.com
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- ".editorconfig"
+- ".gitignore"
+- ".rspec"
+- ".ruby-version"
+- Gemfile
+- Guardfile
+- LICENSE.txt
+- README.md
+- Rakefile
+- lib/rspec/authorization.rb
+- lib/rspec/authorization/adapters.rb
+- lib/rspec/authorization/adapters/example.rb
+- lib/rspec/authorization/adapters/group.rb
+- lib/rspec/authorization/adapters/request.rb
+- lib/rspec/authorization/adapters/route.rb
+- lib/rspec/authorization/matchers.rb
+- lib/rspec/authorization/matchers/have_permission_for.rb
+- lib/rspec/authorization/version.rb
+- rspec-authorization.gemspec
+- spec/.keep
+- spec/controllers/posts_controller_spec.rb
+- spec/lib/rspec/authorization/adapters/example_spec.rb
+- spec/lib/rspec/authorization/adapters/group_spec.rb
+- spec/lib/rspec/authorization/adapters/request_spec.rb
+- spec/lib/rspec/authorization/adapters/route_spec.rb
+- spec/rails_helper.rb
+- spec/spec_helper.rb
+- spec/support/group_test_class.rb
+- spec/tools/rails_test_app_spec.rb
+- tasks/clean.rake
+- tasks/reset.rake
+- tasks/setup.rake
+- tools/rails_test_app.rb
+- tools/rails_test_app/template.rb
+homepage: https://github.com/hendrauzia/rspec-authorization
+licenses:
+- MIT
+metadata: {}
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubyforge_project: 
+rubygems_version: 2.2.2
+signing_key: 
+specification_version: 4
+summary: RSpec matcher for declarative_authorization.
+test_files:
+- spec/.keep
+- spec/controllers/posts_controller_spec.rb
+- spec/lib/rspec/authorization/adapters/example_spec.rb
+- spec/lib/rspec/authorization/adapters/group_spec.rb
+- spec/lib/rspec/authorization/adapters/request_spec.rb
+- spec/lib/rspec/authorization/adapters/route_spec.rb
+- spec/rails_helper.rb
+- spec/spec_helper.rb
+- spec/support/group_test_class.rb
+- spec/tools/rails_test_app_spec.rb