scoped_attr_accessible 0.1.0 → 0.1.2

data/.gitignore

@@ -1 +1,2 @@
-coverage
+coverage
+pkg

data/README.md

@@ -45,6 +45,18 @@ at all, it will allow all variables except those marked as protected.
 When declaring the scopes in the accessible / protected part, please note that they need to
 be symbol names for simplicity's sake.
 
+When you want to mark an attribute as accessible / protected in all scopes, you can use the `:all` scope.
+For example:
+
+    class User < ActiveRecord::Base
+      attr_accessible :a, :scope => :all
+      attr_accessible :c, :scope => :admin
+      attr_accessible :b, :scope => :owner
+    end
+
+Will allow `:admin` to access `:a` and `:c`, but not `:b`. Along the same lines, `:owner`
+can access `:a` and `:b`, but not `:c`.
+
 ### Setting the Scope
 
 Next, when you call methods that use mass assignment (e.g. `ActiveRecord::Base#attributes=`),

data/Rakefile

@@ -12,7 +12,13 @@ begin
     gem.homepage    = "http://github.com/thefrontiergroup/scoped_attr_accessible"
     gem.authors     = ["Darcy Laycock", "Mario Visic"]
     gem.add_dependency             "activemodel", "~> 3.0"
+    gem.add_dependency             "activesupport", "~> 3.0"
     gem.add_development_dependency "rspec",       "~> 2.0"
+    gem.add_development_dependency "rr"
+    gem.add_development_dependency "ruby-debug"
+    gem.add_development_dependency "rcov"
+    gem.add_development_dependency "ZenTest"
+
   end
   Jeweler::GemcutterTasks.new
 rescue LoadError

data/VERSION

@@ -1 +1 @@
-0.1.0
+0.1.2

data/lib/scoped_attr_accessible.rb

@@ -12,4 +12,12 @@ module ScopedAttrAccessible
     end
   end
   
+  if defined?(Rails::Railtie)
+    class Railtie < Rails::Railtie
+      initializer "scoped_attr_accessible.setup" do
+        ScopedAttrAccessible.mixin!
+      end
+    end
+  end
+  
 end

data/lib/scoped_attr_accessible/sanitizer.rb

@@ -64,7 +64,8 @@ module ScopedAttrAccessible
     def attribute_assignable_with_scope?(attribute, scope)
       attribute = attribute.to_s.gsub(/\(.+/, '')
       scope     = scope.to_sym
-      scope_protected, scope_accessible = @protected_attributes[scope], @accessible_attributes[scope]
+      scope_protected  = @protected_attributes[scope]  + @protected_attributes[:all]
+      scope_accessible = @accessible_attributes[scope] + @accessible_attributes[:all]
       if scope_protected.include? attribute
         return false
       elsif scope_accessible.include?('all') || scope_accessible.include?(attribute)

data/scoped_attr_accessible.gemspec

@@ -0,0 +1,86 @@
+# Generated by jeweler
+# DO NOT EDIT THIS FILE DIRECTLY
+# Instead, edit Jeweler::Tasks in Rakefile, and run the gemspec command
+# -*- encoding: utf-8 -*-
+
+Gem::Specification.new do |s|
+  s.name = %q{scoped_attr_accessible}
+  s.version = "0.1.2"
+
+  s.required_rubygems_version = Gem::Requirement.new(">= 0") if s.respond_to? :required_rubygems_version=
+  s.authors = ["Darcy Laycock", "Mario Visic"]
+  s.date = %q{2010-10-13}
+  s.description = %q{scoped_attr_accessible is a plugin that makes it easy to scope the `attr_accessible` and `attr_protected`
+    methods on any library using ActiveModel's MassAssignmentSecurity module.}
+  s.email = %q{team+darcy+mario@thefrontiergroup.com.au}
+  s.extra_rdoc_files = [
+    "LICENSE",
+     "README.md"
+  ]
+  s.files = [
+    ".bundle/config",
+     ".gitignore",
+     ".rspec",
+     ".rvmrc",
+     "Gemfile",
+     "Gemfile.lock",
+     "LICENSE",
+     "README.md",
+     "Rakefile",
+     "VERSION",
+     "autotest/discover.rb",
+     "lib/scoped_attr_accessible.rb",
+     "lib/scoped_attr_accessible/active_model_mixin.rb",
+     "lib/scoped_attr_accessible/sanitizer.rb",
+     "scoped_attr_accessible.gemspec",
+     "spec/scoped_attr_accessible/active_model_mixin_spec.rb",
+     "spec/scoped_attr_accessible/sanitizer_spec.rb",
+     "spec/scoped_attr_accessible_spec.rb",
+     "spec/spec_helper.rb",
+     "spec/support/custom_matchers.rb"
+  ]
+  s.homepage = %q{http://github.com/thefrontiergroup/scoped_attr_accessible}
+  s.rdoc_options = ["--charset=UTF-8"]
+  s.require_paths = ["lib"]
+  s.rubygems_version = %q{1.3.7}
+  s.summary = %q{Scoping for attr_accessible and attr_protected on ActiveModel objects.}
+  s.test_files = [
+    "spec/scoped_attr_accessible/active_model_mixin_spec.rb",
+     "spec/scoped_attr_accessible/sanitizer_spec.rb",
+     "spec/scoped_attr_accessible_spec.rb",
+     "spec/spec_helper.rb",
+     "spec/support/custom_matchers.rb"
+  ]
+
+  if s.respond_to? :specification_version then
+    current_version = Gem::Specification::CURRENT_SPECIFICATION_VERSION
+    s.specification_version = 3
+
+    if Gem::Version.new(Gem::VERSION) >= Gem::Version.new('1.2.0') then
+      s.add_runtime_dependency(%q<activemodel>, ["~> 3.0"])
+      s.add_runtime_dependency(%q<activesupport>, ["~> 3.0"])
+      s.add_development_dependency(%q<rspec>, ["~> 2.0"])
+      s.add_development_dependency(%q<rr>, [">= 0"])
+      s.add_development_dependency(%q<ruby-debug>, [">= 0"])
+      s.add_development_dependency(%q<rcov>, [">= 0"])
+      s.add_development_dependency(%q<ZenTest>, [">= 0"])
+    else
+      s.add_dependency(%q<activemodel>, ["~> 3.0"])
+      s.add_dependency(%q<activesupport>, ["~> 3.0"])
+      s.add_dependency(%q<rspec>, ["~> 2.0"])
+      s.add_dependency(%q<rr>, [">= 0"])
+      s.add_dependency(%q<ruby-debug>, [">= 0"])
+      s.add_dependency(%q<rcov>, [">= 0"])
+      s.add_dependency(%q<ZenTest>, [">= 0"])
+    end
+  else
+    s.add_dependency(%q<activemodel>, ["~> 3.0"])
+    s.add_dependency(%q<activesupport>, ["~> 3.0"])
+    s.add_dependency(%q<rspec>, ["~> 2.0"])
+    s.add_dependency(%q<rr>, [">= 0"])
+    s.add_dependency(%q<ruby-debug>, [">= 0"])
+    s.add_dependency(%q<rcov>, [">= 0"])
+    s.add_dependency(%q<ZenTest>, [">= 0"])
+  end
+end
+

data/spec/scoped_attr_accessible/sanitizer_spec.rb

@@ -102,6 +102,26 @@ describe ScopedAttrAccessible::Sanitizer do
       end
     end
         
+    let :sanitizer_with_fallback do
+      ScopedAttrAccessible::Sanitizer.new.tap do |s|
+        s.make_accessible :a, :all
+        s.make_protected  :b, :all
+        s.make_accessible :c, :default
+        s.make_accessible :d, :admin
+      end
+    end
+
+    it 'should correctly handle sanitizers with fallback' do
+      sanitizer_with_fallback.should allow(:a, :default)
+      sanitizer_with_fallback.should allow(:a, :admin)
+      sanitizer_with_fallback.should_not allow(:b, :default)
+      sanitizer_with_fallback.should_not allow(:b, :admin)
+      sanitizer_with_fallback.should allow(:c, :default)
+      sanitizer_with_fallback.should_not allow(:c, :admin)
+      sanitizer_with_fallback.should_not allow(:d, :default)
+      sanitizer_with_fallback.should allow(:d, :admin)
+    end
+
     it 'should return true by default an empty list' do
       empty_sanitizer.should allow(:a)
       empty_sanitizer.should allow(:b)

metadata

@@ -1,13 +1,13 @@
 --- !ruby/object:Gem::Specification 
 name: scoped_attr_accessible
 version: !ruby/object:Gem::Version 
-  hash: 27
+  hash: 31
   prerelease: false
   segments: 
   - 0
   - 1
-  - 0
-  version: 0.1.0
+  - 2
+  version: 0.1.2
 platform: ruby
 authors: 
 - Darcy Laycock
@@ -16,7 +16,7 @@ autorequire:
 bindir: bin
 cert_chain: []
 
-date: 2010-10-11 00:00:00 +08:00
+date: 2010-10-13 00:00:00 +08:00
 default_executable: 
 dependencies: 
 - !ruby/object:Gem::Dependency 
@@ -35,9 +35,24 @@ dependencies:
   type: :runtime
   version_requirements: *id001
 - !ruby/object:Gem::Dependency 
-  name: rspec
+  name: activesupport
   prerelease: false
   requirement: &id002 !ruby/object:Gem::Requirement 
+    none: false
+    requirements: 
+    - - ~>
+      - !ruby/object:Gem::Version 
+        hash: 7
+        segments: 
+        - 3
+        - 0
+        version: "3.0"
+  type: :runtime
+  version_requirements: *id002
+- !ruby/object:Gem::Dependency 
+  name: rspec
+  prerelease: false
+  requirement: &id003 !ruby/object:Gem::Requirement 
     none: false
     requirements: 
     - - ~>
@@ -48,7 +63,63 @@ dependencies:
         - 0
         version: "2.0"
   type: :development
-  version_requirements: *id002
+  version_requirements: *id003
+- !ruby/object:Gem::Dependency 
+  name: rr
+  prerelease: false
+  requirement: &id004 !ruby/object:Gem::Requirement 
+    none: false
+    requirements: 
+    - - ">="
+      - !ruby/object:Gem::Version 
+        hash: 3
+        segments: 
+        - 0
+        version: "0"
+  type: :development
+  version_requirements: *id004
+- !ruby/object:Gem::Dependency 
+  name: ruby-debug
+  prerelease: false
+  requirement: &id005 !ruby/object:Gem::Requirement 
+    none: false
+    requirements: 
+    - - ">="
+      - !ruby/object:Gem::Version 
+        hash: 3
+        segments: 
+        - 0
+        version: "0"
+  type: :development
+  version_requirements: *id005
+- !ruby/object:Gem::Dependency 
+  name: rcov
+  prerelease: false
+  requirement: &id006 !ruby/object:Gem::Requirement 
+    none: false
+    requirements: 
+    - - ">="
+      - !ruby/object:Gem::Version 
+        hash: 3
+        segments: 
+        - 0
+        version: "0"
+  type: :development
+  version_requirements: *id006
+- !ruby/object:Gem::Dependency 
+  name: ZenTest
+  prerelease: false
+  requirement: &id007 !ruby/object:Gem::Requirement 
+    none: false
+    requirements: 
+    - - ">="
+      - !ruby/object:Gem::Version 
+        hash: 3
+        segments: 
+        - 0
+        version: "0"
+  type: :development
+  version_requirements: *id007
 description: |-
   scoped_attr_accessible is a plugin that makes it easy to scope the `attr_accessible` and `attr_protected`
       methods on any library using ActiveModel's MassAssignmentSecurity module.
@@ -75,6 +146,7 @@ files:
 - lib/scoped_attr_accessible.rb
 - lib/scoped_attr_accessible/active_model_mixin.rb
 - lib/scoped_attr_accessible/sanitizer.rb
+- scoped_attr_accessible.gemspec
 - spec/scoped_attr_accessible/active_model_mixin_spec.rb
 - spec/scoped_attr_accessible/sanitizer_spec.rb
 - spec/scoped_attr_accessible_spec.rb