simon_says 0.0.3

data/test/rails_app/db/migrate/20141016142638_create_admins.rb

@@ -0,0 +1,9 @@
+class CreateAdmins < ActiveRecord::Migration
+  def change
+    create_table :admins do |t|
+      t.integer   :access_mask
+
+      t.timestamps
+    end
+  end
+end

data/test/rails_app/db/migrate/20141016183619_create_users.rb

@@ -0,0 +1,8 @@
+class CreateUsers < ActiveRecord::Migration
+  def change
+    create_table :users do |t|
+
+      t.timestamps
+    end
+  end
+end

data/test/rails_app/db/migrate/20141016183633_create_memberships.rb

@@ -0,0 +1,12 @@
+class CreateMemberships < ActiveRecord::Migration
+  def change
+    create_table :memberships do |t|
+      t.references :user
+      t.references :document
+
+      t.integer    :roles_mask, default: 0
+
+      t.timestamps
+    end
+  end
+end

data/test/rails_app/db/migrate/20141016183642_create_documents.rb

@@ -0,0 +1,9 @@
+class CreateDocuments < ActiveRecord::Migration
+  def change
+    create_table :documents do |t|
+      t.string  :title
+
+      t.timestamps
+    end
+  end
+end

data/test/rails_app/db/migrate/20141017140833_create_admin_reports.rb

@@ -0,0 +1,9 @@
+class CreateAdminReports < ActiveRecord::Migration
+  def change
+    create_table :admin_reports do |t|
+      t.string :title
+
+      t.timestamps
+    end
+  end
+end

data/test/rails_app/db/schema.rb

@@ -0,0 +1,47 @@
+# encoding: UTF-8
+# This file is auto-generated from the current state of the database. Instead
+# of editing this file, please use the migrations feature of Active Record to
+# incrementally modify your database, and then regenerate this schema definition.
+#
+# Note that this schema.rb definition is the authoritative source for your
+# database schema. If you need to create the application database on another
+# system, you should be using db:schema:load, not running all the migrations
+# from scratch. The latter is a flawed and unsustainable approach (the more migrations
+# you'll amass, the slower it'll run and the greater likelihood for issues).
+#
+# It's strongly recommended that you check this file into your version control system.
+
+ActiveRecord::Schema.define(version: 20141017140833) do
+
+  create_table "admin_reports", force: true do |t|
+    t.string   "title"
+    t.datetime "created_at"
+    t.datetime "updated_at"
+  end
+
+  create_table "admins", force: true do |t|
+    t.integer  "access_mask"
+    t.datetime "created_at"
+    t.datetime "updated_at"
+  end
+
+  create_table "documents", force: true do |t|
+    t.string   "title"
+    t.datetime "created_at"
+    t.datetime "updated_at"
+  end
+
+  create_table "memberships", force: true do |t|
+    t.integer  "user_id"
+    t.integer  "document_id"
+    t.integer  "roles_mask",  default: 0
+    t.datetime "created_at"
+    t.datetime "updated_at"
+  end
+
+  create_table "users", force: true do |t|
+    t.datetime "created_at"
+    t.datetime "updated_at"
+  end
+
+end

data/test/rails_app/db/seeds.rb

@@ -0,0 +1,7 @@
+# This file should contain all the record creation needed to seed the database with its default values.
+# The data can then be loaded with the rake db:seed (or created alongside the db with db:setup).
+#
+# Examples:
+#
+#   cities = City.create([{ name: 'Chicago' }, { name: 'Copenhagen' }])
+#   Mayor.create(name: 'Emanuel', city: cities.first)

data/test/rails_app/public/404.html

@@ -0,0 +1,67 @@
+<!DOCTYPE html>
+<html>
+<head>
+  <title>The page you were looking for doesn't exist (404)</title>
+  <meta name="viewport" content="width=device-width,initial-scale=1">
+  <style>
+  body {
+    background-color: #EFEFEF;
+    color: #2E2F30;
+    text-align: center;
+    font-family: arial, sans-serif;
+    margin: 0;
+  }
+
+  div.dialog {
+    width: 95%;
+    max-width: 33em;
+    margin: 4em auto 0;
+  }
+
+  div.dialog > div {
+    border: 1px solid #CCC;
+    border-right-color: #999;
+    border-left-color: #999;
+    border-bottom-color: #BBB;
+    border-top: #B00100 solid 4px;
+    border-top-left-radius: 9px;
+    border-top-right-radius: 9px;
+    background-color: white;
+    padding: 7px 12% 0;
+    box-shadow: 0 3px 8px rgba(50, 50, 50, 0.17);
+  }
+
+  h1 {
+    font-size: 100%;
+    color: #730E15;
+    line-height: 1.5em;
+  }
+
+  div.dialog > p {
+    margin: 0 0 1em;
+    padding: 1em;
+    background-color: #F7F7F7;
+    border: 1px solid #CCC;
+    border-right-color: #999;
+    border-left-color: #999;
+    border-bottom-color: #999;
+    border-bottom-left-radius: 4px;
+    border-bottom-right-radius: 4px;
+    border-top-color: #DADADA;
+    color: #666;
+    box-shadow: 0 3px 8px rgba(50, 50, 50, 0.17);
+  }
+  </style>
+</head>
+
+<body>
+  <!-- This file lives in public/404.html -->
+  <div class="dialog">
+    <div>
+      <h1>The page you were looking for doesn't exist.</h1>
+      <p>You may have mistyped the address or the page may have moved.</p>
+    </div>
+    <p>If you are the application owner check the logs for more information.</p>
+  </div>
+</body>
+</html>

data/test/rails_app/public/422.html

@@ -0,0 +1,67 @@
+<!DOCTYPE html>
+<html>
+<head>
+  <title>The change you wanted was rejected (422)</title>
+  <meta name="viewport" content="width=device-width,initial-scale=1">
+  <style>
+  body {
+    background-color: #EFEFEF;
+    color: #2E2F30;
+    text-align: center;
+    font-family: arial, sans-serif;
+    margin: 0;
+  }
+
+  div.dialog {
+    width: 95%;
+    max-width: 33em;
+    margin: 4em auto 0;
+  }
+
+  div.dialog > div {
+    border: 1px solid #CCC;
+    border-right-color: #999;
+    border-left-color: #999;
+    border-bottom-color: #BBB;
+    border-top: #B00100 solid 4px;
+    border-top-left-radius: 9px;
+    border-top-right-radius: 9px;
+    background-color: white;
+    padding: 7px 12% 0;
+    box-shadow: 0 3px 8px rgba(50, 50, 50, 0.17);
+  }
+
+  h1 {
+    font-size: 100%;
+    color: #730E15;
+    line-height: 1.5em;
+  }
+
+  div.dialog > p {
+    margin: 0 0 1em;
+    padding: 1em;
+    background-color: #F7F7F7;
+    border: 1px solid #CCC;
+    border-right-color: #999;
+    border-left-color: #999;
+    border-bottom-color: #999;
+    border-bottom-left-radius: 4px;
+    border-bottom-right-radius: 4px;
+    border-top-color: #DADADA;
+    color: #666;
+    box-shadow: 0 3px 8px rgba(50, 50, 50, 0.17);
+  }
+  </style>
+</head>
+
+<body>
+  <!-- This file lives in public/422.html -->
+  <div class="dialog">
+    <div>
+      <h1>The change you wanted was rejected.</h1>
+      <p>Maybe you tried to change something you didn't have access to.</p>
+    </div>
+    <p>If you are the application owner check the logs for more information.</p>
+  </div>
+</body>
+</html>

data/test/rails_app/public/500.html

@@ -0,0 +1,66 @@
+<!DOCTYPE html>
+<html>
+<head>
+  <title>We're sorry, but something went wrong (500)</title>
+  <meta name="viewport" content="width=device-width,initial-scale=1">
+  <style>
+  body {
+    background-color: #EFEFEF;
+    color: #2E2F30;
+    text-align: center;
+    font-family: arial, sans-serif;
+    margin: 0;
+  }
+
+  div.dialog {
+    width: 95%;
+    max-width: 33em;
+    margin: 4em auto 0;
+  }
+
+  div.dialog > div {
+    border: 1px solid #CCC;
+    border-right-color: #999;
+    border-left-color: #999;
+    border-bottom-color: #BBB;
+    border-top: #B00100 solid 4px;
+    border-top-left-radius: 9px;
+    border-top-right-radius: 9px;
+    background-color: white;
+    padding: 7px 12% 0;
+    box-shadow: 0 3px 8px rgba(50, 50, 50, 0.17);
+  }
+
+  h1 {
+    font-size: 100%;
+    color: #730E15;
+    line-height: 1.5em;
+  }
+
+  div.dialog > p {
+    margin: 0 0 1em;
+    padding: 1em;
+    background-color: #F7F7F7;
+    border: 1px solid #CCC;
+    border-right-color: #999;
+    border-left-color: #999;
+    border-bottom-color: #999;
+    border-bottom-left-radius: 4px;
+    border-bottom-right-radius: 4px;
+    border-top-color: #DADADA;
+    color: #666;
+    box-shadow: 0 3px 8px rgba(50, 50, 50, 0.17);
+  }
+  </style>
+</head>
+
+<body>
+  <!-- This file lives in public/500.html -->
+  <div class="dialog">
+    <div>
+      <h1>We're sorry, but something went wrong.</h1>
+    </div>
+    <p>If you are the application owner check the logs for more information.</p>
+  </div>
+</body>
+</html>

data/test/rails_app/public/robots.txt

@@ -0,0 +1,5 @@
+# See http://www.robotstxt.org/robotstxt.html for documentation on how to use the robots.txt file
+#
+# To ban all spiders from the entire site uncomment the next two lines:
+# User-agent: *
+# Disallow: /

data/test/rails_app/test/fixtures/admin/reports.yml

@@ -0,0 +1,2 @@
+report_one:
+  title: Some Title

data/test/rails_app/test/fixtures/admins.yml

@@ -0,0 +1,11 @@
+support:
+  access_mask: 1
+
+content:
+  access_mask: 2
+
+marketing:
+  access_mask: 4
+
+all:
+  access_mask: <%= Admin::ACCESS.size.times.map { |n| n ** 2 }.sum %>

data/test/rails_app/test/fixtures/documents.yml

@@ -0,0 +1,8 @@
+alpha:
+  title: Alpha
+
+beta:
+  title: Beta
+
+gamma:
+  title: Gamma

data/test/rails_app/test/fixtures/memberships.yml

@@ -0,0 +1,10 @@
+mb1:
+  user: bob
+  document: alpha
+  roles_mask: <%= Membership::ROLES.size.times.map { |n| 2 ** n }.sum %>
+
+mb2:
+  user: bob
+  document: beta
+  roles_mask: 1
+

data/test/rails_app/test/fixtures/users.yml

@@ -0,0 +1,2 @@
+bob: {}
+jim: {}

data/test/rails_app/test/models/admin/report_test.rb

@@ -0,0 +1,7 @@
+require 'test_helper'
+
+class Admin::ReportTest < ActiveSupport::TestCase
+  # test "the truth" do
+  #   assert true
+  # end
+end

data/test/rails_app/test/models/document_test.rb

@@ -0,0 +1,7 @@
+require 'test_helper'
+
+class DocumentTest < ActiveSupport::TestCase
+  # test "the truth" do
+  #   assert true
+  # end
+end

data/test/rails_app/test/models/membership_test.rb

@@ -0,0 +1,7 @@
+require 'test_helper'
+
+class MembershipTest < ActiveSupport::TestCase
+  # test "the truth" do
+  #   assert true
+  # end
+end

data/test/rails_app/test/models/user_test.rb

@@ -0,0 +1,7 @@
+require 'test_helper'
+
+class UserTest < ActiveSupport::TestCase
+  # test "the truth" do
+  #   assert true
+  # end
+end

data/test/rails_app/test/test_helper.rb

@@ -0,0 +1,10 @@
+ENV['RAILS_ENV'] ||= 'test'
+require File.expand_path('../../config/environment', __FILE__)
+require 'rails/test_help'
+
+class ActiveSupport::TestCase
+  # Setup all fixtures in test/fixtures/*.yml for all tests in alphabetical order.
+  fixtures :all
+
+  # Add more helper methods to be used by all tests here...
+end

data/test/simon_says/authorizer_test.rb

@@ -0,0 +1,143 @@
+require 'test_helper'
+
+class AuthorizerTest < ActiveSupport::TestCase
+  setup do
+    @controller = Class.new(ApplicationController) do
+      # These would be defined by Devise or some authenication library
+      attr_accessor :current_user, :current_admin, :sites
+      attr_reader :params
+
+      def params=(params)
+        @params = params.with_indifferent_access
+      end
+
+      # shortcut to read instance variables
+      def [](ivar_name)
+        instance_variable_get :"@#{ivar_name}"
+      end
+
+      def authenticate_admin! # dummy method
+      end
+
+      def authenticate_user! # dummy method
+      end
+
+      include SimonSays::Authorizer
+    end.new
+
+    @controller.current_user = users(:bob)
+    @controller.params = { id: documents(:alpha).id }
+  end
+
+  test "find_resource" do
+    @controller.find_resource :document
+
+    assert_equal documents(:alpha), @controller[:document]
+  end
+
+  test "find_resource with class_name" do
+    @controller.find_resource :document, class_name: 'document'
+
+    assert_equal documents(:alpha), @controller[:document]
+  end
+
+  test "find_resource with default scope and through" do
+    @controller.class.default_authorization_scope = :current_user
+    @controller.current_user = users(:bob)
+
+    @controller.find_resource :document, through: :memberships
+
+    assert_equal documents(:alpha), @controller[:document]
+  end
+
+  test "find_resource with from" do
+    @controller.instance_variable_set :@user, users(:bob)
+
+    @controller.find_resource :document, from: :user
+
+    assert_equal documents(:alpha), @controller[:document]
+  end
+
+  test "find_resource with namespace" do
+    @controller.current_admin = admins(:support)
+    @controller.params = { id: admin_reports(:report_one).id }
+
+    @controller.find_resource :report, namespace: :admin
+
+    assert_equal admin_reports(:report_one), @controller[:report]
+  end
+
+  test "find_resource raises RecordNotFound" do
+    assert_raises ActiveRecord::RecordNotFound do
+      @controller.params = { id: -1 }
+      @controller.find_resource :document
+    end
+  end
+
+  test "find_resource raises RecordNotFound with default scope and through" do
+    @controller.class.default_authorization_scope = :current_user
+    @controller.current_user = users(:bob)
+
+    assert_raises ActiveRecord::RecordNotFound do
+      @controller.params = { id: -1 }
+      @controller.find_resource :document, through: :memberships
+    end
+  end
+
+  test "find_resource raises RecordNotFound with from" do
+    @controller.instance_variable_set :@user, users(:bob)
+
+    assert_raises ActiveRecord::RecordNotFound do
+      @controller.params = { id: -1 }
+      @controller.find_resource :document, from: :user
+    end
+  end
+
+  test "authorize with membership role" do
+    @controller.instance_variable_set :@membership, documents(:alpha).memberships.first
+
+    assert @controller.authorize(:fork, resource: :membership)
+  end
+
+  test "authorize with current_admin" do
+    @controller.current_admin = admins(:support)
+
+    assert @controller.authorize(:support, resource: :admin)
+  end
+
+  test "authorize with multiple roles" do
+    @controller.instance_variable_set :@membership, documents(:alpha).memberships.first
+
+    assert @controller.authorize([:update, :delete], resource: :membership)
+  end
+
+  test "authorize with through" do
+    @controller.instance_variable_set :@membership, documents(:alpha).memberships.first
+
+    assert @controller.authorize(:delete, through: :membership)
+  end
+
+  test "authorize invokes authentication_admin" do
+    @controller.current_admin = admins(:marketing)
+
+    @controller.expects(:authenticate_admin!).once
+    @controller.authorize(:marketing, resource: :admin)
+  end
+
+  test "authorization failure single role" do
+    assert_raises SimonSays::Authorizer::Denied do
+      @controller.instance_variable_set :@membership, documents(:beta).memberships.first
+
+      @controller.authorize(:delete, resource: :membership)
+    end
+  end
+
+  test "authorization failire multi roles" do
+    @controller.instance_variable_set :@membership, documents(:beta).memberships.first
+
+    assert_raises SimonSays::Authorizer::Denied do
+      @controller.authorize([:update, :delete], resource: :membership)
+    end
+  end
+end
+