spree_admin_roles_and_access 1.0.0

data/LICENSE

@@ -0,0 +1,26 @@
+Copyright (c) 2013 [name of plugin creator]
+All rights reserved.
+
+Redistribution and use in source and binary forms, with or without modification,
+are permitted provided that the following conditions are met:
+
+    * Redistributions of source code must retain the above copyright notice,
+      this list of conditions and the following disclaimer.
+    * Redistributions in binary form must reproduce the above copyright notice,
+      this list of conditions and the following disclaimer in the documentation
+      and/or other materials provided with the distribution.
+    * Neither the name Spree nor the names of its contributors may be used to
+      endorse or promote products derived from this software without specific
+      prior written permission.
+
+THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
+"AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
+LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
+A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR
+CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL,
+EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO,
+PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR
+PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF
+LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING
+NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS
+SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.

data/README.md

@@ -0,0 +1,79 @@
+SpreeAdminRolesAndAccess
+========================
+
+This spree extension is build on CanCan to dynamically add new roles and define its access through permissions.
+
+Installation
+------------
+
+Add spree_admin_roles_and_access to your Gemfile:
+
+```ruby
+gem 'spree_admin_roles_and_access'
+```
+
+Bundle your dependencies and run the installation generator:
+
+```shell
+bundle
+bundle exec rails g spree_admin_roles_and_access:install
+bundle exec rake spree_roles:permissions:populate # To populate user and admin roles with their permissions
+```
+
+Usage
+-----
+
+From Admin end, there is a role menu in configuration tab(admin end).
+A new Role can be added and its corresponding permissions can also be selected there.
+Permission to be chosen can be made only with rails console or a ruby script.
+
+Types of Permission
+
+  1. Default Permission - Basic permissions required by a user to perform task on user end, like creating an order etc. Every role should be provided with this permissions.
+
+  2. Default Admin Permission - Because of this permission an admin can go to '/admin' route.
+
+  3. Can Manage All - Role with this permission can do everything. This permission is also invisible at admin end. And it should only be given to admin and super admin.
+
+Pattern of the permissions :-
+
+  1. Can/cannot - specifies whether the user with that permission can do or cannot do that task.
+  2. Action - specifies the action which can be done by that model or subject like update, index, create etc. There is a special action called manage which matches every action.
+  3. Subject - specified the model like products, users etc. of which the permission is given. There is an special subject called all which matches every subject.
+  4. Attributes - specifies the attributes for which the permission is specified. Read-only actions shouldn't require this like index, read etc. But it is more secure if we specify them in other actions like create or update.
+
+Some Examples :-
+
+  1. can-manage-spree/product - can perform every action on Spree::Product but not on any other model or subject.
+  2. can-update-all - can update all models or subjects.
+  3. can-update-spree/product - can update only products, and not users, orders and other things.
+  4. can-update-spree/product-price - can update only price of products.
+  5. can-manage-all - can perform every action on all models.
+
+Points to remember
+
+  1. If the controller doesn't have any model associated with it, then we will provide the full controller path like :-
+    can-read-spree/admin/pos
+
+  2. Every Role should also have admin permission of that particular controller. For eg:-
+    To create a product, can-admin-spree/product is also needed along with can-create-spree/product.
+
+  3. To define custom cancan permissions, which can not be made with the pattern adopted.
+    Override a module Permission. And define the permission in a method, and create a permission in the database.
+
+
+To Do
+-----
+
+  To provide a space in admin end, from where permissions can be added dynamically.
+
+Testing
+-------
+
+Be sure to bundle your dependencies and then create a dummy test app for the specs to run against.
+
+```shell
+bundle
+bundle exec rake test_app
+bundle exec rspec spec
+```

data/app/assets/javascripts/admin/spree_admin_roles_and_access.js

@@ -0,0 +1 @@
+//= require admin/spree_backend

data/app/assets/javascripts/store/spree_admin_roles_and_access.js

@@ -0,0 +1 @@
+//= require store/spree_frontend

data/app/assets/stylesheets/admin/spree_admin_roles_and_access.css

@@ -0,0 +1,3 @@
+/*
+ *= require admin/spree_backend
+*/

data/app/assets/stylesheets/store/spree_admin_roles_and_access.css

@@ -0,0 +1,3 @@
+/*
+ *= require store/spree_frontend
+*/

data/app/controllers/spree/admin/base_controller_decorator.rb

@@ -0,0 +1,23 @@
+Spree::Admin::BaseController.class_eval do
+  def authorize_admin
+    begin
+      if params[:id]
+        record = model_class.where(PARAM_ATTRIBUTE[controller_name] => params[:id]).first
+      elsif new_action?
+        record = model_class.new
+      else
+        record = model_class
+        raise if record.blank?  ## This is done because on some machines model_class returns nil instead of raising an exception.
+      end
+    rescue
+      record = "#{params[:controller]}"
+    end
+    authorize! :admin, record
+    authorize_with_attributes! params[:action].to_sym, record, params[controller_name.singularize]
+  end
+
+  private
+    def new_action?
+      NEW_ACTIONS.include?(params[:action].to_sym)
+    end
+end

data/app/controllers/spree/admin/roles_controller.rb

@@ -0,0 +1,21 @@
+module Spree
+	module Admin
+    class RolesController < ResourceController
+      before_filter :load_permissions, :only => [:edit, :new, :create, :update]
+      before_filter :restrict_unless_editable, :only => [:edit, :update]
+
+      def index
+        @roles = Spree::Role.page(params[:page])
+      end
+
+      private
+        def load_permissions
+          @permissions = Spree::Permission.visible.all
+        end
+
+        def restrict_unless_editable
+          redirect_to admin_roles_path unless @role.editable?
+        end
+    end
+  end
+end

data/app/models/spree/ability_decorator.rb

@@ -0,0 +1,33 @@
+module Spree
+  Ability.class_eval do
+
+    def initialize(user)
+      self.clear_aliased_actions
+
+      alias_action :edit, :to => :update
+      alias_action :new, :to => :create
+      alias_action :new_action, :to => :create
+      alias_action :show, :to => :read
+      alias_action :delete, :to => :destroy
+
+      user ||= Spree::User.new
+
+      user_roles(user).each do |role|
+        ability(role, user)
+      end
+
+      Ability.abilities.each do |clazz|
+        ability = clazz.send(:new, user)
+        @rules = rules + ability.send(:rules)
+      end
+    end
+
+    def user_roles(user)
+      (roles = user.roles.includes(:permissions)).empty? ? Spree::Role.default_role.includes(:permissions) : roles
+    end
+
+    def ability(role, user)
+      role.ability(self, user)
+    end
+  end
+end

data/app/models/spree/permission.rb

@@ -0,0 +1,19 @@
+module Spree
+  class Permission < ActiveRecord::Base
+    include Permissions
+
+    attr_accessible :title, :priority
+
+    default_scope order(:priority)
+
+    has_and_belongs_to_many :roles, :join_table => 'spree_roles_permissions', :class_name => 'Spree::Role'
+
+    validates :title, :presence => true, :uniqueness => true
+
+    scope :visible, where(:visible => true)
+
+    def ability(current_ability, user)
+      send(title, current_ability, user)
+    end
+  end
+end

data/app/models/spree/role_decorator.rb

@@ -0,0 +1,19 @@
+Spree::Role.class_eval do
+  attr_accessible :name, :permission_ids
+  
+  has_and_belongs_to_many :permissions, :join_table => 'spree_roles_permissions', :class_name => 'Spree::Permission'
+
+  validates :name, :presence => true, :uniqueness => true
+
+  def ability(current_ability, user)
+    permissions.each do |permission|
+      permission.ability(current_ability, user)
+    end
+  end
+
+  def has_permission?(permission_title)
+    permissions.pluck(:title).include?(permission_title)
+  end
+
+  scope :default_role, where(:is_default => true) 
+end

data/app/models/spree/user_decorator.rb

@@ -0,0 +1,3 @@
+Spree.user_class.class_eval do
+  has_and_belongs_to_many :roles, :join_table => 'spree_roles_users', :class_name => 'Spree::Role', :foreign_key => :user_id
+end

data/app/overrides/add_roles_to_admin_configuration_sidebar.rb

@@ -0,0 +1,8 @@
+Deface::Override.new(
+  :virtual_path => 'spree/admin/shared/_configuration_menu',
+  :name => 'add_roles_to_admin_configuration_sidebar',
+  :insert_bottom => "[data-hook='admin_configurations_sidebar_menu']",
+  :text => %q{
+    <%= configurations_sidebar_menu_item Spree.t(:roles), admin_roles_path %>
+    }
+)

data/app/views/spree/admin/roles/_form.html.erb

@@ -0,0 +1,19 @@
+<div>
+  <%= render :partial => 'spree/shared/error_messages', :locals => { :target => @role } %>
+</div>
+
+<table>
+  <%= form_tag [:admin, @role], :method => method do %>
+    <tr><td>Name:</td><td><%= text_field_tag 'role[name]', @role.name %></td></tr>
+    <tr><td>Permissions:</td>
+    <td><% @permissions.each do |permission| %>
+      <% if @role.has_permission?(permission.title) %>
+        <span class='permission-check-box'><%= check_box_tag 'role[permission_ids][]', permission.id, true %><%= permission.title.gsub('-',' ').titleize %></span>
+      <% else %>
+        <span class='permission-check-box'><%= check_box_tag 'role[permission_ids][]', permission.id %><%= permission.title.gsub('-',' ').titleize %></span>
+      <% end %>
+      <br />
+    <% end %></td></tr>
+    <tr><td></td><td><%= submit_tag %></td></tr>
+  <% end %>
+</table>

data/app/views/spree/admin/roles/edit.html.erb

@@ -0,0 +1,2 @@
+<h1><%= Spree.t(:edit_user) %></h1>
+<%= render :partial => 'form', :locals => { :method => :put } %>

data/app/views/spree/admin/roles/index.html.erb

@@ -0,0 +1,32 @@
+<%= render :partial => 'spree/admin/shared/configuration_menu' %>
+
+<% content_for :page_title do %>
+  <%= Spree.t(:listing_roles) %>
+<% end %>
+
+<% content_for :page_actions do %>
+  <li>
+    <%= button_link_to Spree.t(:new_role), new_admin_role_path %>
+  </li>
+<% end %>
+
+<%= paginate @roles %>
+
+<table class='index'>
+  <thead>
+    <tr>
+      <th>Name</th>
+    </tr>
+  </thead>
+  
+  <tbody>
+    <% @roles.each do |role| %>
+      <tr class="<%= cycle('odd', 'even') %>">
+        <td class="align-center"><%= role.name %></td>
+        <% if role.editable? %>
+          <td class="actions"><%= link_to_edit role, :no_text => true, :class => 'edit' %></td>
+        <% end %>
+      </tr>
+    <% end %>
+  </tbody>
+</table>

data/app/views/spree/admin/roles/new.html.erb

@@ -0,0 +1,2 @@
+<h1><%= Spree.t(:new_user) %></h1>
+<%= render :partial => 'form', :locals => { :method => :post } %>

data/config/initializers/cancan_ability.rb

@@ -0,0 +1,31 @@
+CanCan::Ability.module_eval do
+  def relevant_rules(action, subject, attribute = nil)
+    rules.reverse.select do |rule|
+      rule.expanded_actions = expand_actions(rule.actions)
+      rule.relevant? action, subject, attribute
+    end
+  end
+
+  def relevant_rules_for_match(action, subject, attribute = nil)
+    relevant_rules(action, subject, attribute).each do |rule|
+      if rule.only_raw_sql?
+        raise ::Exception, "The can? and cannot? call cannot be used with a raw sql 'can' definition. The checking code cannot be determined for #{action.inspect} #{subject.inspect}"
+      end
+    end
+  end
+
+  def can?(action, subject, attribute = nil)
+    match = relevant_rules_for_match(action, subject, attribute).detect do |rule|
+      rule.matches_conditions?(action, subject, attribute)
+    end
+    match ? match.base_behavior : false
+  end
+
+  def can(*args, &block)
+    rules << CanCan::Rule.new(true, *args, &block)
+  end
+
+  def cannot(*args, &block)
+    rules << CanCan::Rule.new(false, *args, &block)
+  end
+end

data/config/initializers/cancan_controller_additions.rb

@@ -0,0 +1,11 @@
+CanCan::ControllerAdditions.class_eval do
+  # specs of #authorize_with_attributes! is written in authorize_admin in roles_controller_spec 
+  def authorize_with_attributes!(action, subject, attributes = [])
+    attributes = attributes.keys if attributes.is_a?(Hash)
+    if attributes.is_a? Array
+      attributes.each { |attribute| authorize!(action, subject, attribute) }
+    else
+      authorize!(action, subject)
+    end
+  end
+end

data/config/initializers/cancan_rule.rb

@@ -0,0 +1,50 @@
+CanCan::Rule.class_eval do
+  def initialize(base_behavior, action = nil, subject = nil, *extra_args, &block)
+    @match_all = action.nil? && subject.nil?
+    @base_behavior = base_behavior
+    @actions = [action].flatten
+    @subjects = [subject].flatten
+    @attributes = [extra_args.shift].flatten if extra_args.first.kind_of?(Symbol) || extra_args.first.kind_of?(Array) && extra_args.first.first.kind_of?(Symbol)
+    raise ::Exception, "You are not able to supply a block with a hash of conditions in #{action} #{subject} ability. Use either one." if extra_args.first.kind_of?(Hash) && !block.nil?
+    @conditions = extra_args.first || {}
+    @block = block
+  end
+
+  # Matches the subject, action, and given attribute. Conditions are not checked here.
+  def relevant?(action, subject, attribute = nil)
+    subject = subject.values.first if subject.class == Hash
+    @match_all || (matches_action?(action) && matches_subject?(subject) && matches_attribute?(attribute))
+  end
+
+  # Matches the block or conditions hash
+  def matches_conditions?(action, subject, attribute = nil)
+    if @match_all
+      call_block_with_all(action, subject)
+    elsif @block && !subject_class?(subject)
+      @block.arity == 1 ? @block.call(subject) : @block.call(subject, attribute)
+    elsif @conditions.kind_of?(Hash) && subject.class == Hash
+      nested_subject_matches_conditions?(subject)
+    elsif @conditions.kind_of?(Hash) && !subject_class?(subject)
+      matches_conditions_hash?(subject)
+    else
+      # Don't stop at "cannot" definitions when there are conditions.
+      @conditions.empty? ? true : @base_behavior
+    end
+  end
+
+  def attributes?
+    @attributes.present?
+  end
+
+  private
+
+  def matches_attribute?(attribute)
+    # don't consider attributes in a cannot clause when not matching - this can probably be refactored
+    if !@base_behavior && @attributes && attribute.nil?
+      false
+    else
+      attribute = attribute.is_a?(Array) ? attribute.map(&:to_sym) : attribute.try(:to_sym)
+      @attributes.nil? || attribute.nil? || ([attribute].flatten - @attributes).empty?
+    end
+  end
+end

data/config/initializers/constants.rb

@@ -0,0 +1,2 @@
+PARAM_ATTRIBUTE = Hash.new(:id).merge({"products" => :permalink, "orders" => :number, "shipments" => :number})
+NEW_ACTIONS = [:new, :create]

data/config/locales/en.yml

@@ -0,0 +1,9 @@
+# Sample localization file for English. Add more files in this directory for other locales.
+# See https://github.com/svenfuchs/rails-i18n/tree/master/rails%2Flocale for starting points.
+
+en:
+  spree:
+    hello: "Hello world"
+    new_role: "New Role"
+    listing_roles: "Listing Roles"
+    roles: "Roles"

data/config/routes.rb

@@ -0,0 +1,5 @@
+Spree::Core::Engine.routes.draw do
+  namespace :admin do
+    resources :roles, :except => [:show, :destroy]
+  end
+end

data/db/migrate/20130709104101_create_spree_permissions.rb

@@ -0,0 +1,13 @@
+class CreateSpreePermissions < ActiveRecord::Migration
+  def change
+    create_table :spree_permissions do |t|
+      t.string :title, :null => false, :unique => true
+      t.integer :priority, :default => 0
+      t.boolean :visible, :boolean, :default => true
+
+      t.timestamps
+    end
+
+    add_index :spree_permissions, :visible
+  end
+end

data/db/migrate/20130709104945_create_spree_roles_permissions.rb

@@ -0,0 +1,11 @@
+class CreateSpreeRolesPermissions < ActiveRecord::Migration
+  def change
+    create_table :spree_roles_permissions, :id => false do |t|
+      t.integer :role_id, :null => false
+      t.integer :permission_id, :null => false
+    end
+
+    add_index(:spree_roles_permissions, :role_id)
+    add_index(:spree_roles_permissions, :permission_id)
+  end
+end

data/db/migrate/20130709105614_add_editable_is_default_and_index_on_editable_is_default_and_name_to_spree_roles.rb

@@ -0,0 +1,10 @@
+class AddEditableIsDefaultAndIndexOnEditableIsDefaultAndNameToSpreeRoles < ActiveRecord::Migration
+  def change
+    add_column :spree_roles, :editable, :boolean, :default => true
+    add_column :spree_roles, :is_default, :boolean, :default => false
+
+    add_index(:spree_roles, :name)
+    add_index(:spree_roles, :is_default)
+    add_index(:spree_roles, :editable)
+  end
+end

data/lib/generators/spree_admin_roles_and_access/install/install_generator.rb

@@ -0,0 +1,31 @@
+module SpreeAdminRolesAndAccess
+  module Generators
+    class InstallGenerator < Rails::Generators::Base
+
+      class_option :auto_run_migrations, :type => :boolean, :default => false
+
+      def add_javascripts
+        append_file 'app/assets/javascripts/store/all.js', "//= require store/spree_admin_roles_and_access\n"
+        append_file 'app/assets/javascripts/admin/all.js', "//= require admin/spree_admin_roles_and_access\n"
+      end
+
+      def add_stylesheets
+        inject_into_file 'app/assets/stylesheets/store/all.css', " *= require store/spree_admin_roles_and_access\n", :before => /\*\//, :verbose => true
+        inject_into_file 'app/assets/stylesheets/admin/all.css', " *= require admin/spree_admin_roles_and_access\n", :before => /\*\//, :verbose => true
+      end
+
+      def add_migrations
+        run 'bundle exec rake railties:install:migrations FROM=spree_admin_roles_and_access'
+      end
+
+      def run_migrations
+        run_migrations = options[:auto_run_migrations] || ['', 'y', 'Y'].include?(ask 'Would you like to run the migrations now? [Y/n]')
+        if run_migrations
+          run 'bundle exec rake db:migrate'
+        else
+          puts 'Skipping rake db:migrate, don\'t forget to run it!'
+        end
+      end
+    end
+  end
+end

data/lib/spree/permissions.rb

@@ -0,0 +1,60 @@
+module Spree
+  module Permissions
+    def method_missing(name, current_ability, user)
+      can, action, subject, attribute = find_action_and_subject(name)
+
+      Permissions.send(:define_method, name) do |current_ability, user|
+        if attribute.nil?
+          current_ability.send(can, action, subject)
+        else
+          current_ability.send(can, action, subject, attribute)
+        end
+      end
+      send(name, current_ability, user) if self.respond_to?(name)
+    end
+
+    define_method('default-permissions') do |current_ability, user|
+      current_ability.can [:read, :update, :destroy], Spree.user_class do |resource|
+        resource == user
+      end
+      
+      current_ability.can [:read, :update], Spree::Order do |order, token|
+        order.user == user || (order.token && token == order.token)
+      end
+      
+      current_ability.can :create, Spree::Order
+      current_ability.can :read, Spree::Address do |address|
+        address.user == user
+      end
+    end
+
+    define_method('default-admin-permissions') do |current_ability, user|
+      current_ability.can :admin, 'spree/admin/overview'
+      current_ability.can :index, 'spree/admin/overview'
+    end
+
+    define_method('can-update-spree/users') do |current_ability, user|
+      current_ability.can :update, Spree::User
+      # The permission of cannot update role_ids was given to user so that no onw with this permission can change role of user.
+      current_ability.cannot :update, Spree::User, :role_ids
+    end
+
+    define_method('can-create-spree/users') do |current_ability, user|
+      current_ability.can :create, Spree::User
+      current_ability.cannot :create, Spree::User, :role_ids
+    end
+
+    private
+      def find_action_and_subject(name)
+        can, action, subject, attribute = name.to_s.split('-')
+ 
+        if subject == 'all'
+          return can.to_sym, action.to_sym, subject.to_sym, attribute.try(:to_sym)
+        elsif (subject_class = subject.classify.safe_constantize) && subject_class.ancestors.include?(ActiveRecord::Base)
+          return can.to_sym, action.to_sym, subject_class, attribute.try(:to_sym)
+        else
+          return can.to_sym, action.to_sym, subject, attribute.try(:to_sym)
+        end
+      end
+  end
+end

data/lib/spree_admin_roles_and_access.rb

@@ -0,0 +1,2 @@
+require 'spree_core'
+require 'spree_admin_roles_and_access/engine'

data/lib/spree_admin_roles_and_access/engine.rb

@@ -0,0 +1,22 @@
+module SpreeAdminRolesAndAccess
+  class Engine < Rails::Engine
+    require 'spree/core'
+    isolate_namespace Spree
+    engine_name 'spree_admin_roles_and_access'
+
+    config.autoload_paths += %W(#{config.root}/lib)
+
+    # use rspec for tests
+    config.generators do |g|
+      g.test_framework :rspec
+    end
+
+    def self.activate
+      Dir.glob(File.join(File.dirname(__FILE__), '../../app/**/*_decorator*.rb')) do |c|
+        Rails.configuration.cache_classes ? require(c) : load(c)
+      end
+    end
+
+    config.to_prepare &method(:activate).to_proc
+  end
+end

data/lib/tasks/populate.rake

@@ -0,0 +1,17 @@
+namespace :spree_roles do
+  namespace :permissions do
+    desc "Create admin username and password"
+    task :populate => :environment do
+      admin = Spree::Role.where(:name => 'admin').first_or_create!
+      user = Spree::Role.where(:name => 'user').first_or_create!
+      user.is_default = true
+      user.save!
+
+      permission1 = Spree::Permission.create!(:title => 'can-manage-all', :priority => 0)
+      permission2 = Spree::Permission.create!(:title => 'default-permissions', :priority => 1)
+
+      user.permissions = [permission2]
+      admin.permissions = [permission1]
+    end
+  end
+end

metadata

@@ -0,0 +1,92 @@
+--- !ruby/object:Gem::Specification
+name: spree_admin_roles_and_access
+version: !ruby/object:Gem::Version
+  version: 1.0.0
+  prerelease: 
+platform: ruby
+authors:
+- Nishant 'CyRo' Tuteja
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2014-01-17 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: spree_core
+  requirement: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: '2.0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: '2.0'
+description: 
+email: info@vinsol.com
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- LICENSE
+- README.md
+- app/assets/stylesheets/store/spree_admin_roles_and_access.css
+- app/assets/stylesheets/admin/spree_admin_roles_and_access.css
+- app/assets/javascripts/store/spree_admin_roles_and_access.js
+- app/assets/javascripts/admin/spree_admin_roles_and_access.js
+- app/overrides/add_roles_to_admin_configuration_sidebar.rb
+- app/models/spree/permission.rb
+- app/models/spree/user_decorator.rb
+- app/models/spree/role_decorator.rb
+- app/models/spree/ability_decorator.rb
+- app/controllers/spree/admin/base_controller_decorator.rb
+- app/controllers/spree/admin/roles_controller.rb
+- app/views/spree/admin/roles/_form.html.erb
+- app/views/spree/admin/roles/new.html.erb
+- app/views/spree/admin/roles/edit.html.erb
+- app/views/spree/admin/roles/index.html.erb
+- config/routes.rb
+- config/locales/en.yml
+- config/initializers/cancan_controller_additions.rb
+- config/initializers/constants.rb
+- config/initializers/cancan_ability.rb
+- config/initializers/cancan_rule.rb
+- lib/generators/spree_admin_roles_and_access/install/install_generator.rb
+- lib/spree/permissions.rb
+- lib/spree_admin_roles_and_access.rb
+- lib/spree_admin_roles_and_access/engine.rb
+- lib/tasks/populate.rake
+- db/migrate/20130709104945_create_spree_roles_permissions.rb
+- db/migrate/20130709104101_create_spree_permissions.rb
+- db/migrate/20130709105614_add_editable_is_default_and_index_on_editable_is_default_and_name_to_spree_roles.rb
+homepage: http://vinsol.com
+licenses: []
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  none: false
+  requirements:
+  - - ! '>='
+    - !ruby/object:Gem::Version
+      version: 1.9.3
+required_rubygems_version: !ruby/object:Gem::Requirement
+  none: false
+  requirements:
+  - - ! '>='
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements:
+- none
+rubyforge_project: 
+rubygems_version: 1.8.25
+signing_key: 
+specification_version: 3
+summary: Dynamically defines roles and grants it permissions
+test_files: []