super_auth 0.1.3 → 0.1.5

data/lib/super_auth/edge.rb

@@ -1,10 +1,24 @@
-class SuperAuth::Edge < Sequel::Model(:edges)
+class SuperAuth::Edge < Sequel::Model(:super_auth_edges)
   many_to_one :user
   many_to_one :group
   many_to_one :permission
   many_to_one :role
   many_to_one :resource
 
+  def before_save
+    @affected_users = SuperAuth::Authorization.where(user_id: user_id).distinct.select_map(:user_id) + [user_id]
+  end
+
+  def after_save
+    SuperAuth::Authorization.db.transaction do
+      SuperAuth::Authorization.where(user_id: @affected_users).delete
+      SuperAuth::Authorization.multi_insert(
+        SuperAuth::Edge.authorizations.where(user_id: @affected_users)
+        .to_a
+      )
+    end
+  end
+
   class << self
 
     def authorizations
@@ -12,91 +26,92 @@ class SuperAuth::Edge < Sequel::Model(:edges)
         .union(users_roles_permissions_resources)
         .union(users_groups_permissions_resources)
         .union(users_permissions_resources)
+        .union(users_resources)
     end
 
     def users_groups_roles_permissions_resources
-      users_groups_roles_ds = SuperAuth::User.join(:edges, user_id: :id).select_all(:users).join(SuperAuth::Group.from(SuperAuth::Group.trees).as(:groups), id: :group_id).select(
-        Sequel[:users][:id].as(:user_id),
-        Sequel[:users][:name].as(:user_name),
-        Sequel[:users][:external_id].as(:user_external_id),
-        Sequel[:users][:created_at].as(:user_created_at),
-        Sequel[:users][:updated_at].as(:user_updated_at),
+      users_groups_roles_ds = SuperAuth::User.join(:super_auth_edges, user_id: :id).select_all(:super_auth_users).join(SuperAuth::Group.from(SuperAuth::Group.trees).as(:groups), id: :group_id).select(
+        Sequel[:super_auth_users][:id].as(:user_id),
+        Sequel[:super_auth_users][:name].as(:user_name),
+        Sequel[:super_auth_users][:external_id].as(:user_external_id),
+        Sequel[:super_auth_users][:created_at].as(:user_created_at),
+        Sequel[:super_auth_users][:updated_at].as(:user_updated_at),
         Sequel[:groups][:id].as(:group_id),
         Sequel[:groups][:name].as(:group_name),
-        Sequel[:edges][:id].as(:edge_id),
-        Sequel[:edges][:permission_id].as(:edge_permission_id),
-        Sequel[:edges][:group_id].as(:edge_group_id),
-        Sequel[:edges][:user_id].as(:edge_user_id),
-        Sequel[:edges][:role_id].as(:edge_role_id),
+        Sequel[:super_auth_edges][:id].as(:edge_id),
+        Sequel[:super_auth_edges][:permission_id].as(:edge_permission_id),
+        Sequel[:super_auth_edges][:group_id].as(:edge_group_id),
+        Sequel[:super_auth_edges][:user_id].as(:edge_user_id),
+        Sequel[:super_auth_edges][:role_id].as(:edge_role_id),
         Sequel[:groups][:group_path],
         Sequel[:groups][:group_name_path],
         Sequel[:groups][:parent_id],
-        Sequel[:groups][:created_at].as(:group_created_at),
-        Sequel[:groups][:updated_at].as(:group_updated_at),
-      ).join(Sequel[:edges].as(:group_role_edges), Sequel[:group_role_edges][:group_id] => Sequel[:groups][:id]).select_append(
+        Sequel[:groups][:created_at].cast(:text).as(:group_created_at),
+        Sequel[:groups][:updated_at].cast(:text).as(:group_updated_at),
+      ).join(Sequel[:super_auth_edges].as(:group_role_edges), Sequel[:group_role_edges][:group_id] => Sequel[:groups][:id]).select_append(
         Sequel[:group_role_edges][:id].as(:group_role_edge_id),
         Sequel[:group_role_edges][:permission_id].as(:group_role_edge_permission_id),
         Sequel[:group_role_edges][:group_id].as(:group_role_edge_group_id),
         Sequel[:group_role_edges][:user_id].as(:group_role_edge_user_id),
         Sequel[:group_role_edges][:role_id].as(:group_role_edge_role_id),
-      ).join(:roles, id: Sequel[:group_role_edges][:role_id])
+      ).join(:super_auth_roles, id: Sequel[:group_role_edges][:role_id])
 
       SuperAuth::Edge.from(
         SuperAuth::Edge.from(
-          SuperAuth::Group.cte(SuperAuth::Group.where(id: users_groups_roles_ds.select(Sequel[:groups][:id])).select(:id)).select { [id.as(:group_id), name.as(:group_name), parent_id.as(:group_parent_id), group_path, group_name_path, created_at.as(:group_created_at), updated_at.as(:group_updated_at)] },
+          SuperAuth::Group.cte(SuperAuth::Group.where(id: users_groups_roles_ds.select(Sequel[:groups][:id])).select(:id)).select { [id.as(:group_id), name.as(:group_name), parent_id.as(:group_parent_id), group_path, group_name_path, created_at.cast(:text).as(:group_created_at), updated_at.as(:group_updated_at)] },
           SuperAuth::Role.cte(users_groups_roles_ds.select(Sequel[:group_role_edges][:role_id])).select { [id.as(:role_id), name.as(:role_name), parent_id.as(:role_parent_id), role_path, role_name_path, created_at.as(:role_created_at), updated_at.as(:role_updated_at) ] }
         ).as(:users_groups_roles_permissions_resources)
-      ).join(Sequel[:edges].as(:user_edges), Sequel[:user_edges][:group_id] => Sequel[:users_groups_roles_permissions_resources][:group_id])
-       .join(Sequel[:users], id: Sequel[:user_edges][:user_id])
+      ).join(Sequel[:super_auth_edges].as(:user_edges), Sequel[:user_edges][:group_id] => Sequel[:users_groups_roles_permissions_resources][:group_id])
+       .join(Sequel[:super_auth_users], id: Sequel[:user_edges][:user_id])
        .select(
-          Sequel[:users][:id].as(:user_id),
-          Sequel[:users][:name].as(:user_name),
-          Sequel[:users][:external_id].as(:user_external_id),
-          Sequel[:users][:created_at].cast(:text).as(:user_created_at),
-          Sequel[:users][:updated_at].cast(:text).as(:user_updated_at),
+          Sequel[:super_auth_users][:id].as(:user_id),
+          Sequel[:super_auth_users][:name].as(:user_name),
+          Sequel[:super_auth_users][:external_id].as(:user_external_id),
+          Sequel[:super_auth_users][:created_at].cast(:text).as(:user_created_at),
+          Sequel[:super_auth_users][:updated_at].cast(:text).as(:user_updated_at),
 
           Sequel[:users_groups_roles_permissions_resources][:group_id],
           Sequel[:users_groups_roles_permissions_resources][:group_name],
           Sequel[:users_groups_roles_permissions_resources][:group_path],
           Sequel[:users_groups_roles_permissions_resources][:group_name_path],
           Sequel[:users_groups_roles_permissions_resources][:group_parent_id],
-          Sequel[:users_groups_roles_permissions_resources][:group_created_at].cast(:text),
-          Sequel[:users_groups_roles_permissions_resources][:group_updated_at].cast(:text),
+          Sequel[:users_groups_roles_permissions_resources][:group_created_at].cast(:text).as(:group_created_at),
+          Sequel[:users_groups_roles_permissions_resources][:group_updated_at].cast(:text).as(:group_updated_at),
 
           Sequel[:users_groups_roles_permissions_resources][:role_id],
           Sequel[:users_groups_roles_permissions_resources][:role_name],
           Sequel[:users_groups_roles_permissions_resources][:role_path],
           Sequel[:users_groups_roles_permissions_resources][:role_name_path],
           Sequel[:users_groups_roles_permissions_resources][:role_parent_id],
-          Sequel[:users_groups_roles_permissions_resources][:role_created_at].cast(:text),
-          Sequel[:users_groups_roles_permissions_resources][:role_updated_at].cast(:text),
+          Sequel[:users_groups_roles_permissions_resources][:role_created_at].cast(:text).as(:role_created_at),
+          Sequel[:users_groups_roles_permissions_resources][:role_updated_at].cast(:text).as(:role_updated_at),
 
-          Sequel[:permissions][:id].as(:permission_id),
-          Sequel[:permissions][:name].as(:permission_name),
-          Sequel[:permissions][:created_at].cast(:text).as(:permission_created_at),
-          Sequel[:permissions][:updated_at].cast(:text).as(:permission_updated_at),
+          Sequel[:super_auth_permissions][:id].as(:permission_id),
+          Sequel[:super_auth_permissions][:name].as(:permission_name),
+          Sequel[:super_auth_permissions][:created_at].cast(:text).as(:permission_created_at),
+          Sequel[:super_auth_permissions][:updated_at].cast(:text).as(:permission_updated_at),
 
-          Sequel[:resources][:id].as(:resource_id),
-          Sequel[:resources][:name].as(:resource_name),
-          Sequel[:resources][:external_id].as(:resource_external_id)
+          Sequel[:super_auth_resources][:id].as(:resource_id),
+          Sequel[:super_auth_resources][:name].as(:resource_name),
+          Sequel[:super_auth_resources][:external_id].as(:resource_external_id)
         )
-       .join(Sequel[:edges].as(:permission_edges), Sequel[:permission_edges][:role_id] => Sequel[:users_groups_roles_permissions_resources][:role_id])
-       .join(Sequel[:permissions], id: Sequel[:permission_edges][:permission_id])
-       .join(Sequel[:edges].as(:resource_edges), Sequel[:resource_edges][:permission_id] => Sequel[:permission_edges][:permission_id])
-       .join(Sequel[:resources], id: Sequel[:resource_edges][:resource_id])
+       .join(Sequel[:super_auth_edges].as(:permission_edges), Sequel[:permission_edges][:role_id] => Sequel[:users_groups_roles_permissions_resources][:role_id])
+       .join(Sequel[:super_auth_permissions], id: Sequel[:permission_edges][:permission_id])
+       .join(Sequel[:super_auth_edges].as(:resource_edges), Sequel[:resource_edges][:permission_id] => Sequel[:permission_edges][:permission_id])
+       .join(Sequel[:super_auth_resources], id: Sequel[:resource_edges][:resource_id])
        .distinct
     end
 
     def users_groups_permissions_resources
       SuperAuth::User.
-        join(Sequel[:edges].as(:user_edges), user_id: :id).
+        join(Sequel[:super_auth_edges].as(:user_edges), user_id: :id).
         join(SuperAuth::Group.from(SuperAuth::Group.trees).as(:groups), id: :group_id).
         select(
-          Sequel[:users][:id].as(:user_id),
-          Sequel[:users][:name].as(:user_name),
-          Sequel[:users][:external_id].as(:user_external_id),
-          Sequel[:users][:created_at].cast(:text).as(:user_created_at),
-          Sequel[:users][:updated_at].cast(:text).as(:user_updated_at),
+          Sequel[:super_auth_users][:id].as(:user_id),
+          Sequel[:super_auth_users][:name].as(:user_name),
+          Sequel[:super_auth_users][:external_id].as(:user_external_id),
+          Sequel[:super_auth_users][:created_at].cast(:text).as(:user_created_at),
+          Sequel[:super_auth_users][:updated_at].cast(:text).as(:user_updated_at),
 
           Sequel[:groups][:id].as(:group_id),
           Sequel[:groups][:name].as(:group_name),
@@ -114,40 +129,40 @@ class SuperAuth::Edge < Sequel::Model(:edges)
           Sequel::NULL.as(:role_created_at),      # Sequel[:roles][:created_at].as(:role_created_at),
           Sequel::NULL.as(:role_updated_at),      # Sequel[:roles][:updated_at].as(:role_updated_at),
 
-          Sequel[:permissions][:id].as(:permission_id),
-          Sequel[:permissions][:name].as(:permission_name),
-          Sequel[:permissions][:created_at].cast(:text).as(:permission_created_at),
-          Sequel[:permissions][:updated_at].cast(:text).as(:permission_updated_at),
+          Sequel[:super_auth_permissions][:id].as(:permission_id),
+          Sequel[:super_auth_permissions][:name].as(:permission_name),
+          Sequel[:super_auth_permissions][:created_at].cast(:text).as(:permission_created_at),
+          Sequel[:super_auth_permissions][:updated_at].cast(:text).as(:permission_updated_at),
 
-          Sequel[:resources][:id].as(:resource_id),
-          Sequel[:resources][:name].as(:resource_name),
-          Sequel[:resources][:external_id].as(:resource_external_id),
+          Sequel[:super_auth_resources][:id].as(:resource_id),
+          Sequel[:super_auth_resources][:name].as(:resource_name),
+          Sequel[:super_auth_resources][:external_id].as(:resource_external_id),
         ).
-        join(Sequel[:edges].as(:permission_edges), Sequel[:permission_edges][:group_id] => Sequel[:groups][:id]).
-        join(Sequel[:permissions], id: Sequel[:permission_edges][:permission_id]).
-        join(Sequel[:edges].as(:resource_edges), Sequel[:resource_edges][:permission_id] => Sequel[:permissions][:id]).
-        join(Sequel[:resources], id: Sequel[:resource_edges][:resource_id]).
+        join(Sequel[:super_auth_edges].as(:permission_edges), Sequel[:permission_edges][:group_id] => Sequel[:groups][:id]).
+        join(Sequel[:super_auth_permissions], id: Sequel[:permission_edges][:permission_id]).
+        join(Sequel[:super_auth_edges].as(:resource_edges), Sequel[:resource_edges][:permission_id] => Sequel[:super_auth_permissions][:id]).
+        join(Sequel[:super_auth_resources], id: Sequel[:resource_edges][:resource_id]).
         distinct
     end
 
     def users_roles_permissions_resources
       SuperAuth::User.
-        join(Sequel[:edges].as(:user_edges), user_id: :id).
+        join(Sequel[:super_auth_edges].as(:user_edges), user_id: :id).
         join(SuperAuth::Role.from(SuperAuth::Role.trees).as(:roles), id: :role_id).
         select(
-          Sequel[:users][:id].as(:user_id),
-          Sequel[:users][:name].as(:user_name),
-          Sequel[:users][:external_id].as(:user_external_id),
-          Sequel[:users][:created_at].cast(:text).as(:user_created_at),
-          Sequel[:users][:updated_at].cast(:text).as(:user_updated_at),
-
-          Sequel.lit(%Q[0 as "group_id"]),                                       # Sequel[:groups][:group_id],
-          Sequel::NULL.as(:group_name),                                          # Sequel[:groups][:group_name],
-          Sequel::NULL.as(:group_path),                                          # Sequel[:groups][:group_path],
-          Sequel::NULL.as(:group_name_path),                                     # Sequel[:groups][:group_name_path],
-          Sequel.lit(%Q[0 as "group_parent_id"]),                                # Sequel[:groups][:group_parent_id],
-          Sequel.lit(%Q['1970-01-01 00:00:00.000000-00' as "group_created_at"]), # Sequel[:groups][:group_created_at],
-          Sequel.lit(%Q['1970-01-01 00:00:00.000000-00' as "group_updated_at"]), # Sequel[:groups][:group_updated_at],
+          Sequel[:super_auth_users][:id].as(:user_id),
+          Sequel[:super_auth_users][:name].as(:user_name),
+          Sequel[:super_auth_users][:external_id].as(:user_external_id),
+          Sequel[:super_auth_users][:created_at].cast(:text).as(:user_created_at),
+          Sequel[:super_auth_users][:updated_at].cast(:text).as(:user_updated_at),
+
+          Sequel.lit(%Q[0 as "group_id"]),                                       # Sequel[:super_auth_groups][:group_id],
+          Sequel::NULL.as(:group_name),                                          # Sequel[:super_auth_groups][:group_name],
+          Sequel::NULL.as(:group_path),                                          # Sequel[:super_auth_groups][:group_path],
+          Sequel::NULL.as(:group_name_path),                                     # Sequel[:super_auth_groups][:group_name_path],
+          Sequel.lit(%Q[0 as "group_parent_id"]),                                # Sequel[:super_auth_groups][:group_parent_id],
+          Sequel.lit(%Q['1970-01-01 00:00:00.000000-00' as "group_created_at"]), # Sequel[:super_auth_groups][:group_created_at],
+          Sequel.lit(%Q['1970-01-01 00:00:00.000000-00' as "group_updated_at"]), # Sequel[:super_auth_groups][:group_updated_at],
 
           Sequel[:roles][:id].as(:role_id),
           Sequel[:roles][:name].as(:role_name),
@@ -157,31 +172,73 @@ class SuperAuth::Edge < Sequel::Model(:edges)
           Sequel[:roles][:created_at].cast(:text).as(:role_created_at),
           Sequel[:roles][:updated_at].cast(:text).as(:role_updated_at),
 
-          Sequel[:permissions][:id].as(:permission_id),
-          Sequel[:permissions][:name].as(:permission_name),
-          Sequel[:permissions][:created_at].cast(:text).as(:permission_created_at),
-          Sequel[:permissions][:updated_at].cast(:text).as(:permission_updated_at),
+          Sequel[:super_auth_permissions][:id].as(:permission_id),
+          Sequel[:super_auth_permissions][:name].as(:permission_name),
+          Sequel[:super_auth_permissions][:created_at].cast(:text).as(:permission_created_at),
+          Sequel[:super_auth_permissions][:updated_at].cast(:text).as(:permission_updated_at),
 
-          Sequel[:resources][:id].as(:resource_id),
-          Sequel[:resources][:name].as(:resource_name),
-          Sequel[:resources][:external_id].as(:resource_external_id),
+          Sequel[:super_auth_resources][:id].as(:resource_id),
+          Sequel[:super_auth_resources][:name].as(:resource_name),
+          Sequel[:super_auth_resources][:external_id].as(:resource_external_id),
       ).
-      join(Sequel[:edges].as(:permission_edges), Sequel[:permission_edges][:role_id] => Sequel[:roles][:id]).
-      join(Sequel[:permissions], id: Sequel[:permission_edges][:permission_id]).
-      join(Sequel[:edges].as(:resource_edges), Sequel[:resource_edges][:permission_id] => Sequel[:permissions][:id]).
-      join(Sequel[:resources], id: Sequel[:resource_edges][:resource_id]).
+      join(Sequel[:super_auth_edges].as(:permission_edges), Sequel[:permission_edges][:role_id] => Sequel[:roles][:id]).
+      join(Sequel[:super_auth_permissions], id: Sequel[:permission_edges][:permission_id]).
+      join(Sequel[:super_auth_edges].as(:resource_edges), Sequel[:resource_edges][:permission_id] => Sequel[:super_auth_permissions][:id]).
+      join(Sequel[:super_auth_resources], id: Sequel[:resource_edges][:resource_id]).
       distinct
     end
 
     def users_permissions_resources
       SuperAuth::User.
-        join(Sequel[:edges].as(:user_edges), user_id: :id).
+        join(Sequel[:super_auth_edges].as(:user_edges), user_id: :id).
+        select(
+          Sequel[:super_auth_users][:id].as(:user_id),
+          Sequel[:super_auth_users][:name].as(:user_name),
+          Sequel[:super_auth_users][:external_id].as(:user_external_id),
+          Sequel[:super_auth_users][:created_at].cast(:text).as(:user_created_at),
+          Sequel[:super_auth_users][:updated_at].cast(:text).as(:user_updated_at),
+
+          Sequel.lit(%Q[0 as "group_id"]),      # Sequel[:groups][:group_id],
+          Sequel::NULL.as(:group_name),       # Sequel[:groups][:group_name],
+          Sequel::NULL.as(:group_path),       # Sequel[:groups][:group_path],
+          Sequel::NULL.as(:group_name_path),  # Sequel[:groups][:group_name_path],
+          Sequel.lit(%Q[0 as "group_parent_id"]),      # Sequel[:groups][:group_id],
+          Sequel.lit(%Q['1970-01-01 00:00:00.000000-00' as "group_created_at"]), # Sequel[:groups][:group_created_at],
+          Sequel.lit(%Q['1970-01-01 00:00:00.000000-00' as "group_updated_at"]), # Sequel[:groups][:group_updated_at],
+
+          Sequel.lit(%Q[0 as "role_id"]),        # Sequel[:roles][:role_id],
+          Sequel::NULL.as(:role_name),           # Sequel[:roles][:role_name],
+          Sequel::NULL.as(:role_path),           # Sequel[:roles][:role_path],
+          Sequel::NULL.as(:role_name_path),      # Sequel[:roles][:role_name_path],
+          Sequel.lit(%Q[0 as "role_parent_id"]), # Sequel[:roles][:role_parent_id],
+          Sequel::NULL.as(:role_created_at),     # Sequel[:roles][:role_created_at],
+          Sequel::NULL.as(:role_updated_at),     # Sequel[:roles][:role_updated_at],
+
+          Sequel[:super_auth_permissions][:id].as(:permission_id),
+          Sequel[:super_auth_permissions][:name].as(:permission_name),
+          Sequel[:super_auth_permissions][:created_at].cast(:text).as(:permission_created_at),
+          Sequel[:super_auth_permissions][:updated_at].cast(:text).as(:permission_updated_at),
+
+          Sequel[:super_auth_resources][:id].as(:resource_id),
+          Sequel[:super_auth_resources][:name].as(:resource_name),
+          Sequel[:super_auth_resources][:external_id].as(:resource_external_id)
+        ).
+      join(Sequel[:super_auth_edges].as(:permission_edges), Sequel[:permission_edges][:user_id] => Sequel[:super_auth_users][:id]).
+      join(Sequel[:super_auth_permissions], id: Sequel[:permission_edges][:permission_id]).
+      join(Sequel[:super_auth_edges].as(:resource_edges), Sequel[:resource_edges][:permission_id] => Sequel[:super_auth_permissions][:id]).
+      join(Sequel[:super_auth_resources], id: Sequel[:resource_edges][:resource_id]).
+      distinct
+    end
+
+    def users_resources
+      SuperAuth::User.
+        join(Sequel[:super_auth_edges].as(:user_edges), user_id: :id).
         select(
-          Sequel[:users][:id].as(:user_id),
-          Sequel[:users][:name].as(:user_name),
-          Sequel[:users][:external_id].as(:user_external_id),
-          Sequel[:users][:created_at].cast(:text).as(:user_created_at),
-          Sequel[:users][:updated_at].cast(:text).as(:user_updated_at),
+          Sequel[:super_auth_users][:id].as(:user_id),
+          Sequel[:super_auth_users][:name].as(:user_name),
+          Sequel[:super_auth_users][:external_id].as(:user_external_id),
+          Sequel[:super_auth_users][:created_at].cast(:text).as(:user_created_at),
+          Sequel[:super_auth_users][:updated_at].cast(:text).as(:user_updated_at),
 
           Sequel.lit(%Q[0 as "group_id"]),      # Sequel[:groups][:group_id],
           Sequel::NULL.as(:group_name),       # Sequel[:groups][:group_name],
@@ -200,20 +257,17 @@ class SuperAuth::Edge < Sequel::Model(:edges)
           Sequel::NULL.as(:role_created_at),     # Sequel[:roles][:role_created_at],
           Sequel::NULL.as(:role_updated_at),     # Sequel[:roles][:role_updated_at],
 
-          Sequel[:permissions][:id].as(:permission_id),
-          Sequel[:permissions][:name].as(:permission_name),
-          Sequel[:permissions][:created_at].cast(:text).as(:permission_created_at),
-          Sequel[:permissions][:updated_at].cast(:text).as(:permission_updated_at),
+          Sequel.lit(%Q[0 as "permission_id"]),
+          Sequel::NULL.as(:permission_name),
+          Sequel.lit(%Q['1970-01-01 00:00:00.000000-00' as "permission_created_at"]),
+          Sequel.lit(%Q['1970-01-01 00:00:00.000000-00' as "permission_updated_at"]),
 
-          Sequel[:resources][:id].as(:resource_id),
-          Sequel[:resources][:name].as(:resource_name),
-          Sequel[:resources][:external_id].as(:resource_external_id)
+          Sequel[:super_auth_resources][:id].as(:resource_id),
+          Sequel[:super_auth_resources][:name].as(:resource_name),
+          Sequel[:super_auth_resources][:external_id].as(:resource_external_id)
         ).
-      join(Sequel[:edges].as(:permission_edges), Sequel[:permission_edges][:user_id] => Sequel[:users][:id]).
-      join(Sequel[:permissions], id: Sequel[:permission_edges][:permission_id]).
-      join(Sequel[:edges].as(:resource_edges), Sequel[:resource_edges][:permission_id] => Sequel[:permissions][:id]).
-      join(Sequel[:resources], id: Sequel[:resource_edges][:resource_id]).
+      join(Sequel[:super_auth_resources], Sequel[:user_edges][:resource_id] => Sequel[:super_auth_resources][:id]).
       distinct
     end
   end
-end
+end

data/lib/super_auth/group.rb

@@ -1,3 +1,3 @@
-class SuperAuth::Group < Sequel::Model(:groups)
+class SuperAuth::Group < Sequel::Model(:super_auth_groups)
   include SuperAuth::Nestable
 end

data/lib/super_auth/nestable.rb

@@ -110,7 +110,7 @@ module SuperAuth::Nestable
     end
 
     def pluralize(base = self)
-      "#{demodularize(base).downcase}s".to_sym
+      "super_auth_#{demodularize(base).downcase}s".to_sym
     end
 
     def singularize(base = self)
@@ -118,7 +118,7 @@ module SuperAuth::Nestable
     end
 
     def cte_name(base = self)
-      "#{pluralize(base)}_cte".to_sym
+      "super_auth_#{pluralize(base)}_cte".to_sym
     end
 
     def base_path(base = self)

data/lib/super_auth/permission.rb

@@ -1,23 +1,23 @@
-class SuperAuth::Permission < Sequel::Model(:permissions)
+class SuperAuth::Permission < Sequel::Model(:super_auth_permissions)
   one_to_many :edges
 
   dataset_module do
     def with_edges
-      join(:edges, permission_id: :id).select_all(:permissions)
+      join(:super_auth_edges, permission_id: :id).select_all(:super_auth_permissions)
     end
 
     def with_roles
-      with_edges.join(Role.from(Role.trees).as(:roles), id: :role_id).select(
-        Sequel[:permissions][:id].as(:id),
-        Sequel[:permissions][:id].as(:permission_id),
+    with_edges.join(SuperAuth::Role.from(SuperAuth::Role.trees).as(:roles), id: :role_id).select(
+        Sequel[:super_auth_permissions][:id].as(:id),
+        Sequel[:super_auth_permissions][:id].as(:permission_id),
         Sequel[:roles][:id].as(:role_id),
-        Sequel[:permissions][:name].as(:permission_name),
+        Sequel[:super_auth_permissions][:name].as(:permission_name),
         Sequel[:roles][:name].as(:role_name),
-        Sequel[:edges][:id].as(:edge_id),
-        Sequel[:edges][:permission_id].as(:edge_permission_id),
-        Sequel[:edges][:group_id].as(:edge_group_id),
-        Sequel[:edges][:user_id].as(:edge_user_id),
-        Sequel[:edges][:role_id].as(:edge_role_id),
+        Sequel[:super_auth_edges][:id].as(:edge_id),
+        Sequel[:super_auth_edges][:permission_id].as(:edge_permission_id),
+        Sequel[:super_auth_edges][:group_id].as(:edge_group_id),
+        Sequel[:super_auth_edges][:user_id].as(:edge_user_id),
+        Sequel[:super_auth_edges][:role_id].as(:edge_role_id),
         :role_path,
         :role_name_path,
         :parent_id

data/lib/super_auth/railtie.rb

@@ -0,0 +1,41 @@
+module SuperAuth
+  if defined? Rails::Railtie
+    class Railtie < Rails::Railtie
+      rake_tasks do
+        load "tasks/super_auth_tasks.rake"
+      end
+
+      initializer "super_auth.initialize" do
+        if defined?(Sequel) && Sequel.const_defined?("Model")
+          require 'super_auth/authorization'
+          require 'super_auth/edge'
+          require 'super_auth/nestable'
+          require 'super_auth/group'
+          require 'super_auth/permission'
+          require 'super_auth/resource'
+          require 'super_auth/role'
+          require 'super_auth/user'
+        elsif defined?(ActiveRecord)
+          require 'super_auth/active_record'
+          require 'super_auth/active_record/authorization'
+          require 'super_auth/active_record/edge'
+          require 'super_auth/active_record/group'
+          require 'super_auth/active_record/permission'
+          require 'super_auth/active_record/resource'
+          require 'super_auth/active_record/role'
+          require 'super_auth/active_record/user'
+          SuperAuth::Authorization = SuperAuth::ActiveRecord::Authorization
+          SuperAuth::Edge = SuperAuth::ActiveRecord::Edge
+          SuperAuth::Group = SuperAuth::ActiveRecord::Group
+          SuperAuth::Permission = SuperAuth::ActiveRecord::Permission
+          SuperAuth::Resource = SuperAuth::ActiveRecord::Resource
+          SuperAuth::User = SuperAuth::ActiveRecord::User
+          SuperAuth::Role = SuperAuth::ActiveRecord::Role
+        end
+      end
+    end
+  else
+    class Railtie
+    end
+  end
+end

data/lib/super_auth/resource.rb

@@ -1,2 +1,2 @@
-class SuperAuth::Resource < Sequel::Model(:resources)
+class SuperAuth::Resource < Sequel::Model(:super_auth_resources)
 end

data/lib/super_auth/role.rb

@@ -1,3 +1,3 @@
-class SuperAuth::Role < Sequel::Model(:roles)
+class SuperAuth::Role < Sequel::Model(:super_auth_roles)
   include SuperAuth::Nestable
 end

data/lib/super_auth/user.rb

@@ -1,23 +1,27 @@
-class SuperAuth::User < Sequel::Model(:users)
+class SuperAuth::User < Sequel::Model(:super_auth_users)
   one_to_many :edges
+  one_to_many :resources
+
+  def system? = self.class.system == self
+  def self.system = find_or_create(name: "system")
 
   dataset_module do
     def with_edges
-      join(:edges, user_id: :id).select_all(:users)
+      join(:super_auth_edges, user_id: :id).select_all(:super_auth_users)
     end
 
     def with_groups
-      with_edges.join(Group.from(Group.trees).as(:groups), id: :group_id).select(
-        Sequel[:users][:id].as(:id),
-        Sequel[:users][:id].as(:user_id),
+      with_edges.join(SuperAuth::Group.from(SuperAuth::Group.trees).as(:groups), id: :group_id).select(
+        Sequel[:super_auth_users][:id].as(:id),
+        Sequel[:super_auth_users][:id].as(:user_id),
         Sequel[:groups][:id].as(:group_id),
-        Sequel[:users][:name].as(:user_name),
+        Sequel[:super_auth_users][:name].as(:user_name),
         Sequel[:groups][:name].as(:group_name),
-        Sequel[:edges][:id].as(:edge_id),
-        Sequel[:edges][:permission_id].as(:edge_permission_id),
-        Sequel[:edges][:group_id].as(:edge_group_id),
-        Sequel[:edges][:user_id].as(:edge_user_id),
-        Sequel[:edges][:role_id].as(:edge_role_id),
+        Sequel[:super_auth_edges][:id].as(:edge_id),
+        Sequel[:super_auth_edges][:permission_id].as(:edge_permission_id),
+        Sequel[:super_auth_edges][:group_id].as(:edge_group_id),
+        Sequel[:super_auth_edges][:user_id].as(:edge_user_id),
+        Sequel[:super_auth_edges][:role_id].as(:edge_role_id),
         Sequel[:groups][:group_path],
         Sequel[:groups][:group_name_path],
         Sequel[:groups][:parent_id]
@@ -25,7 +29,7 @@ class SuperAuth::User < Sequel::Model(:users)
     end
 
     def with_roles
-      with_edges.join(Role.from(Role.trees).as(:roles), id: :role_id).select(
+      with_edges.join(SuperAuth::Role.from(SuperAuth::Role.trees).as(:roles), id: :role_id).select(
         Sequel[:users][:id].as(:id),
         Sequel[:users][:id].as(:user_id),
         Sequel[:roles][:id].as(:role_id),
@@ -41,9 +45,5 @@ class SuperAuth::User < Sequel::Model(:users)
         Sequel[:roles][:parent_id]
       )
     end
-
-    def with_roles_with_groups
-      with_groups_with_roles
-    end
   end
 end

data/lib/super_auth/version.rb

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 
 module SuperAuth
-  VERSION = "0.1.3"
+  VERSION = "0.1.5"
 end

data/lib/super_auth.rb

@@ -8,30 +8,76 @@ if defined? SuperAuth::AUTOLOADERS
     loader.ignore("#{__dir__}/basic_loader.rb")
     loader.setup
   end
+  require "sequel"
+else
+  require 'basic_loader'
 end
 
-require 'sequel'
+module SuperAuth
+  class Error < StandardError; end
 
-ENV["SUPER_AUTH_LOG_LEVEL"] = 'debug'
-logger = if ENV["SUPER_AUTH_LOG_LEVEL"] == "debug"
-  require 'logger'
-  Logger.new(STDOUT)
-end
+  def self.setup
+    yield self if block_given?
+  end
 
-require 'sequel'
-Sequel::Model.plugin :timestamps, update_on_create: true
-if !ENV['SUPER_AUTH_DATABASE_URL'].nil? && !ENV['SUPER_AUTH_DATABASE_URL'].empty?
-  Sequel::Model.db = Sequel.connect(ENV['SUPER_AUTH_DATABASE_URL'], logger: logger)
-else
-  puts "Warning: SUPER_AUTH_DATABASE_URL not set, using in memory database"
-  Sequel::Model.db = Sequel.sqlite(logger: logger)
-  Sequel.extension :migration
-  Sequel::Migrator.run(Sequel::Model.db, "db/migrate")
-end
-Sequel::Model.default_association_options = {:class_namespace=>'SuperAuth'}
+  def self.set_db
+    logger =
+      if defined?(Rails) && ENV["SUPER_AUTH_LOG_LEVEL"] == "debug"
+        Rails.logger
+      elsif ENV["SUPER_AUTH_LOG_LEVEL"] == "debug"
+        require "logger"
+        logger = Logger.new(STDOUT)
+      else
+        nil
+      end
 
-require 'basic_loader' unless defined?(SuperAuth::AUTOLOADERS)
+    if !ENV['SUPER_AUTH_DATABASE_URL'].nil? && !ENV['SUPER_AUTH_DATABASE_URL'].empty?
+      SuperAuth.db = Sequel.connect(ENV['SUPER_AUTH_DATABASE_URL'], logger: logger)
+    else
+      puts "ENV SUPER_AUTH_DATABASE_URL not set, using sqlite."
+      SuperAuth.db = Sequel.sqlite(logger: logger, database: "./tmp/test.db")
+      install_migrations
+    end
+    Sequel::Model.default_association_options = {:class_namespace=>'SuperAuth'}
+  end
 
-module SuperAuth
-  class Error < StandardError; end
+  def self.install_migrations
+    require "sequel"
+    Sequel.extension :migration
+    require "pathname"
+    path = Pathname.new(__FILE__).parent.parent.join("db", "migrate")
+    Sequel::Migrator.run(SuperAuth.db, path)
+  end
+
+  def self.uninstall_migrations
+    require "sequel"
+    set_db
+    Sequel.extension :migration
+    require "pathname"
+
+    path = Pathname.new(__FILE__).parent.parent.join("db", "migrate")
+    db = SuperAuth.db
+
+    Sequel::Migrator.run(db, path, target: 0)
+  rescue => e
+    raise Error, "Failed to uninstall migrations: #{e.message}"
+  end
+
+  def self.current_user=(user)
+    @current_user = user
+  end
+
+  def self.current_user
+    @current_user
+  end
+
+  def self.db=(db)
+    @db = db
+  end
+
+  def self.db
+    @db
+  end
 end
+
+require "super_auth/railtie" if defined?(Rails::Railtie)

data/lib/tasks/super_auth_tasks.rake

@@ -0,0 +1,14 @@
+namespace :super_auth do
+  desc "Run the super_auth database migrations"
+  task migrate: :environment do
+    raise "You must define SUPER_AUTH_DATABASE_URL in your environment for this to work" if ENV['SUPER_AUTH_DATABASE_URL'].nil? || ENV['SUPER_AUTH_DATABASE_URL'].empty?
+    SuperAuth.install_migrations
+    puts "Done"
+  end
+
+  task :rollback => :environment do
+    raise "You must define SUPER_AUTH_DATABASE_URL in your environment for this to work" if ENV['SUPER_AUTH_DATABASE_URL'].nil? || ENV['SUPER_AUTH_DATABASE_URL'].empty?
+    SuperAuth.uninstall_migrations
+    puts "Done"
+  end
+end