RubyGems - super_auth - Versions diffs - 0.1.5 → 0.3.0 - Mend

super_auth 0.1.5 → 0.3.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (52) hide show

checksums.yaml +4 -4
data/.ruby-version +1 -1
data/Gemfile +3 -7
data/Gemfile.lock +25 -14
data/LICENSE.txt +125 -21
data/README.md +32 -1
data/Rakefile +0 -2
data/USAGE.md +619 -0
data/VISUALIZATION.md +58 -0
data/app/controllers/super_auth/graph_controller.rb +661 -0
data/app/views/super_auth/graph/index.html.erb +1408 -0
data/config/routes.rb +73 -0
data/db/migrate/1_users.rb +1 -0
data/db/migrate/2_groups.rb +8 -1
data/db/migrate/4_roles.rb +8 -1
data/db/migrate/5_resources.rb +1 -0
data/db/migrate/7_authorization.rb +2 -0
data/db/migrate/8_add_indexes_to_edges.rb +17 -0
data/db/migrate/9_add_by_current_user_index.rb +12 -0
data/db/migrate_activerecord/20250101000001_create_super_auth_users.rb +10 -0
data/db/migrate_activerecord/20250101000002_create_super_auth_groups.rb +11 -0
data/db/migrate_activerecord/20250101000003_create_super_auth_permissions.rb +8 -0
data/db/migrate_activerecord/20250101000004_create_super_auth_roles.rb +11 -0
data/db/migrate_activerecord/20250101000005_create_super_auth_resources.rb +10 -0
data/db/migrate_activerecord/20250101000006_create_super_auth_edges.rb +12 -0
data/db/migrate_activerecord/20250101000007_create_super_auth_authorizations.rb +41 -0
data/db/migrate_activerecord/20250101000009_add_by_current_user_index_to_super_auth_authorizations.rb +7 -0
data/db/seeds/sample_data.rb +193 -0
data/lib/basic_loader.rb +0 -2
data/lib/generators/super_auth/install/install_generator.rb +19 -0
data/lib/generators/super_auth/install/templates/README +29 -0
data/lib/generators/super_auth/install/templates/super_auth.rb +7 -0
data/lib/super_auth/active_record/by_current_user.rb +26 -11
data/lib/super_auth/active_record/edge.rb +45 -0
data/lib/super_auth/active_record/group.rb +7 -0
data/lib/super_auth/active_record/permission.rb +4 -0
data/lib/super_auth/active_record/resource.rb +1 -0
data/lib/super_auth/active_record/role.rb +7 -0
data/lib/super_auth/active_record/user.rb +6 -0
data/lib/super_auth/active_record.rb +17 -0
data/lib/super_auth/edge.rb +190 -131
data/lib/super_auth/group.rb +1 -0
data/lib/super_auth/nestable.rb +17 -10
data/lib/super_auth/permission.rb +1 -1
data/lib/super_auth/railtie.rb +26 -25
data/lib/super_auth/role.rb +2 -1
data/lib/super_auth/user.rb +8 -8
data/lib/super_auth/version.rb +1 -3
data/lib/super_auth.rb +72 -40
data/super_auth.gemspec +35 -0
data/visualization.html +747 -0
metadata +24 -6

data/lib/super_auth/railtie.rb CHANGED Viewed

@@ -1,4 +1,17 @@
 module SuperAuth
+  if defined? Rails::Engine
+    class Engine < Rails::Engine
+      isolate_namespace SuperAuth
+      config.paths.add 'app/controllers', eager_load: true
+      # Use ActiveRecord migrations when in a Rails environment
+      if defined?(ActiveRecord)
+        config.paths['db/migrate'] = 'db/migrate_activerecord'
+      end
+    end
+  end
   if defined? Rails::Railtie
     class Railtie < Rails::Railtie
       rake_tasks do
@@ -6,31 +19,19 @@ module SuperAuth
       end
       initializer "super_auth.initialize" do
-        if defined?(Sequel) && Sequel.const_defined?("Model")
-          require 'super_auth/authorization'
-          require 'super_auth/edge'
-          require 'super_auth/nestable'
-          require 'super_auth/group'
-          require 'super_auth/permission'
-          require 'super_auth/resource'
-          require 'super_auth/role'
-          require 'super_auth/user'
-        elsif defined?(ActiveRecord)
-          require 'super_auth/active_record'
-          require 'super_auth/active_record/authorization'
-          require 'super_auth/active_record/edge'
-          require 'super_auth/active_record/group'
-          require 'super_auth/active_record/permission'
-          require 'super_auth/active_record/resource'
-          require 'super_auth/active_record/role'
-          require 'super_auth/active_record/user'
-          SuperAuth::Authorization = SuperAuth::ActiveRecord::Authorization
-          SuperAuth::Edge = SuperAuth::ActiveRecord::Edge
-          SuperAuth::Group = SuperAuth::ActiveRecord::Group
-          SuperAuth::Permission = SuperAuth::ActiveRecord::Permission
-          SuperAuth::Resource = SuperAuth::ActiveRecord::Resource
-          SuperAuth::User = SuperAuth::ActiveRecord::User
-          SuperAuth::Role = SuperAuth::ActiveRecord::Role
+        if defined?(ActiveRecord) && defined?(ActiveRecord::Base)
+          SuperAuth.db
+          begin
+            SuperAuth.load
+          rescue Sequel::DatabaseError => e
+            # Tables don't exist yet (e.g., before migrations are run)
+            # This is OK - models will be loaded when needed
+            Rails.logger.debug "SuperAuth Sequel models not loaded: #{e.message}" if defined?(Rails.logger)
+          end
+          require "super_auth/active_record"
+        elsif defined?(Sequel) && Sequel.const_defined?("Model")
+          SuperAuth.db
+          SuperAuth.load
         end
       end
     end

data/lib/super_auth/role.rb CHANGED Viewed

@@ -1,3 +1,4 @@
 class SuperAuth::Role < Sequel::Model(:super_auth_roles)
+  unrestrict_primary_key # For ActiveRecord
   include SuperAuth::Nestable
-end
+end

data/lib/super_auth/user.rb CHANGED Viewed

@@ -30,16 +30,16 @@ class SuperAuth::User < Sequel::Model(:super_auth_users)
     def with_roles
       with_edges.join(SuperAuth::Role.from(SuperAuth::Role.trees).as(:roles), id: :role_id).select(
-        Sequel[:users][:id].as(:id),
-        Sequel[:users][:id].as(:user_id),
+        Sequel[:super_auth_users][:id].as(:id),
+        Sequel[:super_auth_users][:id].as(:user_id),
         Sequel[:roles][:id].as(:role_id),
-        Sequel[:users][:name].as(:user_name),
+        Sequel[:super_auth_users][:name].as(:user_name),
         Sequel[:roles][:name].as(:role_name),
-        Sequel[:edges][:id].as(:edge_id),
-        Sequel[:edges][:permission_id].as(:edge_permission_id),
-        Sequel[:edges][:group_id].as(:edge_group_id),
-        Sequel[:edges][:user_id].as(:edge_user_id),
-        Sequel[:edges][:role_id].as(:edge_role_id),
+        Sequel[:super_auth_edges][:id].as(:edge_id),
+        Sequel[:super_auth_edges][:permission_id].as(:edge_permission_id),
+        Sequel[:super_auth_edges][:group_id].as(:edge_group_id),
+        Sequel[:super_auth_edges][:user_id].as(:edge_user_id),
+        Sequel[:super_auth_edges][:role_id].as(:edge_role_id),
         Sequel[:roles][:role_path],
         Sequel[:roles][:role_name_path],
         Sequel[:roles][:parent_id]

data/lib/super_auth/version.rb CHANGED Viewed

@@ -1,5 +1,3 @@
-# frozen_string_literal: true
 module SuperAuth
-  VERSION = "0.1.5"
+  VERSION = "0.3.0"
 end

data/lib/super_auth.rb CHANGED Viewed

@@ -1,17 +1,5 @@
-# frozen_string_literal: true
 require_relative "super_auth/version"
-if defined? SuperAuth::AUTOLOADERS
-  require 'zeitwerk'
-  SuperAuth::AUTOLOADERS << Zeitwerk::Loader.for_gem.tap do |loader|
-    loader.ignore("#{__dir__}/basic_loader.rb")
-    loader.setup
-  end
-  require "sequel"
-else
-  require 'basic_loader'
-end
+require "sequel"
 module SuperAuth
   class Error < StandardError; end
@@ -20,29 +8,20 @@ module SuperAuth
     yield self if block_given?
   end
-  def self.set_db
-    logger =
-      if defined?(Rails) && ENV["SUPER_AUTH_LOG_LEVEL"] == "debug"
-        Rails.logger
-      elsif ENV["SUPER_AUTH_LOG_LEVEL"] == "debug"
-        require "logger"
-        logger = Logger.new(STDOUT)
-      else
-        nil
-      end
-    if !ENV['SUPER_AUTH_DATABASE_URL'].nil? && !ENV['SUPER_AUTH_DATABASE_URL'].empty?
-      SuperAuth.db = Sequel.connect(ENV['SUPER_AUTH_DATABASE_URL'], logger: logger)
-    else
-      puts "ENV SUPER_AUTH_DATABASE_URL not set, using sqlite."
-      SuperAuth.db = Sequel.sqlite(logger: logger, database: "./tmp/test.db")
-      install_migrations
-    end
-    Sequel::Model.default_association_options = {:class_namespace=>'SuperAuth'}
+  def self.load
+    require "super_auth/authorization"
+    require "super_auth/edge"
+    require "super_auth/nestable"
+    require "super_auth/group"
+    require "super_auth/permission"
+    require "super_auth/railtie"
+    require "super_auth/resource"
+    require "super_auth/role"
+    require "super_auth/user"
+    require "super_auth/active_record" if defined?(ActiveRecord::Base)
   end
   def self.install_migrations
-    require "sequel"
     Sequel.extension :migration
     require "pathname"
     path = Pathname.new(__FILE__).parent.parent.join("db", "migrate")
@@ -51,7 +30,6 @@ module SuperAuth
   def self.uninstall_migrations
     require "sequel"
-    set_db
     Sequel.extension :migration
     require "pathname"
@@ -64,19 +42,73 @@ module SuperAuth
   end
   def self.current_user=(user)
-    @current_user = user
+    Thread.current[:super_auth_current_user] = user
   end
   def self.current_user
-    @current_user
+    Thread.current[:super_auth_current_user]
   end
-  def self.db=(db)
-    @db = db
+  def self.db
+    return @db if !@db.nil?
+    if !Gem::Specification.find_all_by_name("activerecord").empty?
+      require "active_record"
+      extensions = Gem::Specification.find_all_by_name("sequel-activerecord_connection").any? ? { extensions: :activerecord_connection } : {}
+      if extensions.empty?
+        warn "[SuperAuth] WARNING: Found ActiveRecord but could not find the gem 'sequel-activerecord_connection' installed. SuperAuth may not always work as expected."
+      end
+      begin
+        ::ActiveRecord::Base.establish_connection
+      rescue ActiveRecord::AdapterNotSpecified
+        if defined?(Rails) && !Rails.env.local?
+          raise Error, "SuperAuth could not find a database configuration. " \
+            "Please configure ActiveRecord or set SUPER_AUTH_DATABASE_URL."
+        end
+        warn "[SuperAuth] WARNING: No database configured. Falling back to in-memory SQLite. " \
+          "All authorization data will be lost on restart."
+        ::ActiveRecord::Base.establish_connection(adapter: "sqlite3", database: ":memory:")
+      end
+      case ::ActiveRecord::Base.adapter_class.to_s
+      when "ActiveRecord::ConnectionAdapters::SQLite3Adapter"
+        SuperAuth.db = Sequel.sqlite(**extensions)
+      when "ActiveRecord::ConnectionAdapters::PostgreSQLAdapter"
+        SuperAuth.db = Sequel.postgres(**extensions)
+      when "ActiveRecord::ConnectionAdapters::Mysql2Adapter"
+        SuperAuth.db = Sequel.mysql2(**extensions)
+      else
+        warn "[SuperAuth] WARNING: Unknown adapter: #{::ActiveRecord::Base.adapter_class}"
+      end
+    else
+      logger =
+      if defined?(Rails) && ENV["SUPER_AUTH_LOG_LEVEL"] == "debug"
+        { logger: Rails.logger }
+      elsif ENV["SUPER_AUTH_LOG_LEVEL"] == "debug"
+        require "logger"
+        { logger: Logger.new(STDOUT) }
+      else
+        {} # no logger
+      end
+      if !ENV['SUPER_AUTH_DATABASE_URL'].nil? && !ENV['SUPER_AUTH_DATABASE_URL'].empty?
+        SuperAuth.db = Sequel.connect(ENV['SUPER_AUTH_DATABASE_URL'], **logger)
+      else
+        if defined?(Rails) && !Rails.env.local?
+          raise Error, "SuperAuth could not find a database configuration. " \
+            "Please set SUPER_AUTH_DATABASE_URL or configure ActiveRecord."
+        end
+        warn "[SuperAuth] WARNING: SUPER_AUTH_DATABASE_URL not set. Falling back to in-memory SQLite. " \
+          "All authorization data will be lost on restart."
+        SuperAuth.db = Sequel.sqlite(**logger)
+      end
+    end
   end
-  def self.db
-    @db
+  def self.db=(db)
+    @db = db
   end
 end

data/super_auth.gemspec ADDED Viewed

@@ -0,0 +1,35 @@
+require_relative "lib/super_auth/version"
+Gem::Specification.new do |spec|
+  spec.name = "super_auth"
+  spec.version = SuperAuth::VERSION
+  spec.authors = ["Jonathan Frias"]
+  spec.email = ["jonathan@gofrias.com"]
+  spec.summary = "Make Unauthenticated State Unrepresentable"
+  spec.description = "Simple, yet super powerful authorization for you application"
+  spec.homepage = "https://github.com/JonathanFrias/super_auth"
+  spec.license = "MIT"
+  spec.required_ruby_version = ">= 2.6.0"
+  spec.metadata["homepage_uri"] = spec.homepage
+  spec.metadata["source_code_uri"] = "https://github.com/JonathanFrias/super_auth"
+  spec.metadata["changelog_uri"] = "https://github.com/JonathanFrias/super_auth/blob/main/CHANGELOG.md"
+  # Specify which files should be added to the gem when it is released.
+  # The `git ls-files -z` loads the files in the RubyGem that have been added into git.
+  spec.files = Dir.chdir(__dir__) do
+    `git ls-files -z`.split("\x0").reject do |f|
+      (f == __FILE__) || f.match(%r{\A(?:(?:bin|test|spec|features)/|\.(?:git|circleci)|appveyor)})
+    end
+  end
+  spec.bindir = "bin"
+  spec.executables = spec.files.grep(%r{\Abin/}) { |f| File.basename(f) }
+  spec.require_paths = ["lib"]
+  # Uncomment to register a new dependency of your gem
+  spec.add_dependency "sequel"
+  spec.add_development_dependency "sqlite3"
+  # For more information and examples about making a new gem, check out our
+  # guide at: https://bundler.io/guides/creating_gem.html
+end