RubyGems - super_auth - Versions diffs - 0.3.0 → 0.3.2 - Mend

super_auth 0.3.0 → 0.3.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (12) hide show

checksums.yaml +4 -4
data/CHANGELOG.md +19 -0
data/Gemfile.lock +45 -37
data/README.md +15 -0
data/app/controllers/super_auth/graph_controller.rb +1 -8
data/lib/generators/super_auth/install/templates/super_auth.rb +3 -1
data/lib/super_auth/active_record/authorization.rb +17 -0
data/lib/super_auth/active_record/by_current_user.rb +4 -1
data/lib/super_auth/version.rb +1 -1
data/lib/super_auth.rb +14 -0
metadata +1 -2
data/super_auth.gemspec +0 -35

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: c87faea517d56f8cb6a8cc8753e6cac508d2065dfd06e4042d56a9da102d8763
-  data.tar.gz: 02dcddf01c47ca4a3e371e4a90d0b091f750faf22674a950c57cb1836573d540
+  metadata.gz: f8b9f0044162ed48bfd00d97ec8c865d426a1b23eba3843c812ddb06d9d074e6
+  data.tar.gz: 5359617185bba8cb18f7defa857f388deed32fb458fbdbc02e324a435f91daac
 SHA512:
-  metadata.gz: cf5e6a02d96541c2ea2ddb838f757c8442594c03c8e90382dae230be0586bef8772e7805ac875afc8ef897e7f0ec9bc2bb6ee66ca8e6164da8ebb00cff3869cf
-  data.tar.gz: 037ab89f3f6fae85981c5b4789481a439f74d34209f1c402c8732564435bfca6acd56944595c59278594bfa01e75ef1ecc902f2f82a5272032dac12dd36d2c27
+  metadata.gz: 8835d68b13a025b2fcf6a56746716d08b595f1d26b649823110938c9e55496f21f9394b27cb88dfbacce01cdb564844c7423d400881d3ea3b5995b58fa69cfc6
+  data.tar.gz: fb79208c943335fb1a6b9fc6de388f413384ab383068f29e118e1e3b4ee386fca9d5285b121356af140686643b30e7a96f348c5caa7c320314fb874f36856961

data/CHANGELOG.md CHANGED Viewed

@@ -1,5 +1,24 @@
 ## [Unreleased]
+## [0.3.2] - 2026-03-10
+- Feature: Add `SuperAuth.missing_user_behavior` configuration option
+  - `:none` (default) — returns empty result set when `current_user` is blank (existing behavior)
+  - `:raise` — raises `SuperAuth::Error` when `current_user` is blank (fail-fast for apps that always require authentication)
+## [0.3.1] - 2026-03-10
+- Refactor: move authorization compilation logic into Authorization model (`compile!` and `from_graph` class methods)
+## [0.3.0]
+- Fix: ByCurrentUser mixin — correct subquery column, add admin wildcard, remove dead code
+- Remove unused tests
+## [0.2.0]
+- Version bump with various improvements
 ## [0.1.0] - 2023-12-09
 - Initial release

data/Gemfile.lock CHANGED Viewed

@@ -1,80 +1,88 @@
 PATH
   remote: .
   specs:
-    super_auth (0.2.0)
+    super_auth (0.3.2)
       sequel
 GEM
   remote: https://rubygems.org/
   specs:
-    activemodel (7.2.2.1)
-      activesupport (= 7.2.2.1)
-    activerecord (7.2.2.1)
-      activemodel (= 7.2.2.1)
-      activesupport (= 7.2.2.1)
+    activemodel (8.1.2)
+      activesupport (= 8.1.2)
+    activerecord (8.1.2)
+      activemodel (= 8.1.2)
+      activesupport (= 8.1.2)
       timeout (>= 0.4.0)
-    activesupport (7.2.2.1)
+    activesupport (8.1.2)
       base64
-      benchmark (>= 0.3)
       bigdecimal
       concurrent-ruby (~> 1.0, >= 1.3.1)
       connection_pool (>= 2.2.5)
       drb
       i18n (>= 1.6, < 2)
+      json
       logger (>= 1.4.2)
       minitest (>= 5.1)
       securerandom (>= 0.3)
       tzinfo (~> 2.0, >= 2.0.5)
+      uri (>= 0.13.1)
     after_commit_everywhere (1.6.0)
       activerecord (>= 4.2)
       activesupport
     base64 (0.3.0)
-    benchmark (0.4.1)
-    bigdecimal (3.2.2)
+    bigdecimal (4.0.1)
     coderay (1.1.3)
-    concurrent-ruby (1.3.5)
-    connection_pool (2.5.3)
-    diff-lcs (1.5.0)
+    concurrent-ruby (1.3.6)
+    connection_pool (3.0.2)
+    diff-lcs (1.6.2)
     drb (2.2.3)
-    i18n (1.14.7)
+    i18n (1.14.8)
       concurrent-ruby (~> 1.0)
+    io-console (0.8.2)
+    json (2.19.1)
     logger (1.7.0)
-    method_source (1.0.0)
-    minitest (6.0.1)
+    method_source (1.1.0)
+    minitest (6.0.2)
+      drb (~> 2.0)
       prism (~> 1.5)
     mysql2 (0.5.7)
       bigdecimal
-    pg (1.5.4)
+    pg (1.6.3-arm64-darwin)
+    pg (1.6.3-x86_64-linux)
     prism (1.9.0)
-    pry (0.14.2)
+    pry (0.16.0)
       coderay (~> 1.1)
       method_source (~> 1.0)
-    rake (13.1.0)
-    rspec (3.12.0)
-      rspec-core (~> 3.12.0)
-      rspec-expectations (~> 3.12.0)
-      rspec-mocks (~> 3.12.0)
-    rspec-core (3.12.2)
-      rspec-support (~> 3.12.0)
-    rspec-expectations (3.12.3)
+      reline (>= 0.6.0)
+    rake (13.3.1)
+    reline (0.6.3)
+      io-console (~> 0.5)
+    rspec (3.13.2)
+      rspec-core (~> 3.13.0)
+      rspec-expectations (~> 3.13.0)
+      rspec-mocks (~> 3.13.0)
+    rspec-core (3.13.6)
+      rspec-support (~> 3.13.0)
+    rspec-expectations (3.13.5)
       diff-lcs (>= 1.2.0, < 2.0)
-      rspec-support (~> 3.12.0)
-    rspec-mocks (3.12.6)
+      rspec-support (~> 3.13.0)
+    rspec-mocks (3.13.8)
       diff-lcs (>= 1.2.0, < 2.0)
-      rspec-support (~> 3.12.0)
-    rspec-support (3.12.1)
+      rspec-support (~> 3.13.0)
+    rspec-support (3.13.7)
     securerandom (0.4.1)
-    sequel (5.94.0)
+    sequel (5.102.0)
       bigdecimal
-    sequel-activerecord_connection (2.0.0)
-      activerecord (>= 5.0, < 8.1)
+    sequel-activerecord_connection (2.0.1)
+      activerecord (>= 5.1)
       sequel (~> 5.38)
-    sqlite3 (2.9.0-arm64-darwin)
-    sqlite3 (2.9.0-x86_64-linux-gnu)
-    timeout (0.4.3)
+    sqlite3 (2.9.1-arm64-darwin)
+    sqlite3 (2.9.1-x86_64-linux-gnu)
+    timeout (0.6.1)
     tzinfo (2.0.6)
       concurrent-ruby (~> 1.0)
-    zeitwerk (2.6.12)
+    uri (1.1.1)
+    zeitwerk (2.7.5)
 PLATFORMS
   arm64-darwin-22

data/README.md CHANGED Viewed

@@ -47,6 +47,21 @@ Then visit: `http://localhost:3000/super_auth/visualization`
 See [VISUALIZATION.md](VISUALIZATION.md) for complete documentation.
+## Configuration
+```ruby
+# config/initializers/super_auth.rb
+SuperAuth.setup do |config|
+  # Raise an error when a query runs without a current user set.
+  # Default is :none (returns empty results silently).
+  config.missing_user_behavior = :raise
+end
+```
+| Option | Values | Default | Description |
+|--------|--------|---------|-------------|
+| `missing_user_behavior` | `:none`, `:raise` | `:none` | Controls what happens when `SuperAuth.current_user` is blank. `:none` returns an empty result set. `:raise` raises `SuperAuth::Error`. |
 ## Usage
 SuperAuth is a rules engine engine that works on 5 different authorization concepts:

data/app/controllers/super_auth/graph_controller.rb CHANGED Viewed

@@ -182,15 +182,8 @@ module SuperAuth
     end
     def compile_authorizations
-      # Compile all authorization paths and populate the authorizations table
       begin
-        authorization_class.delete_all
-        # Call the authorizations method which compiles all paths
-        authorizations = edge_class.authorizations
-        authorizations.each(&:save!)
-        count = authorizations.count
+        count = authorization_class.compile!
         render json: {
           success: true,

data/lib/generators/super_auth/install/templates/super_auth.rb CHANGED Viewed

@@ -3,5 +3,7 @@
 # models on boot. Use this file for any additional configuration.
 #
 # SuperAuth.setup do |config|
-#   # configuration options here
+#   # Raise an error when a query runs without a current user set.
+#   # Default is :none (returns empty results silently).
+#   # config.missing_user_behavior = :raise
 # end

data/lib/super_auth/active_record/authorization.rb CHANGED Viewed

@@ -1,3 +1,20 @@
 class SuperAuth::ActiveRecord::Authorization < ActiveRecord::Base
   self.table_name = 'super_auth_authorizations'
+  class << self
+    # Returns all computed authorization paths as Authorization AR objects.
+    # These can be saved directly to the super_auth_authorizations table.
+    def from_graph
+      from("(#{SuperAuth::Edge.authorizations.sql}) as super_auth_authorizations".squish)
+    end
+    # Clears and repopulates the authorizations table from the current graph.
+    def compile!
+      transaction do
+        delete_all
+        from_graph.each { |auth| create!(auth.attributes.except("id")) }
+      end
+      count
+    end
+  end
 end

data/lib/super_auth/active_record/by_current_user.rb CHANGED Viewed

@@ -1,7 +1,10 @@
 module SuperAuth::ActiveRecord::ByCurrentUser
   def self.included(base)
     base.send(:default_scope, **{all_queries: true}) do
-      next none if SuperAuth.current_user.blank?
+      if SuperAuth.current_user.blank?
+        raise SuperAuth::Error, "SuperAuth.current_user not set" if SuperAuth.missing_user_behavior == :raise
+        next none
+      end
       if SuperAuth.current_user.respond_to?(:system?) && SuperAuth.current_user.system?
         self

data/lib/super_auth/version.rb CHANGED Viewed

@@ -1,3 +1,3 @@
 module SuperAuth
-  VERSION = "0.3.0"
+  VERSION = "0.3.2"
 end

data/lib/super_auth.rb CHANGED Viewed

@@ -8,6 +8,20 @@ module SuperAuth
     yield self if block_given?
   end
+  # Controls behavior when SuperAuth.current_user is blank in ByCurrentUser scope.
+  # :none (default) — returns an empty result set silently
+  # :raise — raises SuperAuth::Error
+  def self.missing_user_behavior
+    @missing_user_behavior || :none
+  end
+  def self.missing_user_behavior=(behavior)
+    unless %i[none raise].include?(behavior)
+      raise ArgumentError, "missing_user_behavior must be :none or :raise, got #{behavior.inspect}"
+    end
+    @missing_user_behavior = behavior
+  end
   def self.load
     require "super_auth/authorization"
     require "super_auth/edge"

metadata CHANGED Viewed

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: super_auth
 version: !ruby/object:Gem::Version
-  version: 0.3.0
+  version: 0.3.2
 platform: ruby
 authors:
 - Jonathan Frias
@@ -100,7 +100,6 @@ files:
 - lib/super_auth/user.rb
 - lib/super_auth/version.rb
 - lib/tasks/super_auth_tasks.rake
-- super_auth.gemspec
 - visualization.html
 homepage: https://github.com/JonathanFrias/super_auth
 licenses:

data/super_auth.gemspec DELETED Viewed

@@ -1,35 +0,0 @@
-require_relative "lib/super_auth/version"
-Gem::Specification.new do |spec|
-  spec.name = "super_auth"
-  spec.version = SuperAuth::VERSION
-  spec.authors = ["Jonathan Frias"]
-  spec.email = ["jonathan@gofrias.com"]
-  spec.summary = "Make Unauthenticated State Unrepresentable"
-  spec.description = "Simple, yet super powerful authorization for you application"
-  spec.homepage = "https://github.com/JonathanFrias/super_auth"
-  spec.license = "MIT"
-  spec.required_ruby_version = ">= 2.6.0"
-  spec.metadata["homepage_uri"] = spec.homepage
-  spec.metadata["source_code_uri"] = "https://github.com/JonathanFrias/super_auth"
-  spec.metadata["changelog_uri"] = "https://github.com/JonathanFrias/super_auth/blob/main/CHANGELOG.md"
-  # Specify which files should be added to the gem when it is released.
-  # The `git ls-files -z` loads the files in the RubyGem that have been added into git.
-  spec.files = Dir.chdir(__dir__) do
-    `git ls-files -z`.split("\x0").reject do |f|
-      (f == __FILE__) || f.match(%r{\A(?:(?:bin|test|spec|features)/|\.(?:git|circleci)|appveyor)})
-    end
-  end
-  spec.bindir = "bin"
-  spec.executables = spec.files.grep(%r{\Abin/}) { |f| File.basename(f) }
-  spec.require_paths = ["lib"]
-  # Uncomment to register a new dependency of your gem
-  spec.add_dependency "sequel"
-  spec.add_development_dependency "sqlite3"
-  # For more information and examples about making a new gem, check out our
-  # guide at: https://bundler.io/guides/creating_gem.html
-end