tuersteher 1.0.1 → 1.0.2

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 6c9a87b5dd44b07d9d007776268488b17bc54eac69e7b2ca9c34ead5dd9e5ca7
-  data.tar.gz: e899723582f2090efd837a7a2d308d40c2cbc43a089ca0b8a6dcd4a6fe1e3de4
+  metadata.gz: 75d9524809994df44c397d4b61a7679245e9155e9170a52e4669ad424501b077
+  data.tar.gz: aebdc4bcf3723217544dd6d7a032cba0a763ded1b4bbf02652de6ef77a638a4b
 SHA512:
-  metadata.gz: eb765c3d95fcbd938c675e0396128aead6cfd81f5cfa037cec31e04a188ae8f7e6bbae7f9fa6113066e6e685e5679f37e3b7377e4ff5bad08f33a3f7a3e83a96
-  data.tar.gz: 71893a402e3327ecd40c9b2e2d9932da4df596c328ad0ce7d91fe469203e629c0b79b64fde50b3b0ba500befe5e378eaeb0d4f07bb1dccf806239745b58e44a5
+  metadata.gz: 250f03314650921efdfd4ea6b8b82c01a6d3dfc4321993c65d7d41eefb4ebf17566db8508a9ad5a41f9dfb7ca6e027e266ddd945456a21ac7681e3506fe3ca17
+  data.tar.gz: e72fcd1ba11b5df1cf25a933900e7dd0d29a4af24099205284c21790294160807aabe65cc0b41a467e8993855bf3f37796038295254c043a7c215f15667ad82a

data/.rspec

@@ -0,0 +1 @@
+--require spec_helper

data/.ruby-version

@@ -0,0 +1 @@
+2.5.7

data/lib/tuersteher.rb

@@ -194,13 +194,13 @@ module Tuersteher
     class << self
 
       # Pruefen Zugriff fuer eine Web-action
-      # @param login_contex  Login-Contex, für den der Zugriff geprüft werden soll (muss Methode has_role? haben)
+      # @param login_context  Login-Contex, für den der Zugriff geprüft werden soll (muss Methode has_role? haben)
       # @param path          Pfad der Webresource (String)
       # @param method        http-Methode (:get, :put, :delete, :post), default ist :get
       #
-      def path_access?(login_contex, path, method = :get)
+      def path_access?(login_context, path, method = :get)
         rule = AccessRulesStorage.instance.path_rules.detect do |r|
-          r.fired?(path, method, login_contex)
+          r.fired?(path, method, login_context)
         end
         if Tuersteher::TLogger.logger.debug?
           if rule.nil?
@@ -208,8 +208,8 @@ module Tuersteher
           else
             s = "fired with #{rule}"
           end
-          lc_id = login_contex && login_contex.respond_to?(:id) ? login_contex.id : login_contex.object_id
-          Tuersteher::TLogger.logger.debug("Tuersteher: path_access?(login_contex.id=#{lc_id}, path=#{path}, method=#{method})  =>  #{s}")
+          lc_id = login_context && login_context.respond_to?(:id) ? login_context.id : login_context.object_id
+          Tuersteher::TLogger.logger.debug("Tuersteher: path_access?(login_context.id=#{lc_id}, path=#{path}, method=#{method})  =>  #{s}")
         end
         !(rule.nil? || rule.deny?)
       end
@@ -217,38 +217,38 @@ module Tuersteher
 
       # Pruefen Zugriff auf ein Model-Object
       #
-      # @param login_contex Login-Contex, für den der Zugriff geprüft werden soll (muss Methode has_role? haben)
+      # @param login_context Login-Contex, für den der Zugriff geprüft werden soll (muss Methode has_role? haben)
       # @param model        das Model-Object
       # @param permission   das geforderte Zugriffsrecht (:create, :update, :destroy, :get)
       #
       # liefert true/false
-      def model_access? login_contex, model, permission
+      def model_access? login_context, model, permission
         raise "Wrong call! Use: model_access(model-instance-or-class, permission)" unless permission.is_a? Symbol
         return false unless model
 
         rule = AccessRulesStorage.instance.model_rules.detect do |rule|
-          rule.fired? model, permission, login_contex
+          rule.fired? model, permission, login_context
         end
         access = rule && !rule.deny?
         if Tuersteher::TLogger.logger.debug?
-          lc_id = login_contex && login_contex.respond_to?(:id) ? login_contex.id : login_contex.object_id
+          lc_id = login_context && login_context.respond_to?(:id) ? login_context.id : login_context.object_id
           if model.instance_of?(Class)
             Tuersteher::TLogger.logger.debug(
-              "Tuersteher: model_access?(login_contex.id=#{lc_id}, model=#{model}, permission=#{permission}) =>  #{access || 'denied'} #{rule}")
+              "Tuersteher: model_access?(login_context.id=#{lc_id}, model=#{model}, permission=#{permission}) =>  #{access || 'denied'} #{rule}")
           else
             Tuersteher::TLogger.logger.debug(
-              "Tuersteher: model_access?(login_contex.id=#{lc_id}, model=#{model.class}(#{model.respond_to?(:id) ? model.id : model.object_id }), permission=#{permission}) =>  #{access || 'denied'} #{rule}")
+              "Tuersteher: model_access?(login_context.id=#{lc_id}, model=#{model.class}(#{model.respond_to?(:id) ? model.id : model.object_id }), permission=#{permission}) =>  #{access || 'denied'} #{rule}")
           end
         end
         access
       end
 
       # Bereinigen (entfernen) aller Objecte aus der angebenen Collection,
-      # wo der angegebene login_contex nicht das angegebene Recht hat
+      # wo der angegebene login_context nicht das angegebene Recht hat
       #
       # liefert ein neues Array mit den Objecten, wo der spez. Zugriff arlaubt ist
-      def purge_collection login_contex, collection, permission
-        collection.select{|model| model_access?(login_contex, model, permission)}
+      def purge_collection login_context, collection, permission
+        collection.select{|model| model_access?(login_context, model, permission)}
       end
     end # of Class-Methods
   end # of AccessRules
@@ -258,7 +258,7 @@ module Tuersteher
   # Module zum Include in Controllers
   # Dieser muss die folgenden Methoden bereitstellen:
   #
-  #   login_contex : akt. Login-Contex
+  #   login_context : akt. Login-Contex
   #   access_denied :  Methode aus dem authenticated_system, welche ein redirect zum login auslöst
   #
   # Der Loginlogin_contex muss fuer die hier benoetigte Funktionalitaet
@@ -278,7 +278,7 @@ module Tuersteher
     # method      http-Methode (:get, :put, :delete, :post), default ist :get
     #
     def path_access?(path, method = :get)
-      AccessRules.path_access? login_contex, path, method
+      AccessRules.path_access? login_context, path, method
     end
 
     # Pruefen Zugriff auf ein Model-Object
@@ -288,15 +288,15 @@ module Tuersteher
     #
     # liefert true/false
     def model_access? model, permission
-      AccessRules.model_access? login_contex, model, permission
+      AccessRules.model_access? login_context, model, permission
     end
 
     # Bereinigen (entfernen) aller Objecte aus der angebenen Collection,
-    # wo der akt. login_contex nicht das angegebene Recht hat
+    # wo der akt. login_context nicht das angegebene Recht hat
     #
     # liefert ein neues Array mit den Objecten, wo der spez. Zugriff arlaubt ist
     def purge_collection collection, permission
-      AccessRules.purge_collection(login_contex, collection, permission)
+      AccessRules.purge_collection(login_context, collection, permission)
     end
 
 
@@ -309,7 +309,7 @@ module Tuersteher
 
     protected
 
-    # Pruefen, ob Zugriff des login_contex
+    # Pruefen, ob Zugriff des login_context
     # fuer aktullen Request erlaubt ist
     def check_access
 
@@ -323,15 +323,15 @@ module Tuersteher
         ar_storage.read_rules
       end
 
-      # bind login_contex on the current thread
-      Thread.current[:login_contex] = login_contex
+      # bind login_context on the current thread
+      Thread.current[:login_context] = login_context
 
       req_method = request.method
       req_method = req_method.downcase.to_sym if req_method.is_a?(String)
       url_path = request.fullpath
       unless path_access?(url_path, req_method)
-        lc_id = login_contex && login_contex.respond_to?(:id) ? login_contex.id : login_contex.object_id
-        msg = "Tuersteher#check_access: access denied for #{url_path} :#{req_method} login_contex.id=#{lc_id}"
+        lc_id = login_context && login_context.respond_to?(:id) ? login_context.id : login_context.object_id
+        msg = "Tuersteher#check_access: access denied for #{url_path} :#{req_method} login_context.id=#{lc_id}"
         Tuersteher::TLogger.logger.warn msg
         logger.warn msg  # log message also for Rails-Default logger
         access_denied  # Methode aus dem authenticated_system, welche z.B. ein redirect zum login auslöst
@@ -344,7 +344,7 @@ module Tuersteher
 
   # Module for include in Model-Object-Classes
   #
-  # The module get the login_contex from Thread.current[:login_contex]
+  # The module get the login_context from Thread.current[:login_context]
   #
   # Sample for ActiveRecord-Class
   #   class Sample < ActiveRecord::Base
@@ -364,9 +364,9 @@ module Tuersteher
     #
     # raise a SecurityError-Exception if access denied
     def check_access permission
-      login_contex = Thread.current[:login_contex]
-      unless AccessRules.model_access? login_contex, self, permission
-        raise SecurityError, "Access denied! Current login_contex have no permission '#{permission}' on Model-Object #{self}."
+      login_context = Thread.current[:login_context]
+      unless AccessRules.model_access? login_context, self, permission
+        raise SecurityError, "Access denied! Current login_context have no permission '#{permission}' on Model-Object #{self}."
       end
     end
 
@@ -377,12 +377,12 @@ module Tuersteher
     module ClassMethods
 
       # Bereinigen (entfernen) aller Objecte aus der angebenen Collection,
-      # wo der akt. login_contex nicht das angegebene Recht hat
+      # wo der akt. login_context nicht das angegebene Recht hat
       #
       # liefert ein neues Array mit den Objecten, wo der spez. Zugriff arlaubt ist
       def purge_collection collection, permission
-        login_contex = Thread.current[:login_contex]
-        AccessRules.purge_collection(login_contex, collection, permission)
+        login_context = Thread.current[:login_context]
+        AccessRules.purge_collection(login_context, collection, permission)
       end
     end # of ClassMethods
 
@@ -640,7 +640,7 @@ module Tuersteher
 
     # check, if this rule fired for specified parameter
     def fired? path_or_model, method, login_ctx
-      login_ctx = nil if login_ctx==:false # manche Authenticate-System setzen den login_ctx/login_contex auf :false
+      login_ctx = nil if login_ctx==:false # manche Authenticate-System setzen den login_ctx/login_context auf :false
       @rule_spezifications.all?{|spec| spec.grant?(path_or_model, method, login_ctx)}
     end
 

data/spec/access_rules_spec.rb

@@ -12,74 +12,72 @@ module Tuersteher
           PathAccessRule.new('/images').method(:get),
           PathAccessRule.new('/status').method(:get).role(:system)
         ]
-        AccessRulesStorage.instance.stub(:path_rules).and_return(rules)
-        @user = double('user')
+        expect(AccessRulesStorage.instance).to receive(:path_rules).at_least(:once){ rules }
+        @login_context = double('login_context')
       end
 
 
-      context "User with role :user" do
-        before do
-          @user.stub(:has_role?){|role| role==:user}
-        end
+      context "LoginContext with role :user" do
 
         it "should be true for this paths" do
-          AccessRules.path_access?(@user, '/', :get).should be_truthy
-          AccessRules.path_access?(@user, '/', :post).should be_truthy
-          AccessRules.path_access?(@user, '/images', :get).should be_truthy
+          expect(AccessRules.path_access?(@login_context, '/', :get)).to be_truthy
+          expect(AccessRules.path_access?(@login_context, '/', :post)).to be_truthy
+          expect(AccessRules.path_access?(@login_context, '/images', :get)).to be_truthy
         end
 
         it "should not be true for this paths" do
-          AccessRules.path_access?(@user, '/admin', :get).should_not be_truthy
-          AccessRules.path_access?(@user, '/images', :post).should_not be_truthy
-          AccessRules.path_access?(@user, '/status', :get).should_not be_truthy
+          expect(@login_context).to receive(:has_role?){|role| role==:user}.at_least(:once)
+          expect(AccessRules.path_access?(@login_context, '/admin', :get)).to_not be_truthy
+          expect(AccessRules.path_access?(@login_context, '/images', :post)).to_not be_truthy
+          expect(AccessRules.path_access?(@login_context, '/status', :get)).to_not be_truthy
         end
       end
 
 
-      context "User with role :admin" do
+      context "LoginContext with role :admin" do
         before do
-          @user.stub(:has_role?){|role| role==:admin}
+          expect(@login_context).to receive(:has_role?){|role| role==:admin}.at_least(:once)
         end
 
         it "should be true for this paths" do
-          AccessRules.path_access?(@user, '/', :get).should be_truthy
-          AccessRules.path_access?(@user, '/admin', :post).should be_truthy
-          AccessRules.path_access?(@user, '/images', :get).should be_truthy
+          expect(AccessRules.path_access?(@login_context, '/', :get)).to be_truthy
+          expect(AccessRules.path_access?(@login_context, '/admin', :post)).to be_truthy
+          expect(AccessRules.path_access?(@login_context, '/images', :get)).to be_truthy
         end
 
         it "should not be true for this paths" do
-          AccessRules.path_access?(@user, '/xyz', :get).should_not be_truthy
-          AccessRules.path_access?(@user, '/images', :post).should_not be_truthy
-          AccessRules.path_access?(@user, '/status', :get).should_not be_truthy
+          expect(AccessRules.path_access?(@login_context, '/xyz', :get)).to_not be_truthy
+          expect(AccessRules.path_access?(@login_context, '/images', :post)).to_not be_truthy
+          expect(AccessRules.path_access?(@login_context, '/status', :get)).to_not be_truthy
         end
       end
 
 
-      context "User with role :system" do
+      context "LoginContext with role :system" do
         before do
-          @user.stub(:has_role?){|role| role==:system}
+          expect(@login_context).to receive(:has_role?){|role| role==:system}.at_least(:once)
         end
 
         it "should be true for this paths" do
-          AccessRules.path_access?(@user, '/', :get).should be_truthy
-          AccessRules.path_access?(@user, '/status', :get).should be_truthy
+          expect(AccessRules.path_access?(@login_context, '/', :get)).to be_truthy
+          expect(AccessRules.path_access?(@login_context, '/status', :get)).to be_truthy
         end
 
         it "should not be true for this paths" do
-          AccessRules.path_access?(@user, '/xyz', :get).should_not be_truthy
-          AccessRules.path_access?(@user, '/admin', :post).should_not be_truthy
+          expect(AccessRules.path_access?(@login_context, '/xyz', :get)).to_not be_truthy
+          expect(AccessRules.path_access?(@login_context, '/admin', :post)).to_not be_truthy
         end
       end
 
 
       context "without user" do
         it "should be true for this paths" do
-          AccessRules.path_access?(nil, '/', :get).should be_truthy
+          expect(AccessRules.path_access?(nil, '/', :get)).to be_truthy
         end
 
         it "should not be true for this paths" do
-          AccessRules.path_access?(nil, '/xyz', :get).should_not be_truthy
-          AccessRules.path_access?(nil, '/admin', :post).should_not be_truthy
+          expect(AccessRules.path_access?(nil, '/xyz', :get)).to_not be_truthy
+          expect(AccessRules.path_access?(nil, '/admin', :post)).to_not be_truthy
         end
       end
     end
@@ -88,7 +86,8 @@ module Tuersteher
     context 'model_access?' do
 
       class SampleModel1; end
-      class SampleModel2; end
+      class SampleModel2; def owner?(user); false; end; end
+
 
       before do
         rules = [
@@ -99,75 +98,75 @@ module Tuersteher
           ModelAccessRule.new(SampleModel2).deny.method(:create),
           ModelAccessRule.new(SampleModel2).grant.method(:all).role(:admin),
         ]
-        AccessRulesStorage.instance.stub(:model_rules).and_return(rules)
-        @user = double('user')
+        expect(AccessRulesStorage.instance).to receive(:model_rules).at_least(:once){ rules }
+        @login_context = double('login_context')
         @model1 = SampleModel1.new
         @model2 = SampleModel2.new
-        @model2.stub(:owner?).and_return(false)
+        @model2.stub(:owner?){ false }
       end
 
 
-      context "User with role :user" do
+      context "LoginContext with role :user" do
         before do
-          @user.stub(:has_role?){|role| role==:user}
+          @login_context.stub(:has_role?){|role| role==:user}
         end
 
-        it "should be true for this" do
-          AccessRules.model_access?(@user, @model1, :xyz).should be_truthy
-          @model2.stub(:owner?).and_return true
-          AccessRules.model_access?(@user, @model2, :read).should be_truthy
-          AccessRules.model_access?(@user, @model2, :update).should be_truthy
+        it "should be true for this rules" do
+          expect(AccessRules.model_access?(@login_context, @model1, :xyz)).to be_truthy
+          @model2.stub(:owner?){ true }
+          expect(AccessRules.model_access?(@login_context, @model2, :read)).to be_truthy
+          expect(AccessRules.model_access?(@login_context, @model2, :update)).to be_truthy
         end
 
         it "should not be true for this" do
-          AccessRules.model_access?(@user, @model2, :update).should_not be_truthy
-          AccessRules.model_access?(@user, @model2, :delete).should_not be_truthy
+          expect(AccessRules.model_access?(@login_context, @model2, :update)).to be_falsy
+          expect(AccessRules.model_access?(@login_context, @model2, :delete)).to be_falsy
         end
       end
 
 
-      context "User with role :admin" do
+      context "LoginContext with role :admin" do
         before do
-          @user.stub(:has_role?){|role| role==:admin}
+          @login_context.stub(:has_role?){|role| role==:admin}
         end
 
         it "should be true for this" do
-          AccessRules.model_access?(@user, @model1, :xyz).should be_truthy
-          AccessRules.model_access?(@user, @model2, :read).should be_truthy
-          AccessRules.model_access?(@user, @model2, :update).should be_truthy
-          AccessRules.model_access?(@user, @model2, :delete).should be_truthy
+          expect(AccessRules.model_access?(@login_context, @model1, :xyz)).to be_truthy
+          expect(AccessRules.model_access?(@login_context, @model2, :read)).to be_truthy
+          expect(AccessRules.model_access?(@login_context, @model2, :update)).to be_truthy
+          expect(AccessRules.model_access?(@login_context, @model2, :delete)).to be_truthy
         end
 
         it "should not be true for this" do
-          AccessRules.model_access?(@user, @model2, :create).should_not be_truthy
+          expect(AccessRules.model_access?(@login_context, @model2, :create)).to be_falsy
         end
       end
 
 
-      context "User with role :sysadmin" do
+      context "LoginContext with role :sysadmin" do
         before do
-          @user.stub(:has_role?){|role| role==:sysadmin}
+          @login_context.stub(:has_role?){|role| role==:sysadmin}
         end
 
         it "should be true for this" do
-          AccessRules.model_access?(@user, "test", :xyz).should be_truthy
-          AccessRules.model_access?(@user, @model1, :xyz).should be_truthy
-          AccessRules.model_access?(@user, @model2, :read).should be_truthy
-          AccessRules.model_access?(@user, @model2, :update).should be_truthy
-          AccessRules.model_access?(@user, @model2, :delete).should be_truthy
-          AccessRules.model_access?(@user, @model2, :create).should be_truthy
+          expect(AccessRules.model_access?(@login_context, "test", :xyz)).to be_truthy
+          expect(AccessRules.model_access?(@login_context, @model1, :xyz)).to be_truthy
+          expect(AccessRules.model_access?(@login_context, @model2, :read)).to be_truthy
+          expect(AccessRules.model_access?(@login_context, @model2, :update)).to be_truthy
+          expect(AccessRules.model_access?(@login_context, @model2, :delete)).to be_truthy
+          expect(AccessRules.model_access?(@login_context, @model2, :create)).to be_truthy
         end
       end
 
 
       context "without user" do
         it "should be true for this models" do
-          AccessRules.model_access?(nil, @model1, :xyz).should be_truthy
-          AccessRules.model_access?(nil, @model2, :read).should be_truthy
+          expect(AccessRules.model_access?(nil, @model1, :xyz)).to be_truthy
+          expect(AccessRules.model_access?(nil, @model2, :read)).to be_truthy
         end
 
         it "should not be true for this models" do
-          AccessRules.model_access?(nil, @model2, :update).should_not be_truthy
+          expect(AccessRules.model_access?(nil, @model2, :update)).to be_falsy
         end
       end
     end # of context 'model_access?'
@@ -186,7 +185,7 @@ module Tuersteher
           ModelAccessRule.new(SampleModel).method(:update).role(:user).extension(:owner?),
         ]
         AccessRulesStorage.instance.stub(:model_rules).and_return(rules)
-        @user = double('user')
+        @login_context = double('user')
         @model1 = SampleModel.new
         @model2 = SampleModel.new
         @model3 = SampleModel.new
@@ -195,13 +194,13 @@ module Tuersteher
       end
 
       it "Should return [@model3] for user with role=:user" do
-        @user.stub(:has_role?){|role| role==:user}
-        AccessRules.purge_collection(@user, @collection, :update).should == [@model3]
+        @login_context.stub(:has_role?){|role| role==:user}
+        expect(AccessRules.purge_collection(@login_context, @collection, :update)).to eq [@model3]
       end
 
       it "Should return all for user with role=:admin" do
-        @user.stub(:has_role?){|role| role==:admin}
-        AccessRules.purge_collection(@user, @collection, :update).should == @collection
+        @login_context.stub(:has_role?){|role| role==:admin}
+        expect(AccessRules.purge_collection(@login_context, @collection, :update)).to eq @collection
       end
     end
 

data/spec/{acces_rules_storage_spec.rb → access_rules_storage_spec.rb}

@@ -58,8 +58,8 @@ end
           @path_rules = AccessRulesStorage.instance.path_rules
         end
 
-        specify{ @path_rules.first.path_spezification.should be_nil }
-        specify{ @path_rules.last.path_spezification.path.should == '/test/special' }
+        specify{ expect(@path_rules.first.path_spezification).to be_nil }
+        specify{ expect(@path_rules.last.path_spezification.path).to eq '/test/special' }
 
       end
     end

data/spec/model_extensions_spec.rb

@@ -15,22 +15,23 @@ module Tuersteher
 
     before do
       rules = [ModelAccessRule.new(SampleModel).grant.method(:deactived).role(:admin)]
-      AccessRulesStorage.instance.stub(:model_rules).and_return(rules)
-      @user = double('user')
-      Thread.current[:user] = @user
+      #AccessRulesStorage.instance.stub(:model_rules){ rules }
+      expect(AccessRulesStorage.instance).to receive(:model_rules){ rules }
+      @login_context = double('login_context')
+      Thread.current[:login_context] = @login_context
     end
 
 
     context "check_access" do
 
-      it "should not raise a Error for user with role :admin" do
-        @user.stub(:has_role?){|role| role==:admin}
+      it "should not raise a Error for login_context with role :admin" do
+        expect(@login_context).to receive(:has_role?){|role| role==:admin}
         model = SampleModel.new
         model.deactived
       end
 
-      it "should raise a SecurityError for user with not role :admin" do
-        @user.stub(:has_role?){|role| role==:user}
+      it "should raise a SecurityError for login_context with not role :admin" do
+        expect(@login_context).to receive(:has_role?){|role| role==:user}
         model = SampleModel.new
         expect{ model.deactived }.to raise_error(SecurityError)
       end
@@ -40,16 +41,16 @@ module Tuersteher
 
     context "purge_collection" do
 
-      it "should purge nothing for user with role :admin" do
-        @user.stub(:has_role?){|role| role==:admin}
+      it "should purge nothing for login_context with role :admin" do
+        expect(@login_context).to receive(:has_role?){|role| role==:admin}
         list = [SampleModel.new]
-        SampleModel.purge_collection(list, :deactived).should == list
+        expect(SampleModel.purge_collection(list, :deactived)).to eq list
       end
 
-      it "should purge all for user with not role :admin" do
-        @user.stub(:has_role?){|role| role==:user}
+      it "should purge all for login_context with not role :admin" do
+        expect(@login_context).to receive(:has_role?){|role| role==:user}
         list = [SampleModel.new]
-        SampleModel.purge_collection(list, :deactived).should == []
+        expect(SampleModel.purge_collection(list, :deactived)).to eq []
       end
 
     end # of  context "purge_collection"

data/spec/spec_helper.rb

@@ -1,7 +1,108 @@
-require 'rspec'
+# This file was generated by the `rspec --init` command. Conventionally, all
+# specs live under a `spec` directory, which RSpec adds to the `$LOAD_PATH`.
+# The generated `.rspec` file contains `--require spec_helper` which will cause
+# this file to always be loaded, without a need to explicitly require it in any
+# files.
+
 require 'logger'
 require File.expand_path(File.dirname(__FILE__) + "/../lib/tuersteher")
 
 # Logger auf stdout stellen
 Tuersteher::TLogger.logger = Logger.new(STDOUT)
 Tuersteher::TLogger.logger.level = Logger::ERROR
+
+
+# Given that it is always loaded, you are encouraged to keep this file as
+# light-weight as possible. Requiring heavyweight dependencies from this file
+# will add to the boot time of your test suite on EVERY test run, even for an
+# individual file that may not need all of that loaded. Instead, consider making
+# a separate helper file that requires the additional dependencies and performs
+# the additional setup, and require it from the spec files that actually need
+# it.
+#
+# See http://rubydoc.info/gems/rspec-core/RSpec/Core/Configuration
+RSpec.configure do |config|
+  # rspec-expectations config goes here. You can use an alternate
+  # assertion/expectation library such as wrong or the stdlib/minitest
+  # assertions if you prefer.
+  config.expect_with :rspec do |expectations|
+    # This option will default to `true` in RSpec 4. It makes the `description`
+    # and `failure_message` of custom matchers include text for helper methods
+    # defined using `chain`, e.g.:
+    #     be_bigger_than(2).and_smaller_than(4).description
+    #     # => "be bigger than 2 and smaller than 4"
+    # ...rather than:
+    #     # => "be bigger than 2"
+    expectations.include_chain_clauses_in_custom_matcher_descriptions = true
+  end
+
+  # rspec-mocks config goes here. You can use an alternate test double
+  # library (such as bogus or mocha) by changing the `mock_with` option here.
+  config.mock_with :rspec do |mocks|
+    # Prevents you from mocking or stubbing a method that does not exist on
+    # a real object. This is generally recommended, and will default to
+    # `true` in RSpec 4.
+    mocks.verify_partial_doubles = true
+  end
+
+  # This option will default to `:apply_to_host_groups` in RSpec 4 (and will
+  # have no way to turn it off -- the option exists only for backwards
+  # compatibility in RSpec 3). It causes shared context metadata to be
+  # inherited by the metadata hash of host groups and examples, rather than
+  # triggering implicit auto-inclusion in groups with matching metadata.
+  config.shared_context_metadata_behavior = :apply_to_host_groups
+
+# The settings below are suggested to provide a good initial experience
+# with RSpec, but feel free to customize to your heart's content.
+=begin
+  # This allows you to limit a spec run to individual examples or groups
+  # you care about by tagging them with `:focus` metadata. When nothing
+  # is tagged with `:focus`, all examples get run. RSpec also provides
+  # aliases for `it`, `describe`, and `context` that include `:focus`
+  # metadata: `fit`, `fdescribe` and `fcontext`, respectively.
+  config.filter_run_when_matching :focus
+
+  # Allows RSpec to persist some state between runs in order to support
+  # the `--only-failures` and `--next-failure` CLI options. We recommend
+  # you configure your source control system to ignore this file.
+  config.example_status_persistence_file_path = "spec/examples.txt"
+
+  # Limits the available syntax to the non-monkey patched syntax that is
+  # recommended. For more details, see:
+  #   - http://rspec.info/blog/2012/06/rspecs-new-expectation-syntax/
+  #   - http://www.teaisaweso.me/blog/2013/05/27/rspecs-new-message-expectation-syntax/
+  #   - http://rspec.info/blog/2014/05/notable-changes-in-rspec-3/#zero-monkey-patching-mode
+  config.disable_monkey_patching!
+
+  # This setting enables warnings. It's recommended, but in some cases may
+  # be too noisy due to issues in dependencies.
+  config.warnings = true
+
+  # Many RSpec users commonly either run the entire suite or an individual
+  # file, and it's useful to allow more verbose output when running an
+  # individual spec file.
+  if config.files_to_run.one?
+    # Use the documentation formatter for detailed output,
+    # unless a formatter has already been configured
+    # (e.g. via a command-line flag).
+    config.default_formatter = "doc"
+  end
+
+  # Print the 10 slowest examples and example groups at the
+  # end of the spec run, to help surface which specs are running
+  # particularly slow.
+  config.profile_examples = 10
+
+  # Run specs in random order to surface order dependencies. If you find an
+  # order dependency and want to debug it, you can fix the order by providing
+  # the seed, which is printed after each run.
+  #     --seed 1234
+  config.order = :random
+
+  # Seed global randomization in this process using the `--seed` CLI option.
+  # Setting this allows you to use `--seed` to deterministically reproduce
+  # test failures related to randomization by passing the same `--seed` value
+  # as the one that triggered the failure.
+  Kernel.srand config.seed
+=end
+end

data/tuersteher.gemspec

@@ -3,8 +3,8 @@ $:.push File.expand_path("../lib", __FILE__)
 
 Gem::Specification.new do |s|
   s.name        = 'tuersteher'
-  s.version     = '1.0.1'
-  s.authors     = ["Bernd Ledig"]
+  s.version     = '1.0.2'
+  s.authors     = ["Bernd Ledig","BerndL"]
   s.email       = ["bernd@ledig.info","bernd.ledig@ottogroup.com"]
   s.homepage    = "https://gitlab.com/bledig/tuersteher"
   s.summary     = "Access-Handling for Rails-Apps"
@@ -25,7 +25,7 @@ Gem::Specification.new do |s|
   #s.add_runtime_dependency "i18n"
 
   s.add_development_dependency "rake", '~> 10.5'
-  s.add_development_dependency "rspec", '~> 2.14'
+  s.add_development_dependency "rspec", '~> 3.8'
 
 end
 

metadata

@@ -1,10 +1,11 @@
 --- !ruby/object:Gem::Specification
 name: tuersteher
 version: !ruby/object:Gem::Version
-  version: 1.0.1
+  version: 1.0.2
 platform: ruby
 authors:
 - Bernd Ledig
+- BerndL
 autorequire: 
 bindir: bin
 cert_chain: []
@@ -30,14 +31,14 @@ dependencies:
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '2.14'
+        version: '3.8'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '2.14'
+        version: '3.8'
 description: "    Security-Layer for Rails-Application acts like a firewall.\n"
 email:
 - bernd@ledig.info
@@ -48,6 +49,8 @@ extra_rdoc_files:
 - README.rdoc
 files:
 - ".gitignore"
+- ".rspec"
+- ".ruby-version"
 - Gemfile
 - README.rdoc
 - Rakefile
@@ -56,12 +59,11 @@ files:
 - license.txt
 - samples/access_rules.rb
 - samples/application_controller.rb
-- spec/acces_rules_storage_spec.rb
 - spec/access_rules_spec.rb
+- spec/access_rules_storage_spec.rb
 - spec/model_access_rule_spec.rb
 - spec/model_extensions_spec.rb
 - spec/path_access_rule_spec.rb
-- spec/spec.opts
 - spec/spec_helper.rb
 - tuersteher.gemspec
 homepage: https://gitlab.com/bledig/tuersteher

data/spec/spec.opts

@@ -1,5 +0,0 @@
---colour
---format
-progress
---loadby
-mtime