warrant 1.0.0 → 1.2.0

Sign up to get free protection for your applications and to get access to all the features.
Files changed (8) hide show
  1. checksums.yaml +4 -4
  2. data/lib/warrant/models/subject.rb +8 -0
  3. data/lib/warrant/models/tenant.rb +66 -0
  4. data/lib/warrant/models/user.rb +89 -7
  5. data/lib/warrant/models/warrant.rb +37 -4
  6. data/lib/warrant/util.rb +2 -0
  7. data/lib/warrant/version.rb +1 -1
  8. metadata +6 -6
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 5c44e60e9d2c5fef31622621a356033848368ba16854759d81ec6797ba3a0dbe
4
- data.tar.gz: 146f08b5bac7ed1db618f39ef8e6c7f0a2884b8167e65c3812d2ee0d41fcf2c6
3
+ metadata.gz: d3ba7f4c3cde89c03aa17c15bfe00fa553172b27365b2e25548e7f349f38d799
4
+ data.tar.gz: 0fbc797a1768ca2aa47a08a7b2864a4398c25ed3deb2ff26f45e113855961c8c
5
5
  SHA512:
6
- metadata.gz: 27f2a30747e35747387f294a05d221571488fc60f4c4522257770352eeea31ad1785c77b5579c2de031265c07ade7f9fe49b7cb91962282a662e53e3945ba758
7
- data.tar.gz: 59c909e93d57c04301bcf13600573e073ebe61c83493ceed1c280c9629745cfe1cc40e089d71a804608bd768d39039563cfae2cde9410c30d19a9d007f29a35a
6
+ metadata.gz: 9240a10a74f6cf277e2a94d392181dbb66f89b5a970b6d4688c3fd6582ecde03fdfdf9dca63294be48f9de48d03d5c2bf0f5b1d5fc9bc689d87876365fde0192
7
+ data.tar.gz: 5950abb71082b36b859c8679952a1055b6726588353db03df292e036ee11e239c41cdf0abf76995bb1a2c82d34aa21e3bf6643832ba9315e7810a6261c2938c3
data/lib/warrant/models/subject.rb CHANGED
@@ -9,5 +9,13 @@ module Warrant
9
9
  @object_id = object_id
10
10
  @relation = relation
11
11
  end
12
+
13
+ def self.new_from_hash(attributes)
14
+ object_type = attributes.fetch(:object_type)
15
+ object_id = attributes.fetch(:object_id)
16
+ relation = attributes.fetch(:relation, nil)
17
+
18
+ self.new(object_type, object_id, relation)
19
+ end
12
20
  end
13
21
  end
data/lib/warrant/models/tenant.rb CHANGED
@@ -164,5 +164,71 @@ module Warrant
164
164
  def update(params = {})
165
165
  return Tenant.update(tenant_id, params)
166
166
  end
167
+
168
+ # Add a user to a tenant
169
+ #
170
+ # @param user_id [String] The user_id of the user you want to add to the tenant.
171
+ #
172
+ # @return [Warrant] warrant assigning user to the tenant
173
+ #
174
+ # @raise [Warrant::InternalError]
175
+ # @raise [Warrant::InvalidParameterError]
176
+ # @raise [Warrant::InvalidRequestError]
177
+ # @raise [Warrant::NotFoundError]
178
+ # @raise [Warrant::UnauthorizedError]
179
+ # @raise [Warrant::WarrantError]
180
+ def add_user(user_id)
181
+ return User.add_to_tenant(tenant_id, user_id)
182
+ end
183
+
184
+ # Remove a user from a tenant
185
+ #
186
+ # @param user_id [String] The user_id of the user you want to remove from the tenant.
187
+ #
188
+ # @return [nil] if remove was successful
189
+ #
190
+ # @raise [Warrant::InternalError]
191
+ # @raise [Warrant::InvalidParameterError]
192
+ # @raise [Warrant::InvalidRequestError]
193
+ # @raise [Warrant::NotFoundError]
194
+ # @raise [Warrant::UnauthorizedError]
195
+ # @raise [Warrant::WarrantError]
196
+ def remove_user(user_id)
197
+ return User.remove_from_tenant(tenant_id, user_id)
198
+ end
199
+
200
+ # List all tenants for a user
201
+ #
202
+ # @param user_id [String] The user_id of the user from which to fetch tenants
203
+ #
204
+ # @return [Array<Tenant>] all tenants for the user
205
+ #
206
+ # @raise [Warrant::InternalError]
207
+ # @raise [Warrant::InvalidRequestError]
208
+ # @raise [Warrant::UnauthorizedError]
209
+ # @raise [Warrant::WarrantError]
210
+ def self.list_for_user(user_id)
211
+ res = APIOperations.get(URI.parse("#{::Warrant.config.api_base}/v1/users/#{user_id}/tenants"))
212
+
213
+ case res
214
+ when Net::HTTPSuccess
215
+ tenants = JSON.parse(res.body)
216
+ tenants.map{ |tenant| Tenant.new(tenant['tenantId'], tenant['name'], tenant['createdAt']) }
217
+ else
218
+ APIOperations.raise_error(res)
219
+ end
220
+ end
221
+
222
+ # List all users for a tenant
223
+ #
224
+ # @return [Array<User>] all users for the tenant
225
+ #
226
+ # @raise [Warrant::InternalError]
227
+ # @raise [Warrant::InvalidRequestError]
228
+ # @raise [Warrant::UnauthorizedError]
229
+ # @raise [Warrant::WarrantError]
230
+ def list_users
231
+ return User.list_for_tenant(tenant_id)
232
+ end
167
233
  end
168
234
  end
data/lib/warrant/models/user.rb CHANGED
@@ -87,7 +87,7 @@ module Warrant
87
87
  users.map{ |user| User.new(user['userId'], user['email'], user['createdAt']) }
88
88
  else
89
89
  APIOperations.raise_error(res)
90
- end
90
+ end
91
91
  end
92
92
 
93
93
  # Get a user with the given user_id
@@ -111,7 +111,7 @@ module Warrant
111
111
  User.new(user['userId'], user['email'], user['createdAt'])
112
112
  else
113
113
  APIOperations.raise_error(res)
114
- end
114
+ end
115
115
  end
116
116
 
117
117
  # Updates a user with the given user_id and params
@@ -182,7 +182,7 @@ module Warrant
182
182
  roles.map{ |role| Role.new(role['roleId']) }
183
183
  else
184
184
  APIOperations.raise_error(res)
185
- end
185
+ end
186
186
  end
187
187
 
188
188
  # Assign a role to a user
@@ -227,7 +227,7 @@ module Warrant
227
227
  return Role.remove_from_user(user_id, role_id)
228
228
  end
229
229
 
230
- # List all permissions for a user
230
+ # List all permissions for a user
231
231
  #
232
232
  # @return [Array<Permission>] all permissions for the user
233
233
  #
@@ -244,12 +244,11 @@ module Warrant
244
244
  permissions.map{ |permission| Permission.new(permission['permissionId']) }
245
245
  else
246
246
  APIOperations.raise_error(res)
247
- end
247
+ end
248
248
  end
249
249
 
250
250
  # Assign a permission to a user
251
251
  #
252
- # @param user_id [String] The user_id of the user you want to assign a permission to.
253
252
  # @param permission_id [String] The permission_id of the permission you want to assign to a user.
254
253
  #
255
254
  # @return [Permission] assigned permission
@@ -270,7 +269,6 @@ module Warrant
270
269
 
271
270
  # Remove a permission from a user
272
271
  #
273
- # @param user_id [String] The user_id of the user you want to assign a permission to.
274
272
  # @param permission_id [String] The permission_id of the permission you want to assign to a user.
275
273
  #
276
274
  # @return [nil] if remove was successful
@@ -319,5 +317,89 @@ module Warrant
319
317
  }]
320
318
  )
321
319
  end
320
+
321
+ # Add a user to a tenant
322
+ #
323
+ # @param tenant_id [String] The tenant_id of the tenant you want to assign a user to.
324
+ # @param user_id [String] The user_id of the user you want to add to the tenant.
325
+ #
326
+ # @return [Warrant] warrant assigning user to the tenant
327
+ #
328
+ # @raise [Warrant::InternalError]
329
+ # @raise [Warrant::InvalidParameterError]
330
+ # @raise [Warrant::InvalidRequestError]
331
+ # @raise [Warrant::NotFoundError]
332
+ # @raise [Warrant::UnauthorizedError]
333
+ # @raise [Warrant::WarrantError]
334
+ def self.add_to_tenant(tenant_id, user_id)
335
+ res = APIOperations.post(URI.parse("#{::Warrant.config.api_base}/v1/tenants/#{tenant_id}/users/#{user_id}"))
336
+
337
+ case res
338
+ when Net::HTTPSuccess
339
+ res_json = JSON.parse(res.body)
340
+ subject = Subject.new(res_json['subject']['objectType'], res_json['subject']['objectId'], res_json['subject']['relation'])
341
+ Warrant.new(res_json['objectType'], res_json['objectId'], res_json['relation'], subject)
342
+ else
343
+ APIOperations.raise_error(res)
344
+ end
345
+ end
346
+
347
+ # Remove a user from a tenant
348
+ #
349
+ # @param tenant_id [String] The tenant_id of the tenant you want to remove the user from.
350
+ # @param user_id [String] The user_id of the user you want to remove from the tenant.
351
+ #
352
+ # @return [nil] if remove was successful
353
+ #
354
+ # @raise [Warrant::InternalError]
355
+ # @raise [Warrant::InvalidParameterError]
356
+ # @raise [Warrant::InvalidRequestError]
357
+ # @raise [Warrant::NotFoundError]
358
+ # @raise [Warrant::UnauthorizedError]
359
+ # @raise [Warrant::WarrantError]
360
+ def self.remove_from_tenant(tenant_id, user_id)
361
+ res = APIOperations.delete(URI.parse("#{::Warrant.config.api_base}/v1/tenants/#{tenant_id}/users/#{user_id}"))
362
+
363
+ case res
364
+ when Net::HTTPSuccess
365
+ return
366
+ else
367
+ APIOperations.raise_error(res)
368
+ end
369
+ end
370
+
371
+ # List all users for a tenant
372
+ #
373
+ # @param tenant_id [String] The tenant_id of the tenant from which to fetch users
374
+ #
375
+ # @return [Array<User>] all users for the tenant
376
+ #
377
+ # @raise [Warrant::InternalError]
378
+ # @raise [Warrant::InvalidRequestError]
379
+ # @raise [Warrant::UnauthorizedError]
380
+ # @raise [Warrant::WarrantError]
381
+ def self.list_for_tenant(tenant_id)
382
+ res = APIOperations.get(URI.parse("#{::Warrant.config.api_base}/v1/tenants/#{tenant_id}/users"))
383
+
384
+ case res
385
+ when Net::HTTPSuccess
386
+ users = JSON.parse(res.body)
387
+ users.map{ |user| User.new(user['userId'], user['email'], user['createdAt']) }
388
+ else
389
+ APIOperations.raise_error(res)
390
+ end
391
+ end
392
+
393
+ # List all tenants for a user
394
+ #
395
+ # @return [Array<Tenant>] all tenants for the user
396
+ #
397
+ # @raise [Warrant::InternalError]
398
+ # @raise [Warrant::InvalidRequestError]
399
+ # @raise [Warrant::UnauthorizedError]
400
+ # @raise [Warrant::WarrantError]
401
+ def list_tenants
402
+ return Tenant.list_for_user(user_id)
403
+ end
322
404
  end
323
405
  end
data/lib/warrant/models/warrant.rb CHANGED
@@ -2,14 +2,15 @@
2
2
 
3
3
  module Warrant
4
4
  class Warrant
5
- attr_reader :id, :object_type, :object_id, :relation, :subject
5
+ attr_reader :id, :object_type, :object_id, :relation, :subject, :is_direct_match
6
6
 
7
7
  # @!visibility private
8
- def initialize(object_type, object_id, relation, subject)
8
+ def initialize(object_type, object_id, relation, subject, is_direct_match = nil)
9
9
  @object_type = object_type
10
10
  @object_id = object_id
11
11
  @relation = relation
12
12
  @subject = subject
13
+ @is_direct_match = is_direct_match
13
14
  end
14
15
 
15
16
  # Create a new warrant that associates an object (object_type and object_id) to a subject via a relation.
@@ -38,7 +39,7 @@ module Warrant
38
39
 
39
40
  case res
40
41
  when Net::HTTPSuccess
41
- subject = Subject.new(res_json['subject']['objectType'], res_json['subject']['objectId'])
42
+ subject = Subject.new(res_json['subject']['objectType'], res_json['subject']['objectId'], res_json['subject']['relation'])
42
43
  Warrant.new(res_json['objectType'], res_json['objectId'], res_json['relation'], subject)
43
44
  else
44
45
  APIOperations.raise_error(res)
@@ -95,7 +96,7 @@ module Warrant
95
96
  when Net::HTTPSuccess
96
97
  warrants = JSON.parse(res.body)
97
98
  warrants.map{ |warrant|
98
- subject = Subject.new(warrant['subject']['objectType'], warrant['subject']['objectId'])
99
+ subject = Subject.new(warrant['subject']['objectType'], warrant['subject']['objectId'], warrant['subject']['relation'])
99
100
  Warrant.new(warrant['objectType'], warrant['objectId'], warrant['relation'], subject)
100
101
  }
101
102
  else
@@ -103,6 +104,38 @@ module Warrant
103
104
  end
104
105
  end
105
106
 
107
+ # Query to find all warrants for a given subject.
108
+ #
109
+ # @option params [String] :object_type The type of object. Must be one of your system's existing object types. (optional)
110
+ # @option params [String] :relation The relation for this object to subject association. The relation must be valid as per the object type definition. (optional)
111
+ # @option params [String] :subject The subject to query warrants for. This should be in the format `OBJECT_TYPE:OBJECT_ID`, i.e. `user:8`
112
+ # * subject (Hash) - The specific subject for which warrants will be queried for.
113
+ # * object_type (String) - The type of object. Must be one of your system's existing object types.
114
+ # * object_id (String) - The id of the specific object.
115
+ #
116
+ # @return [Array<Warrant>] list of all warrants with provided params
117
+ #
118
+ # @raise [Warrant::InternalError]
119
+ # @raise [Warrant::InvalidRequestError]
120
+ # @raise [Warrant::NotFoundError]
121
+ # @raise [Warrant::UnauthorizedError]
122
+ # @raise [Warrant::WarrantError]
123
+ def self.query(params = {})
124
+ params[:subject] = Subject.new_from_hash(params[:subject])
125
+ res = APIOperations.get(URI.parse("#{::Warrant.config.api_base}/v1/query"), params)
126
+
127
+ case res
128
+ when Net::HTTPSuccess
129
+ warrants = JSON.parse(res.body)
130
+ warrants.map{ |warrant|
131
+ subject = Subject.new(warrant['subject']['objectType'], warrant['subject']['objectId'], warrant['subject']['relation'])
132
+ Warrant.new(warrant['objectType'], warrant['objectId'], warrant['relation'], subject, warrant['isDirectMatch'])
133
+ }
134
+ else
135
+ APIOperations.raise_error(res)
136
+ end
137
+ end
138
+
106
139
  # Checks whether a specified access check is authorized or not.
107
140
  # If you would like to check only one warrant, then you can exclude the op param and provide an array with one warrant.
108
141
  #
data/lib/warrant/util.rb CHANGED
@@ -32,6 +32,8 @@ module Warrant
32
32
  new_opts[new_key] = normalize_params(v)
33
33
  when Array
34
34
  new_opts[new_key] = v.map { |i| normalize_params(i) }
35
+ when Subject
36
+ new_opts[new_key] = "#{v.object_type}:#{v.object_id}"
35
37
  else
36
38
  new_opts[new_key] = v
37
39
  end
data/lib/warrant/version.rb CHANGED
@@ -1,5 +1,5 @@
1
1
  # frozen_string_literal: true
2
2
 
3
3
  module Warrant
4
- VERSION = "1.0.0"
4
+ VERSION = "1.2.0"
5
5
  end
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: warrant
3
3
  version: !ruby/object:Gem::Version
4
- version: 1.0.0
4
+ version: 1.2.0
5
5
  platform: ruby
6
6
  authors:
7
7
  - Warrant
8
- autorequire:
8
+ autorequire:
9
9
  bindir: exe
10
10
  cert_chain: []
11
- date: 2022-07-14 00:00:00.000000000 Z
11
+ date: 2022-12-12 00:00:00.000000000 Z
12
12
  dependencies: []
13
13
  description: Ruby library for the Warrant API at https://warrant.dev.
14
14
  email: hello@warrant.dev
@@ -46,7 +46,7 @@ metadata:
46
46
  source_code_uri: https://github.com/warrant-dev/warrant-ruby
47
47
  changelog_uri: https://github.com/warrant-dev/warrant-ruby/CHANGELOG.md
48
48
  documentation_uri: https://docs.warrant.dev/
49
- post_install_message:
49
+ post_install_message:
50
50
  rdoc_options: []
51
51
  require_paths:
52
52
  - lib
@@ -61,8 +61,8 @@ required_rubygems_version: !ruby/object:Gem::Requirement
61
61
  - !ruby/object:Gem::Version
62
62
  version: '0'
63
63
  requirements: []
64
- rubygems_version: 3.2.14
65
- signing_key:
64
+ rubygems_version: 3.2.32
65
+ signing_key:
66
66
  specification_version: 4
67
67
  summary: Warrant Ruby Library
68
68
  test_files: []