warrant 1.1.0 → 1.2.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/lib/warrant/models/subject.rb +8 -0
- data/lib/warrant/models/user.rb +11 -11
- data/lib/warrant/models/warrant.rb +37 -4
- data/lib/warrant/util.rb +2 -0
- data/lib/warrant/version.rb +1 -1
- metadata +3 -3
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: d3ba7f4c3cde89c03aa17c15bfe00fa553172b27365b2e25548e7f349f38d799
|
|
4
|
+
data.tar.gz: 0fbc797a1768ca2aa47a08a7b2864a4398c25ed3deb2ff26f45e113855961c8c
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 9240a10a74f6cf277e2a94d392181dbb66f89b5a970b6d4688c3fd6582ecde03fdfdf9dca63294be48f9de48d03d5c2bf0f5b1d5fc9bc689d87876365fde0192
|
|
7
|
+
data.tar.gz: 5950abb71082b36b859c8679952a1055b6726588353db03df292e036ee11e239c41cdf0abf76995bb1a2c82d34aa21e3bf6643832ba9315e7810a6261c2938c3
|
|
@@ -9,5 +9,13 @@ module Warrant
|
|
|
9
9
|
@object_id = object_id
|
|
10
10
|
@relation = relation
|
|
11
11
|
end
|
|
12
|
+
|
|
13
|
+
def self.new_from_hash(attributes)
|
|
14
|
+
object_type = attributes.fetch(:object_type)
|
|
15
|
+
object_id = attributes.fetch(:object_id)
|
|
16
|
+
relation = attributes.fetch(:relation, nil)
|
|
17
|
+
|
|
18
|
+
self.new(object_type, object_id, relation)
|
|
19
|
+
end
|
|
12
20
|
end
|
|
13
21
|
end
|
data/lib/warrant/models/user.rb
CHANGED
|
@@ -87,7 +87,7 @@ module Warrant
|
|
|
87
87
|
users.map{ |user| User.new(user['userId'], user['email'], user['createdAt']) }
|
|
88
88
|
else
|
|
89
89
|
APIOperations.raise_error(res)
|
|
90
|
-
end
|
|
90
|
+
end
|
|
91
91
|
end
|
|
92
92
|
|
|
93
93
|
# Get a user with the given user_id
|
|
@@ -111,7 +111,7 @@ module Warrant
|
|
|
111
111
|
User.new(user['userId'], user['email'], user['createdAt'])
|
|
112
112
|
else
|
|
113
113
|
APIOperations.raise_error(res)
|
|
114
|
-
end
|
|
114
|
+
end
|
|
115
115
|
end
|
|
116
116
|
|
|
117
117
|
# Updates a user with the given user_id and params
|
|
@@ -182,7 +182,7 @@ module Warrant
|
|
|
182
182
|
roles.map{ |role| Role.new(role['roleId']) }
|
|
183
183
|
else
|
|
184
184
|
APIOperations.raise_error(res)
|
|
185
|
-
end
|
|
185
|
+
end
|
|
186
186
|
end
|
|
187
187
|
|
|
188
188
|
# Assign a role to a user
|
|
@@ -227,7 +227,7 @@ module Warrant
|
|
|
227
227
|
return Role.remove_from_user(user_id, role_id)
|
|
228
228
|
end
|
|
229
229
|
|
|
230
|
-
# List all permissions for a user
|
|
230
|
+
# List all permissions for a user
|
|
231
231
|
#
|
|
232
232
|
# @return [Array<Permission>] all permissions for the user
|
|
233
233
|
#
|
|
@@ -244,7 +244,7 @@ module Warrant
|
|
|
244
244
|
permissions.map{ |permission| Permission.new(permission['permissionId']) }
|
|
245
245
|
else
|
|
246
246
|
APIOperations.raise_error(res)
|
|
247
|
-
end
|
|
247
|
+
end
|
|
248
248
|
end
|
|
249
249
|
|
|
250
250
|
# Assign a permission to a user
|
|
@@ -337,11 +337,11 @@ module Warrant
|
|
|
337
337
|
case res
|
|
338
338
|
when Net::HTTPSuccess
|
|
339
339
|
res_json = JSON.parse(res.body)
|
|
340
|
-
subject = Subject.new(res_json['subject']['objectType'], res_json['subject']['objectId'])
|
|
340
|
+
subject = Subject.new(res_json['subject']['objectType'], res_json['subject']['objectId'], res_json['subject']['relation'])
|
|
341
341
|
Warrant.new(res_json['objectType'], res_json['objectId'], res_json['relation'], subject)
|
|
342
342
|
else
|
|
343
343
|
APIOperations.raise_error(res)
|
|
344
|
-
end
|
|
344
|
+
end
|
|
345
345
|
end
|
|
346
346
|
|
|
347
347
|
# Remove a user from a tenant
|
|
@@ -365,10 +365,10 @@ module Warrant
|
|
|
365
365
|
return
|
|
366
366
|
else
|
|
367
367
|
APIOperations.raise_error(res)
|
|
368
|
-
end
|
|
368
|
+
end
|
|
369
369
|
end
|
|
370
370
|
|
|
371
|
-
# List all users for a tenant
|
|
371
|
+
# List all users for a tenant
|
|
372
372
|
#
|
|
373
373
|
# @param tenant_id [String] The tenant_id of the tenant from which to fetch users
|
|
374
374
|
#
|
|
@@ -387,10 +387,10 @@ module Warrant
|
|
|
387
387
|
users.map{ |user| User.new(user['userId'], user['email'], user['createdAt']) }
|
|
388
388
|
else
|
|
389
389
|
APIOperations.raise_error(res)
|
|
390
|
-
end
|
|
390
|
+
end
|
|
391
391
|
end
|
|
392
392
|
|
|
393
|
-
# List all tenants for a user
|
|
393
|
+
# List all tenants for a user
|
|
394
394
|
#
|
|
395
395
|
# @return [Array<Tenant>] all tenants for the user
|
|
396
396
|
#
|
|
@@ -2,14 +2,15 @@
|
|
|
2
2
|
|
|
3
3
|
module Warrant
|
|
4
4
|
class Warrant
|
|
5
|
-
attr_reader :id, :object_type, :object_id, :relation, :subject
|
|
5
|
+
attr_reader :id, :object_type, :object_id, :relation, :subject, :is_direct_match
|
|
6
6
|
|
|
7
7
|
# @!visibility private
|
|
8
|
-
def initialize(object_type, object_id, relation, subject)
|
|
8
|
+
def initialize(object_type, object_id, relation, subject, is_direct_match = nil)
|
|
9
9
|
@object_type = object_type
|
|
10
10
|
@object_id = object_id
|
|
11
11
|
@relation = relation
|
|
12
12
|
@subject = subject
|
|
13
|
+
@is_direct_match = is_direct_match
|
|
13
14
|
end
|
|
14
15
|
|
|
15
16
|
# Create a new warrant that associates an object (object_type and object_id) to a subject via a relation.
|
|
@@ -38,7 +39,7 @@ module Warrant
|
|
|
38
39
|
|
|
39
40
|
case res
|
|
40
41
|
when Net::HTTPSuccess
|
|
41
|
-
subject = Subject.new(res_json['subject']['objectType'], res_json['subject']['objectId'])
|
|
42
|
+
subject = Subject.new(res_json['subject']['objectType'], res_json['subject']['objectId'], res_json['subject']['relation'])
|
|
42
43
|
Warrant.new(res_json['objectType'], res_json['objectId'], res_json['relation'], subject)
|
|
43
44
|
else
|
|
44
45
|
APIOperations.raise_error(res)
|
|
@@ -95,7 +96,7 @@ module Warrant
|
|
|
95
96
|
when Net::HTTPSuccess
|
|
96
97
|
warrants = JSON.parse(res.body)
|
|
97
98
|
warrants.map{ |warrant|
|
|
98
|
-
subject = Subject.new(warrant['subject']['objectType'], warrant['subject']['objectId'])
|
|
99
|
+
subject = Subject.new(warrant['subject']['objectType'], warrant['subject']['objectId'], warrant['subject']['relation'])
|
|
99
100
|
Warrant.new(warrant['objectType'], warrant['objectId'], warrant['relation'], subject)
|
|
100
101
|
}
|
|
101
102
|
else
|
|
@@ -103,6 +104,38 @@ module Warrant
|
|
|
103
104
|
end
|
|
104
105
|
end
|
|
105
106
|
|
|
107
|
+
# Query to find all warrants for a given subject.
|
|
108
|
+
#
|
|
109
|
+
# @option params [String] :object_type The type of object. Must be one of your system's existing object types. (optional)
|
|
110
|
+
# @option params [String] :relation The relation for this object to subject association. The relation must be valid as per the object type definition. (optional)
|
|
111
|
+
# @option params [String] :subject The subject to query warrants for. This should be in the format `OBJECT_TYPE:OBJECT_ID`, i.e. `user:8`
|
|
112
|
+
# * subject (Hash) - The specific subject for which warrants will be queried for.
|
|
113
|
+
# * object_type (String) - The type of object. Must be one of your system's existing object types.
|
|
114
|
+
# * object_id (String) - The id of the specific object.
|
|
115
|
+
#
|
|
116
|
+
# @return [Array<Warrant>] list of all warrants with provided params
|
|
117
|
+
#
|
|
118
|
+
# @raise [Warrant::InternalError]
|
|
119
|
+
# @raise [Warrant::InvalidRequestError]
|
|
120
|
+
# @raise [Warrant::NotFoundError]
|
|
121
|
+
# @raise [Warrant::UnauthorizedError]
|
|
122
|
+
# @raise [Warrant::WarrantError]
|
|
123
|
+
def self.query(params = {})
|
|
124
|
+
params[:subject] = Subject.new_from_hash(params[:subject])
|
|
125
|
+
res = APIOperations.get(URI.parse("#{::Warrant.config.api_base}/v1/query"), params)
|
|
126
|
+
|
|
127
|
+
case res
|
|
128
|
+
when Net::HTTPSuccess
|
|
129
|
+
warrants = JSON.parse(res.body)
|
|
130
|
+
warrants.map{ |warrant|
|
|
131
|
+
subject = Subject.new(warrant['subject']['objectType'], warrant['subject']['objectId'], warrant['subject']['relation'])
|
|
132
|
+
Warrant.new(warrant['objectType'], warrant['objectId'], warrant['relation'], subject, warrant['isDirectMatch'])
|
|
133
|
+
}
|
|
134
|
+
else
|
|
135
|
+
APIOperations.raise_error(res)
|
|
136
|
+
end
|
|
137
|
+
end
|
|
138
|
+
|
|
106
139
|
# Checks whether a specified access check is authorized or not.
|
|
107
140
|
# If you would like to check only one warrant, then you can exclude the op param and provide an array with one warrant.
|
|
108
141
|
#
|
data/lib/warrant/util.rb
CHANGED
data/lib/warrant/version.rb
CHANGED
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: warrant
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 1.
|
|
4
|
+
version: 1.2.0
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Warrant
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: exe
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date: 2022-
|
|
11
|
+
date: 2022-12-12 00:00:00.000000000 Z
|
|
12
12
|
dependencies: []
|
|
13
13
|
description: Ruby library for the Warrant API at https://warrant.dev.
|
|
14
14
|
email: hello@warrant.dev
|
|
@@ -61,7 +61,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
|
|
|
61
61
|
- !ruby/object:Gem::Version
|
|
62
62
|
version: '0'
|
|
63
63
|
requirements: []
|
|
64
|
-
rubygems_version: 3.
|
|
64
|
+
rubygems_version: 3.2.32
|
|
65
65
|
signing_key:
|
|
66
66
|
specification_version: 4
|
|
67
67
|
summary: Warrant Ruby Library
|