zuul 0.1.0

data/.document

@@ -0,0 +1,5 @@
+README.rdoc
+lib/**/*.rb
+bin/*
+features/**/*.feature
+LICENSE

data/.gitignore

@@ -0,0 +1,23 @@
+## MAC OS
+.DS_Store
+
+## TEXTMATE
+*.tmproj
+tmtags
+
+## EMACS
+*~
+\#*
+.\#*
+
+## VIM
+*.swp
+
+## PROJECT::GENERAL
+coverage
+rdoc
+pkg
+
+## PROJECT::SPECIFIC
+spec/rails_root/db/test.sqlite3
+spec/rails_root/log/*

data/LICENSE

@@ -0,0 +1,20 @@
+Copyright (c) 2009 Wes Gibbs
+
+Permission is hereby granted, free of charge, to any person obtaining
+a copy of this software and associated documentation files (the
+"Software"), to deal in the Software without restriction, including
+without limitation the rights to use, copy, modify, merge, publish,
+distribute, sublicense, and/or sell copies of the Software, and to
+permit persons to whom the Software is furnished to do so, subject to
+the following conditions:
+
+The above copyright notice and this permission notice shall be
+included in all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
+EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
+NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
+LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
+OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
+WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

data/README.rdoc

@@ -0,0 +1,60 @@
+=Zuul
+
+Zuul provides a simple role-based authorization framework for Rails apps.
+
+==Quick Start
+
+Add a +role+ to your +users+ table
+
+   add_column :users, :role, :string
+
+In your +User+ model, specify the valid roles
+
+  valid_roles :guest, :member, :admin
+
+In your +ApplicationController+, enable access restrictions
+
+  include Zuul::RestrictAccess
+  restrict_access
+
+In your controllers, specify which roles are allowed for which actions.
+
+  require_user :guest, :admin, :only => :index, :show
+
+==Examples and Options
+
+You can pass +restrict_access+ some options
+* +access_denied_message+ - The string that will be added to the flash[:notice] if the user has been denied access to an action. Defaults to "You must be logged in to access this page".
+* +require_no_user_message+ - The string that will be added to the flash[:notice] if the requested action requires there be NO user signed in and there is one. Defaults to "You must be logged out to access this page".
+* +unauthorized_redirect_path+ - The name of a method, as a symbol, that will be called to determine where to redirect someone when they have been denied access. The method is expected to return a string. The default is :unauthorized_path which returns "/".
+
+You can pass +require_user+ a list of roles and also indicate which actions to apply the restriction to using <code>:only</code> and <code>:except</code>. Some examples:
+* Restrict access to all actions for a specific role.
+
+  <code>require_user :admin</code>
+
+* Restrict access to specific actions for specific roles.
+
+  <code>require_user :guest, :admin, :only => :index, :show</code>
+
+* Require a user but don't care about the role.
+
+  <code>require_user :only => :show</code>
+
+* Don't allow access to edit or update if there is a user.
+
+  <code>require_no_user :only => :edit, :update</code>
+
+
+== Note on Patches/Pull Requests
+
+* Fork the project.
+* Make your feature addition or bug fix.
+* Add tests for it. This is important so I don't break it in a
+  future version unintentionally.
+* Commit, do not mess with rakefile, version, or history. (if you want to have your own version, that is fine but bump version in a commit by itself I can ignore when I pull)
+* Send me a pull request. Bonus points for topic branches.
+
+== Copyright
+
+Copyright (c) 2009 Wes Gibbs. See LICENSE for details.

data/Rakefile

@@ -0,0 +1,54 @@
+require 'rubygems'
+require 'rake'
+
+begin
+  require 'jeweler'
+  Jeweler::Tasks.new do |gem|
+    gem.name = "zuul"
+    gem.summary = %Q{Simple Rails Authorization}
+    gem.description = %Q{A simple authorization solution for Rails apps.}
+    gem.email = "wes@hashrocket.com"
+    gem.homepage = "http://github.com/wgibbs/zuul"
+    gem.authors = ["Wes Gibbs"]
+    gem.add_development_dependency "rspec", ">= 1.2.9"
+    gem.test_files = ["spec/**/*"]
+    gem.files.exclude "spec/rails_root/**/*"
+    # gem is a Gem::Specification... see http://www.rubygems.org/read/chapter/20 for additional settings
+  end
+  Jeweler::GemcutterTasks.new
+rescue LoadError
+  puts "Jeweler (or a dependency) not available. Install it with: sudo gem install jeweler"
+end
+
+require 'rake/testtask'
+Rake::TestTask.new(:test) do |test|
+  test.libs << 'lib' << 'test'
+  test.pattern = 'teset/rails_root/test/**/test_*.rb'
+  test.verbose = true
+end
+
+require 'spec/rake/spectask'
+Spec::Rake::SpecTask.new(:spec) do |spec|
+  spec.libs << 'lib' << 'spec'
+  spec.spec_files = FileList['spec/rails_root/spec/**/*_spec.rb']
+end
+
+Spec::Rake::SpecTask.new(:rcov) do |spec|
+  spec.libs << 'lib' << 'spec'
+  spec.pattern = 'spec/**/*_spec.rb'
+  spec.rcov = true
+end
+
+task :spec => :check_dependencies
+
+task :default => :spec
+
+require 'rake/rdoctask'
+Rake::RDocTask.new do |rdoc|
+  version = File.exist?('VERSION') ? File.read('VERSION') : ""
+
+  rdoc.rdoc_dir = 'rdoc'
+  rdoc.title = "zuul #{version}"
+  rdoc.rdoc_files.include('README*')
+  rdoc.rdoc_files.include('lib/**/*.rb')
+end

data/VERSION

@@ -0,0 +1 @@
+0.1.0

data/lib/zuul.rb

@@ -0,0 +1,8 @@
+require 'zuul/valid_roles'
+require 'zuul/restrict_access'
+
+# ActiveRecord::Base.send(:include, Zuul::ValidRoles::ClassMethods)
+
+Class.class_eval do
+  include Zuul::ValidRoles::ClassMethods
+end

data/lib/zuul/restrict_access.rb

@@ -0,0 +1,106 @@
+module Zuul
+  module RestrictAccess
+    def self.included(controller)
+      controller.extend(ClassMethods)
+    end
+
+    module ClassMethods
+      def self.extended(klass)
+        klass.cattr_accessor :access_denied_message
+        klass.cattr_accessor :require_no_user_message
+        klass.cattr_accessor :unauthorized_redirect_path
+      end
+
+      # Meant to be called from your controllers. This is
+      # where you define which roles have access to which actions in the
+      # controller. Examples:
+      # * <code>require_user :admin</code>: Restrict access to all actions for a specific role.
+      # * <code>require_user :guest, :admin, :only => :index, :show</code>: Restrict access to specific actions for specific roles.
+      # * <code>require_user :only => :show</code>: Require a user but don't care about the role.
+      def require_user(*roles)
+        options = roles.extract_options!
+        self.before_filter options do |controller|
+          controller.send(:require_user, roles)
+        end
+      end
+
+      # Tells its controller to check that there is no user
+      # before allowing someone into an action. For example:
+      # * <code>require_no_user :only => :edit, :update</code>: Don't allow access to the edit action
+      # if there is a user.
+      def require_no_user(options = {})
+        self.before_filter options do |controller|
+          controller.send(:require_no_user)
+        end
+      end
+
+      # Intended to be called by ApplicationController. It mixes
+      # in a set of instance methods that manage conferring or denying access to actions.
+      # You can customize the behavior when a user is denied access with these
+      # options:
+      # * +access_denied_message+: The string that will be added to the
+      #   flash[:notice] if the user has been denied access to an action.
+      #   Defaults to "You must be logged in to access this page".
+      # * +require_no_user_message+: The string that will be added to the
+      #   flash[:notice] if the requested action requires there be NO user signed
+      #   in and there is one. Defaults to "You must be logged out to access this
+      #   page.".
+      # * +unauthorized_redirect_path+: The name of a method, as a symbol, that
+      #   will be called to determine where to redirect someone when they have
+      #   been denied access. The method is expected to return a string. The
+      #   default is :unauthorized_path which returns "/".
+      def restrict_access(options = {})
+        self.access_denied_message = options[:access_denied_message] || "You must be logged in to access this page"
+        self.require_no_user_message = options[:require_no_user_message] || "You must be logged out to access this page"
+        self.unauthorized_redirect_path = options[:unauthorized_redirect_path] || :unauthorized_path
+        include ApplicationController::InstanceMethods
+      end
+    end
+
+    module ApplicationController
+      module InstanceMethods
+        def require_user(*roles)
+          roles.flatten!
+          return true if current_user && roles.empty?
+          deny_access unless roles.any? do |role|
+            method = (role.to_s + "?").to_sym
+            if current_user && current_user.respond_to?(method)
+              current_user.send(method)
+            else
+              false
+            end
+          end
+        end
+        private :require_user
+
+        def require_no_user
+          if current_user
+            store_location
+            flash[:notice] = self.class.require_no_user_message
+            redirect_to send(self.class.unauthorized_redirect_path)
+            return false
+          end
+        end
+        private :require_no_user
+
+        def deny_access
+          store_location
+          flash[:notice] = self.class.access_denied_message
+          redirect_to send(self.class.unauthorized_redirect_path)
+          return false
+        end
+        private :deny_access
+
+        def store_location
+          session[:return_to] = request.request_uri
+        end
+        private :store_location
+
+        def unauthorized_path
+          "/"
+        end
+        private :unauthorized_path
+      end
+    end
+  end
+end

data/lib/zuul/valid_roles.rb

@@ -0,0 +1,37 @@
+module Zuul
+  module ValidRoles
+    def self.included(base)
+      base.extend ClassMethods
+    end
+
+    module ClassMethods
+      def valid_roles(*roles)
+        attr_protected :role
+        write_inheritable_attribute(:roles, roles)
+        include InstanceMethods
+      end
+    end
+
+    module InstanceMethods
+      def self.included(base)
+        base.read_inheritable_attribute(:roles).each do |role|
+          class_eval <<-CODE
+            def #{role}?
+              self.role.to_sym == :#{role}
+            end
+          CODE
+        end
+      end
+
+      def role
+        role_name = read_attribute(:role)
+        role_name && role_name.to_sym
+      end
+
+      def role=(role)
+        return unless self.class.read_inheritable_attribute(:roles).include?(role.to_sym)
+        write_attribute(:role, role.to_s)
+      end
+    end
+  end
+end

data/spec/rails_root/app/controllers/application_controller.rb

@@ -0,0 +1,2 @@
+class ApplicationController < ActionController::Base
+end

data/spec/rails_root/app/models/user.rb

@@ -0,0 +1,8 @@
+require 'zuul'
+class User < ActiveRecord::Base
+  include Zuul::ValidRoles
+
+  validates_presence_of :first_name, :last_name, :email
+
+  valid_roles :guest, :member, :admin
+end

data/spec/rails_root/config/boot.rb

@@ -0,0 +1,110 @@
+# Don't change this file!
+# Configure your app in config/environment.rb and config/environments/*.rb
+
+RAILS_ROOT = "#{File.dirname(__FILE__)}/.." unless defined?(RAILS_ROOT)
+
+module Rails
+  class << self
+    def boot!
+      unless booted?
+        preinitialize
+        pick_boot.run
+      end
+    end
+
+    def booted?
+      defined? Rails::Initializer
+    end
+
+    def pick_boot
+      (vendor_rails? ? VendorBoot : GemBoot).new
+    end
+
+    def vendor_rails?
+      File.exist?("#{RAILS_ROOT}/vendor/rails")
+    end
+
+    def preinitialize
+      load(preinitializer_path) if File.exist?(preinitializer_path)
+    end
+
+    def preinitializer_path
+      "#{RAILS_ROOT}/config/preinitializer.rb"
+    end
+  end
+
+  class Boot
+    def run
+      load_initializer
+      Rails::Initializer.run(:set_load_path)
+    end
+  end
+
+  class VendorBoot < Boot
+    def load_initializer
+      require "#{RAILS_ROOT}/vendor/rails/railties/lib/initializer"
+      Rails::Initializer.run(:install_gem_spec_stubs)
+      Rails::GemDependency.add_frozen_gem_path
+    end
+  end
+
+  class GemBoot < Boot
+    def load_initializer
+      self.class.load_rubygems
+      load_rails_gem
+      require 'initializer'
+    end
+
+    def load_rails_gem
+      if version = self.class.gem_version
+        gem 'rails', version
+      else
+        gem 'rails'
+      end
+    rescue Gem::LoadError => load_error
+      $stderr.puts %(Missing the Rails #{version} gem. Please `gem install -v=#{version} rails`, update your RAILS_GEM_VERSION setting in config/environment.rb for the Rails version you do have installed, or comment out RAILS_GEM_VERSION to use the latest version installed.)
+      exit 1
+    end
+
+    class << self
+      def rubygems_version
+        Gem::RubyGemsVersion rescue nil
+      end
+
+      def gem_version
+        if defined? RAILS_GEM_VERSION
+          RAILS_GEM_VERSION
+        elsif ENV.include?('RAILS_GEM_VERSION')
+          ENV['RAILS_GEM_VERSION']
+        else
+          parse_gem_version(read_environment_rb)
+        end
+      end
+
+      def load_rubygems
+        require 'rubygems'
+        min_version = '1.3.1'
+        unless rubygems_version >= min_version
+          $stderr.puts %Q(Rails requires RubyGems >= #{min_version} (you have #{rubygems_version}). Please `gem update --system` and try again.)
+          exit 1
+        end
+
+      rescue LoadError
+        $stderr.puts %Q(Rails requires RubyGems >= #{min_version}. Please install RubyGems and try again: http://rubygems.rubyforge.org)
+        exit 1
+      end
+
+      def parse_gem_version(text)
+        $1 if text =~ /^[^#]*RAILS_GEM_VERSION\s*=\s*["']([!~<>=]*\s*[\d.]+)["']/
+      end
+
+      private
+        def read_environment_rb
+          File.read("#{RAILS_ROOT}/config/environment.rb")
+        end
+    end
+  end
+end
+
+# All that for this:
+Rails.boot!

data/spec/rails_root/config/database.yml

@@ -0,0 +1,5 @@
+test:
+  adapter: sqlite3
+  database: db/test.sqlite3
+  pool: 5
+  timeout: 5000

data/spec/rails_root/config/environment.rb

@@ -0,0 +1,7 @@
+RAILS_GEM_VERSION = '2.3.4' unless defined? RAILS_GEM_VERSION
+require File.join(File.dirname(__FILE__), 'boot')
+
+Rails::Initializer.run do |config|
+  config.time_zone = 'UTC'
+end
+

data/spec/rails_root/config/environments/test.rb

@@ -0,0 +1,7 @@
+config.cache_classes = true
+config.whiny_nils = true
+config.action_controller.consider_all_requests_local = true
+config.action_controller.perform_caching             = false
+config.action_view.cache_template_loading            = true
+config.action_controller.allow_forgery_protection    = false
+config.action_mailer.delivery_method = :test

data/spec/rails_root/config/initializers/session_store.rb

@@ -0,0 +1,15 @@
+# Be sure to restart your server when you modify this file.
+
+# Your secret key for verifying cookie session data integrity.
+# If you change this key, all old sessions will become invalid!
+# Make sure the secret is at least 30 characters and all random,
+# no regular words or you'll be exposed to dictionary attacks.
+ActionController::Base.session = {
+  :key         => '_session',
+  :secret      => 'weebleswobblebuttheydontfalldown'
+}
+
+# Use the database for sessions instead of the cookie-based default,
+# which shouldn't be used to store highly confidential information
+# (create the session table with "rake db:sessions:create")
+# ActionController::Base.session_store = :active_record_store

data/spec/rails_root/config/routes.rb

@@ -0,0 +1,4 @@
+ActionController::Routing::Routes.draw do |map|
+  map.connect ':controller/:action/:id'
+  map.connect ':controller/:action/:id.:format'
+end

data/spec/rails_root/spec/controllers/require_user_spec.rb

@@ -0,0 +1,138 @@
+require File.expand_path(File.dirname(__FILE__) + '/../spec_helper')
+
+class ApplicationController
+  include Zuul::RestrictAccess
+  restrict_access
+end
+
+context "one role required for all actions" do
+  class Stock1Controller < ApplicationController
+    require_user :member
+    def index; render :text => 'index'; end
+    def show; render :text => 'show'; end
+  end
+
+  describe Stock1Controller do
+    before do
+      controller.stubs(:current_user).returns(@user = stub('user'))
+    end
+
+    it "denies someone without that role" do
+      @user.stubs(:member?).returns(false)
+      get :index
+      response.should redirect_to('/')
+    end
+    it "allows someone with that role" do
+      @user.stubs(:member?).returns(true)
+      get :index
+      response.body.should == 'index'
+    end
+    it "controls access to all actions in the controller" do
+      @user.stubs(:member?).returns(false)
+      get :index
+      response.should redirect_to('/')
+      get :show
+      response.should redirect_to('/')
+    end
+  end
+end
+
+context "one role required for only one action" do
+  class Stock2Controller < ApplicationController
+    require_user :member, :only => :show
+    def index; render :text => 'index'; end
+    def show; render :text => 'show'; end
+  end
+
+  describe Stock2Controller do
+    before do
+      controller.stubs(:current_user).returns(@user = stub('user'))
+    end
+
+    it "denies someone without that role from the protected action" do
+      @user.stubs(:member?).returns(false)
+      get :show
+      response.should redirect_to('/')
+    end
+    it "allows someone with that role into the protected action" do
+      @user.stubs(:member?).returns(true)
+      get :show
+      response.body.should == 'show'
+    end
+    it "allows anyone into the unprotected action" do
+      @user.stubs(:member?).returns(false)
+      get :index
+      response.body.should == 'index'
+    end
+  end
+end
+
+context "user with no specific role required for all actions" do
+  class Stock3Controller < ApplicationController
+    require_user
+    def index; render :text => 'index'; end
+    def show; render :text => 'show'; end
+  end
+
+  describe Stock3Controller do
+    before do
+      controller.stubs(:current_user).returns(@user = stub('user'))
+    end
+
+    it "denies access if there is no user" do
+      controller.stubs(:current_user).returns(nil)
+      get :show
+      response.should redirect_to('/')
+    end
+    it "allows access to an admin user" do
+      @user.stubs(:admin?).returns(true)
+      get :show
+      response.body.should == 'show'
+    end
+    it "allows access to a guest user" do
+      @user.stubs(:guest?).returns(true)
+      get :index
+      response.body.should == 'index'
+    end
+  end
+end
+
+context "user with no specific role required for all but one action" do
+  class Stock4Controller < ApplicationController
+    require_user :except => :show
+    def index; render :text => 'index'; end
+    def show; render :text => 'show'; end
+  end
+
+  describe Stock4Controller do
+    before do
+      controller.stubs(:current_user).returns(@user = stub('user'))
+    end
+
+    it "denies access if there is no user" do
+      controller.stubs(:current_user).returns(nil)
+      get :index
+      response.should redirect_to('/')
+    end
+    it "allows access to the unprotected action" do
+      controller.stubs(:current_user).returns(nil)
+      get :show
+      response.body.should == 'show'
+    end
+  end
+end
+
+context "cannot access the actions if there is a user" do
+  class Stock5Controller < ApplicationController
+    require_no_user
+    def index; render :text => 'index'; end
+  end
+
+  describe Stock5Controller do
+    it "denies access if there is a user" do
+      controller.stubs(:current_user).returns(@user = stub('user'))
+      get :index
+      response.should redirect_to('/')
+    end
+  end
+end

data/spec/rails_root/spec/controllers/restrict_access_spec.rb

@@ -0,0 +1,64 @@
+require File.expand_path(File.dirname(__FILE__) + '/../spec_helper')
+
+context "specifying a custom 'access denied' flash message" do
+  class ApplicationController1 < ActionController::Base
+    include Zuul::RestrictAccess
+    restrict_access :access_denied_message => "You shall not pass"
+  end
+
+  class StockController1 < ApplicationController1
+    require_user
+    def index; render :text => 'index'; end
+  end
+
+  describe StockController1 do
+    it "uses the custom message" do
+      controller.stubs(:current_user).returns(nil)
+      get :index
+      flash[:notice].should == "You shall not pass"
+    end
+  end
+end
+
+context "specifying a custom 'access denied' redirect path" do
+  class ApplicationController2 < ActionController::Base
+    include Zuul::RestrictAccess
+    restrict_access :unauthorized_redirect_path => :signin_path
+    def signin_path
+      '/signup'
+    end
+  end
+
+  class StockController2 < ApplicationController2
+    require_user
+    def index; render :text => 'index'; end
+  end
+
+  describe StockController2 do
+    it "uses the custom message" do
+      controller.stubs(:current_user).returns(nil)
+      get :index
+      response.should redirect_to('/signup')
+    end
+  end
+end
+
+context "specifying a custom 'cannot have a user' message" do
+  class ApplicationController3 < ActionController::Base
+    include Zuul::RestrictAccess
+    restrict_access :require_no_user_message => "You can't do this with a user"
+  end
+
+  class StockController3 < ApplicationController3
+    require_no_user
+    def index; render :text => 'index'; end
+  end
+
+  describe StockController3 do
+    it "uses the custom message" do
+      controller.stubs(:current_user).returns(stub('user'))
+      get :index
+      flash[:notice].should == "You can't do this with a user"
+    end
+  end
+end

data/spec/rails_root/spec/models/user_spec.rb

@@ -0,0 +1,37 @@
+require File.expand_path(File.dirname(__FILE__) + '/../spec_helper')
+
+describe User do
+  before do
+    @user = User.new
+  end
+
+  it "knows its role" do
+    @user.role = 'admin'
+    @user.admin?.should be_true
+  end
+
+  it "returns its role as a symbol" do
+    @user.role = 'admin'
+    @user.role.should == :admin
+  end
+
+  it "assigns the role if it is in the list of valid roles" do
+    @user.role = :member
+    @user.role.should == :member
+  end
+
+  it "does not assign the role if it is not in the list of valid roles" do
+    @user.role = 'admin'
+    @user.role = :superuser
+    @user.role.should == :admin
+  end
+
+  it "does not allow the role to be mass-assigned" do
+    begin
+      @user.update_attributes(:role => 'admin')
+    rescue Exception => e
+    ensure
+      @user.role.should be_nil
+    end
+  end
+end

data/spec/rails_root/spec/spec_helper.rb

@@ -0,0 +1,34 @@
+ENV["RAILS_ENV"] = "test"
+require File.expand_path(File.dirname(__FILE__) + "/../config/environment")
+require 'spec'
+require 'spec/rails'
+
+Spec::Runner.configure do |config|
+  config.use_transactional_fixtures = true
+  config.use_instantiated_fixtures  = false
+  config.fixture_path = RAILS_ROOT + '/spec/fixtures/'
+  config.global_fixtures = :all
+  config.mock_with :mocha
+end
+
+ActiveRecord::Base.establish_connection(
+  :adapter  => 'sqlite3',
+  :database => File.join(File.dirname(__FILE__), '../db/test.sqlite3')
+)
+
+class CreateSchema < ActiveRecord::Migration
+  def self.up
+    create_table :users, :force => true do |t|
+      t.string  :first_name
+      t.string  :last_name
+      t.string  :email
+      t.string  :username
+      t.string  :role
+    end
+  end
+end
+
+CreateSchema.suppress_messages { CreateSchema.migrate(:up) }
+
+class ActiveSupport::TestCase
+end

data/zuul.gemspec

@@ -0,0 +1,78 @@
+# Generated by jeweler
+# DO NOT EDIT THIS FILE DIRECTLY
+# Instead, edit Jeweler::Tasks in Rakefile, and run the gemspec command
+# -*- encoding: utf-8 -*-
+
+Gem::Specification.new do |s|
+  s.name = %q{zuul}
+  s.version = "0.1.0"
+
+  s.required_rubygems_version = Gem::Requirement.new(">= 0") if s.respond_to? :required_rubygems_version=
+  s.authors = ["Wes Gibbs"]
+  s.date = %q{2009-11-01}
+  s.description = %q{A simple authorization solution for Rails apps.}
+  s.email = %q{wes@hashrocket.com}
+  s.extra_rdoc_files = [
+    "LICENSE",
+     "README.rdoc"
+  ]
+  s.files = [
+    ".document",
+     ".gitignore",
+     "LICENSE",
+     "README.rdoc",
+     "Rakefile",
+     "VERSION",
+     "lib/zuul.rb",
+     "lib/zuul/restrict_access.rb",
+     "lib/zuul/valid_roles.rb",
+     "zuul.gemspec"
+  ]
+  s.homepage = %q{http://github.com/wgibbs/zuul}
+  s.rdoc_options = ["--charset=UTF-8"]
+  s.require_paths = ["lib"]
+  s.rubygems_version = %q{1.3.5}
+  s.summary = %q{Simple Rails Authorization}
+  s.test_files = [
+    "spec/rails_root",
+     "spec/rails_root/app",
+     "spec/rails_root/app/controllers",
+     "spec/rails_root/app/controllers/application_controller.rb",
+     "spec/rails_root/app/models",
+     "spec/rails_root/app/models/user.rb",
+     "spec/rails_root/config",
+     "spec/rails_root/config/boot.rb",
+     "spec/rails_root/config/database.yml",
+     "spec/rails_root/config/environment.rb",
+     "spec/rails_root/config/environments",
+     "spec/rails_root/config/environments/test.rb",
+     "spec/rails_root/config/initializers",
+     "spec/rails_root/config/initializers/session_store.rb",
+     "spec/rails_root/config/routes.rb",
+     "spec/rails_root/db",
+     "spec/rails_root/db/test.sqlite3",
+     "spec/rails_root/log",
+     "spec/rails_root/log/test.log",
+     "spec/rails_root/spec",
+     "spec/rails_root/spec/controllers",
+     "spec/rails_root/spec/controllers/require_user_spec.rb",
+     "spec/rails_root/spec/controllers/restrict_access_spec.rb",
+     "spec/rails_root/spec/models",
+     "spec/rails_root/spec/models/user_spec.rb",
+     "spec/rails_root/spec/spec_helper.rb"
+  ]
+
+  if s.respond_to? :specification_version then
+    current_version = Gem::Specification::CURRENT_SPECIFICATION_VERSION
+    s.specification_version = 3
+
+    if Gem::Version.new(Gem::RubyGemsVersion) >= Gem::Version.new('1.2.0') then
+      s.add_development_dependency(%q<rspec>, [">= 1.2.9"])
+    else
+      s.add_dependency(%q<rspec>, [">= 1.2.9"])
+    end
+  else
+    s.add_dependency(%q<rspec>, [">= 1.2.9"])
+  end
+end
+

metadata

@@ -0,0 +1,87 @@
+--- !ruby/object:Gem::Specification 
+name: zuul
+version: !ruby/object:Gem::Version 
+  version: 0.1.0
+platform: ruby
+authors: 
+- Wes Gibbs
+autorequire: 
+bindir: bin
+cert_chain: []
+
+date: 2009-11-01 00:00:00 -04:00
+default_executable: 
+dependencies: 
+- !ruby/object:Gem::Dependency 
+  name: rspec
+  type: :development
+  version_requirement: 
+  version_requirements: !ruby/object:Gem::Requirement 
+    requirements: 
+    - - ">="
+      - !ruby/object:Gem::Version 
+        version: 1.2.9
+    version: 
+description: A simple authorization solution for Rails apps.
+email: wes@hashrocket.com
+executables: []
+
+extensions: []
+
+extra_rdoc_files: 
+- LICENSE
+- README.rdoc
+files: 
+- .document
+- .gitignore
+- LICENSE
+- README.rdoc
+- Rakefile
+- VERSION
+- lib/zuul.rb
+- lib/zuul/restrict_access.rb
+- lib/zuul/valid_roles.rb
+- zuul.gemspec
+has_rdoc: true
+homepage: http://github.com/wgibbs/zuul
+licenses: []
+
+post_install_message: 
+rdoc_options: 
+- --charset=UTF-8
+require_paths: 
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement 
+  requirements: 
+  - - ">="
+    - !ruby/object:Gem::Version 
+      version: "0"
+  version: 
+required_rubygems_version: !ruby/object:Gem::Requirement 
+  requirements: 
+  - - ">="
+    - !ruby/object:Gem::Version 
+      version: "0"
+  version: 
+requirements: []
+
+rubyforge_project: 
+rubygems_version: 1.3.5
+signing_key: 
+specification_version: 3
+summary: Simple Rails Authorization
+test_files: 
+- spec/rails_root/app/controllers/application_controller.rb
+- spec/rails_root/app/models/user.rb
+- spec/rails_root/config/boot.rb
+- spec/rails_root/config/database.yml
+- spec/rails_root/config/environment.rb
+- spec/rails_root/config/environments/test.rb
+- spec/rails_root/config/initializers/session_store.rb
+- spec/rails_root/config/routes.rb
+- spec/rails_root/db/test.sqlite3
+- spec/rails_root/log/test.log
+- spec/rails_root/spec/controllers/require_user_spec.rb
+- spec/rails_root/spec/controllers/restrict_access_spec.rb
+- spec/rails_root/spec/models/user_spec.rb
+- spec/rails_root/spec/spec_helper.rb