zuul 0.1.1 → 0.2.0

data/.document

@@ -1,5 +0,0 @@
-README.rdoc
-lib/**/*.rb
-bin/*
-features/**/*.feature
-LICENSE

data/.gitignore

@@ -1,23 +0,0 @@
-## MAC OS
-.DS_Store
-
-## TEXTMATE
-*.tmproj
-tmtags
-
-## EMACS
-*~
-\#*
-.\#*
-
-## VIM
-*.swp
-
-## PROJECT::GENERAL
-coverage
-rdoc
-pkg
-
-## PROJECT::SPECIFIC
-spec/rails_root/db/test.sqlite3
-spec/rails_root/log/*

data/LICENSE

@@ -1,20 +0,0 @@
-Copyright (c) 2009 Wes Gibbs
-
-Permission is hereby granted, free of charge, to any person obtaining
-a copy of this software and associated documentation files (the
-"Software"), to deal in the Software without restriction, including
-without limitation the rights to use, copy, modify, merge, publish,
-distribute, sublicense, and/or sell copies of the Software, and to
-permit persons to whom the Software is furnished to do so, subject to
-the following conditions:
-
-The above copyright notice and this permission notice shall be
-included in all copies or substantial portions of the Software.
-
-THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
-EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
-MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
-NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
-LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
-OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
-WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

data/README.rdoc

@@ -1,65 +0,0 @@
-=Zuul
-
-Zuul provides a simple role-based authorization framework for Rails apps.
-
-==Quick Start
-
-Zuul expects that you have a +current_user+ method available.
-
-Add a +role+ to your +users+ table.
-
-   add_column :users, :role, :string
-
-In your +User+ model, specify the valid roles.
-
-  valid_roles :guest, :member, :admin
-
-In your +ApplicationController+, enable access restrictions.
-
-  include Zuul::RestrictAccess
-  restrict_access
-
-In your controllers, specify which roles are allowed for which actions.
-
-  require_user :guest, :admin, :only => :index, :show
-
-==Examples and Options
-
-You can pass +restrict_access+ some options
-* +access_denied_message+ - The string that will be added to the flash[:notice] if the user has been denied access to an action. Defaults to "You must be logged in to access this page".
-* +require_no_user_message+ - The string that will be added to the flash[:notice] if the requested action requires there be NO user signed in and there is one. Defaults to "You must be logged out to access this page".
-* +unauthorized_redirect_path+ - The name of a method, as a symbol, that will be called to determine where to redirect someone when they have been denied access. The method is expected to return a string. The default is :unauthorized_path which returns "/".
-
-You can pass +require_user+ a list of roles and also indicate which actions to apply the restriction to using <code>:only</code> and <code>:except</code>. Some examples:
-* Restrict access to all actions for a specific role.
-
-  <code>require_user :admin</code>
-
-* Restrict access to specific actions for specific roles.
-
-  <code>require_user :guest, :admin, :only => :index, :show</code>
-
-* Require a user but don't care about the role.
-
-  <code>require_user :only => :show</code>
-
-* Don't allow access to edit or update if there is a user.
-
-  <code>require_no_user :only => :edit, :update</code>
-
-== Credits
-
-Thanks to {Les Hill}[http://github.com/leshill] for help testing the +ApplicationController+ mixins.
-
-== Note on Patches/Pull Requests
-
-* Fork the project.
-* Make your feature addition or bug fix.
-* Add tests for it. This is important so I don't break it in a
-  future version unintentionally.
-* Commit, do not mess with rakefile, version, or history. (if you want to have your own version, that is fine but bump version in a commit by itself I can ignore when I pull)
-* Send me a pull request. Bonus points for topic branches.
-
-== Copyright
-
-Copyright (c) 2009 Wes Gibbs. See LICENSE for details.

data/Rakefile

@@ -1,54 +0,0 @@
-require 'rubygems'
-require 'rake'
-
-begin
-  require 'jeweler'
-  Jeweler::Tasks.new do |gem|
-    gem.name = "zuul"
-    gem.summary = %Q{Simple Rails Authorization}
-    gem.description = %Q{A simple authorization solution for Rails apps.}
-    gem.email = "wes@hashrocket.com"
-    gem.homepage = "http://github.com/wgibbs/zuul"
-    gem.authors = ["Wes Gibbs"]
-    gem.add_development_dependency "rspec", ">= 1.2.9"
-    gem.test_files = ["spec/**/*"]
-    gem.files.exclude "spec/rails_root/**/*"
-    # gem is a Gem::Specification... see http://www.rubygems.org/read/chapter/20 for additional settings
-  end
-  Jeweler::GemcutterTasks.new
-rescue LoadError
-  puts "Jeweler (or a dependency) not available. Install it with: sudo gem install jeweler"
-end
-
-require 'rake/testtask'
-Rake::TestTask.new(:test) do |test|
-  test.libs << 'lib' << 'test'
-  test.pattern = 'teset/rails_root/test/**/test_*.rb'
-  test.verbose = true
-end
-
-require 'spec/rake/spectask'
-Spec::Rake::SpecTask.new(:spec) do |spec|
-  spec.libs << 'lib' << 'spec'
-  spec.spec_files = FileList['spec/rails_root/spec/**/*_spec.rb']
-end
-
-Spec::Rake::SpecTask.new(:rcov) do |spec|
-  spec.libs << 'lib' << 'spec'
-  spec.pattern = 'spec/**/*_spec.rb'
-  spec.rcov = true
-end
-
-task :spec => :check_dependencies
-
-task :default => :spec
-
-require 'rake/rdoctask'
-Rake::RDocTask.new do |rdoc|
-  version = File.exist?('VERSION') ? File.read('VERSION') : ""
-
-  rdoc.rdoc_dir = 'rdoc'
-  rdoc.title = "zuul #{version}"
-  rdoc.rdoc_files.include('README*')
-  rdoc.rdoc_files.include('lib/**/*.rb')
-end

data/VERSION

@@ -1 +0,0 @@
-0.1.1

data/lib/zuul/restrict_access.rb

@@ -1,104 +0,0 @@
-module Zuul
-  module RestrictAccess
-    def self.included(controller)
-      controller.extend(ClassMethods)
-    end
-
-    module ClassMethods
-      def self.extended(klass)
-        klass.cattr_accessor :access_denied_message
-        klass.cattr_accessor :require_no_user_message
-        klass.cattr_accessor :unauthorized_redirect_path
-      end
-
-      # Meant to be called from your controllers. This is
-      # where you define which roles have access to which actions in the
-      # controller. Examples:
-      # * <code>require_user :admin</code>: Restrict access to all actions for a specific role.
-      # * <code>require_user :guest, :admin, :only => :index, :show</code>: Restrict access to specific actions for specific roles.
-      # * <code>require_user :only => :show</code>: Require a user but don't care about the role.
-      def require_user(*roles)
-        options = roles.extract_options!
-        self.before_filter options do |controller|
-          controller.send(:require_user, roles)
-        end
-      end
-
-      # Tells its controller to check that there is no user
-      # before allowing someone into an action. For example:
-      # * <code>require_no_user :only => :edit, :update</code>: Don't allow access to the edit action
-      # if there is a user.
-      def require_no_user(options = {})
-        self.before_filter options do |controller|
-          controller.send(:require_no_user)
-        end
-      end
-
-      # Intended to be called by ApplicationController. It mixes
-      # in a set of instance methods that manage conferring or denying access to actions.
-      # You can customize the behavior when a user is denied access with these
-      # options:
-      # * +access_denied_message+: The string that will be added to the
-      #   flash[:notice] if the user has been denied access to an action.
-      #   Defaults to "You must be logged in to access this page".
-      # * +require_no_user_message+: The string that will be added to the
-      #   flash[:notice] if the requested action requires there be NO user signed
-      #   in and there is one. Defaults to "You must be logged out to access this
-      #   page.".
-      # * +unauthorized_redirect_path+: The name of a method, as a symbol, that
-      #   will be called to determine where to redirect someone when they have
-      #   been denied access. The method is expected to return a string. The
-      #   default is :unauthorized_path which returns "/".
-      def restrict_access(options = {})
-        self.access_denied_message = options[:access_denied_message] || "You must be logged in to access this page"
-        self.require_no_user_message = options[:require_no_user_message] || "You must be logged out to access this page"
-        self.unauthorized_redirect_path = options[:unauthorized_redirect_path] || :unauthorized_path
-        include InstanceMethods
-      end
-    end
-
-    module InstanceMethods
-      def require_user(*roles)
-        roles.flatten!
-        return true if current_user && roles.empty?
-        deny_access unless roles.any? do |role|
-          method = (role.to_s + "?").to_sym
-          if current_user && current_user.respond_to?(method)
-            current_user.send(method)
-          else
-            false
-          end
-        end
-      end
-      private :require_user
-
-      def require_no_user
-        if current_user
-          store_location
-          flash[:notice] = self.class.require_no_user_message
-          redirect_to send(self.class.unauthorized_redirect_path)
-          return false
-        end
-      end
-      private :require_no_user
-
-      def deny_access
-        store_location
-        flash[:notice] = self.class.access_denied_message
-        redirect_to send(self.class.unauthorized_redirect_path)
-        return false
-      end
-      private :deny_access
-
-      def store_location
-        session[:return_to] = request.request_uri
-      end
-      private :store_location
-
-      def unauthorized_path
-        "/"
-      end
-      private :unauthorized_path
-    end
-  end
-end

data/lib/zuul/valid_roles.rb

@@ -1,37 +0,0 @@
-module Zuul
-  module ValidRoles
-    def self.included(base)
-      base.extend ClassMethods
-    end
-
-    module ClassMethods
-      def valid_roles(*roles)
-        attr_protected :role
-        write_inheritable_attribute(:roles, roles)
-        include InstanceMethods
-      end
-    end
-
-    module InstanceMethods
-      def self.included(base)
-        base.read_inheritable_attribute(:roles).each do |role|
-          class_eval <<-CODE
-            def #{role}?
-              self.role.to_sym == :#{role}
-            end
-          CODE
-        end
-      end
-
-      def role
-        role_name = read_attribute(:role)
-        role_name && role_name.to_sym
-      end
-
-      def role=(role)
-        return unless self.class.read_inheritable_attribute(:roles).include?(role.to_sym)
-        write_attribute(:role, role.to_s)
-      end
-    end
-  end
-end

data/spec/rails_root/app/controllers/application_controller.rb

@@ -1,2 +0,0 @@
-class ApplicationController < ActionController::Base
-end

data/spec/rails_root/app/models/user.rb

@@ -1,8 +0,0 @@
-require 'zuul'
-class User < ActiveRecord::Base
-  include Zuul::ValidRoles
-
-  validates_presence_of :first_name, :last_name, :email
-
-  valid_roles :guest, :member, :admin
-end

data/spec/rails_root/config/boot.rb

@@ -1,110 +0,0 @@
-# Don't change this file!
-# Configure your app in config/environment.rb and config/environments/*.rb
-
-RAILS_ROOT = "#{File.dirname(__FILE__)}/.." unless defined?(RAILS_ROOT)
-
-module Rails
-  class << self
-    def boot!
-      unless booted?
-        preinitialize
-        pick_boot.run
-      end
-    end
-
-    def booted?
-      defined? Rails::Initializer
-    end
-
-    def pick_boot
-      (vendor_rails? ? VendorBoot : GemBoot).new
-    end
-
-    def vendor_rails?
-      File.exist?("#{RAILS_ROOT}/vendor/rails")
-    end
-
-    def preinitialize
-      load(preinitializer_path) if File.exist?(preinitializer_path)
-    end
-
-    def preinitializer_path
-      "#{RAILS_ROOT}/config/preinitializer.rb"
-    end
-  end
-
-  class Boot
-    def run
-      load_initializer
-      Rails::Initializer.run(:set_load_path)
-    end
-  end
-
-  class VendorBoot < Boot
-    def load_initializer
-      require "#{RAILS_ROOT}/vendor/rails/railties/lib/initializer"
-      Rails::Initializer.run(:install_gem_spec_stubs)
-      Rails::GemDependency.add_frozen_gem_path
-    end
-  end
-
-  class GemBoot < Boot
-    def load_initializer
-      self.class.load_rubygems
-      load_rails_gem
-      require 'initializer'
-    end
-
-    def load_rails_gem
-      if version = self.class.gem_version
-        gem 'rails', version
-      else
-        gem 'rails'
-      end
-    rescue Gem::LoadError => load_error
-      $stderr.puts %(Missing the Rails #{version} gem. Please `gem install -v=#{version} rails`, update your RAILS_GEM_VERSION setting in config/environment.rb for the Rails version you do have installed, or comment out RAILS_GEM_VERSION to use the latest version installed.)
-      exit 1
-    end
-
-    class << self
-      def rubygems_version
-        Gem::RubyGemsVersion rescue nil
-      end
-
-      def gem_version
-        if defined? RAILS_GEM_VERSION
-          RAILS_GEM_VERSION
-        elsif ENV.include?('RAILS_GEM_VERSION')
-          ENV['RAILS_GEM_VERSION']
-        else
-          parse_gem_version(read_environment_rb)
-        end
-      end
-
-      def load_rubygems
-        require 'rubygems'
-        min_version = '1.3.1'
-        unless rubygems_version >= min_version
-          $stderr.puts %Q(Rails requires RubyGems >= #{min_version} (you have #{rubygems_version}). Please `gem update --system` and try again.)
-          exit 1
-        end
-
-      rescue LoadError
-        $stderr.puts %Q(Rails requires RubyGems >= #{min_version}. Please install RubyGems and try again: http://rubygems.rubyforge.org)
-        exit 1
-      end
-
-      def parse_gem_version(text)
-        $1 if text =~ /^[^#]*RAILS_GEM_VERSION\s*=\s*["']([!~<>=]*\s*[\d.]+)["']/
-      end
-
-      private
-        def read_environment_rb
-          File.read("#{RAILS_ROOT}/config/environment.rb")
-        end
-    end
-  end
-end
-
-# All that for this:
-Rails.boot!