Module: Authority

Defined in:

lib/authority.rb,
lib/authority/railtie.rb,
lib/authority/version.rb,
lib/authority/abilities.rb,
lib/authority/authorizer.rb,
lib/authority/controller.rb,
lib/authority/configuration.rb,
lib/authority/user_abilities.rb,
lib/authority/security_violation.rb,
lib/generators/authority/install_generator.rb

Defined Under Namespace

Modules: Abilities, Controller, Generators, UserAbilities Classes: Authorizer, Configuration, NoAuthorizerError, Railtie, SecurityViolation

Constant Summary

VERSION =

"2.5.0"

Class Attribute Summary

• .configuration ⇒ Object

  Returns the value of attribute configuration.

Class Method Summary

• .abilities ⇒ Hash

  NOTE: once this method is called, the library has started meta programming and abilities should no longer be modified.

• .action_authorized?(action, resource, user, options = {}) ⇒ Boolean
• .adjectives ⇒ Array

  Values from adjectives method.

• .configure {|configuration| ... } ⇒ Object
• .enforce(action, resource, user, options = {}) ⇒ Model

  Resource instance.

• .logger ⇒ Object
• .verbs ⇒ Array

  Keys from adjectives method.

Class Attribute Details

.configuration ⇒ Object

Returns the value of attribute configuration.

# File 'lib/authority.rb', line 47

def configuration
  @configuration
end

Class Method Details

.abilities ⇒ Hash

NOTE: once this method is called, the library has started meta programming and abilities should no longer be modified

Returns:

• (Hash) —

  list of abilities, mapping verbs and adjectives, like :create => ‘creatable’

# File 'lib/authority.rb', line 14

def self.abilities
  configuration.abilities.freeze
end

.action_authorized?(action, resource, user, options = {}) ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/authority.rb', line 41

def self.action_authorized?(action, resource, user, options = {})
  resource_and_maybe_options = [resource, options].tap {|args| args.pop if args.last == {}}
  user.send("can_#{action}?", *resource_and_maybe_options)
end

.adjectives ⇒ Array

Returns values from adjectives method.

Returns:

• (Array) —

  values from adjectives method

# File 'lib/authority.rb', line 24

def self.adjectives
  abilities.values
end

.configure {|configuration| ... } ⇒ Object

Yields:

• (configuration)

# File 'lib/authority.rb', line 50

def self.configure
  self.configuration ||= Configuration.new
  yield(configuration) if block_given?
  require_authority_internals!

  configuration
end

.enforce(action, resource, user, options = {}) ⇒ Model

Returns resource instance.

Parameters:

• action (Symbol)
• resource (Model) —

  instance

• user (User) —

  instance

• options, (Hash) —

  arbitrary options hash to delegate to the authorizer

Returns:

• (Model) —

  resource instance

Raises:

• (SecurityViolation) —

  if user is not allowed to perform action on resource

# File 'lib/authority.rb', line 34

def self.enforce(action, resource, user, options = {})
  unless action_authorized?(action, resource, user, options)
    raise SecurityViolation.new(user, action, resource) 
  end
  resource
end

.logger ⇒ Object

# File 'lib/authority.rb', line 58

def self.logger
  @logger ||= configuration.logger
end

.verbs ⇒ Array

Returns keys from adjectives method.

Returns:

• (Array) —

  keys from adjectives method

# File 'lib/authority.rb', line 19

def self.verbs
  abilities.keys
end