Module: Authorization

Defined in:
lib/declarative_authorization/helper.rb,
lib/declarative_authorization/reader.rb,
lib/declarative_authorization/in_model.rb,
lib/declarative_authorization/maintenance.rb,
lib/declarative_authorization/authorization.rb,
lib/declarative_authorization/in_controller.rb,
lib/declarative_authorization/obligation_scope.rb,
lib/declarative_authorization/development_support/analyzer.rb,
lib/declarative_authorization/development_support/change_analyzer.rb,
lib/declarative_authorization/development_support/change_supporter.rb,
lib/declarative_authorization/development_support/development_support.rb

Defined Under Namespace

Modules: AuthorizationHelper, AuthorizationInController, AuthorizationInModel, DevelopmentSupport, Maintenance, Reader, TestHelper Classes: Attribute, AttributeAuthorizationError, AttributeWithPermission, AuthorizationError, AuthorizationRule, AuthorizationUsageError, ControllerPermission, Engine, GuestUser, NilAttributeValueError, NotAuthorized, ObligationScope

Constant Summary collapse

AUTH_DSL_FILES =
["config/authorization_rules.rb"]
@@dot_path =
"dot"

Class Method Summary collapse

Class Method Details

.activate_authorization_rules_browser?Boolean

:nodoc:

Returns:

  • (Boolean)


48
49
50
# File 'lib/declarative_authorization/authorization.rb', line 48

def self.activate_authorization_rules_browser? # :nodoc:
  ::Rails.env.development?
end

.current_userObject

Controller-independent method for retrieving the current user. Needed for model security where the current controller is not available.



33
34
35
# File 'lib/declarative_authorization/authorization.rb', line 33

def self.current_user
  Thread.current["current_user"] || GuestUser.new
end

.current_user=(user) ⇒ Object

Controller-independent method for setting the current user.



38
39
40
# File 'lib/declarative_authorization/authorization.rb', line 38

def self.current_user=(user)
  Thread.current["current_user"] = user
end

.dot_pathObject



53
54
55
# File 'lib/declarative_authorization/authorization.rb', line 53

def self.dot_path
  @@dot_path
end

.dot_path=(path) ⇒ Object



57
58
59
# File 'lib/declarative_authorization/authorization.rb', line 57

def self.dot_path= (path)
  @@dot_path = path
end

.ignore_access_control(state = nil) ⇒ Object

For use in test cases only



43
44
45
46
# File 'lib/declarative_authorization/authorization.rb', line 43

def self.ignore_access_control (state = nil) # :nodoc:
  Thread.current["ignore_access_control"] = state unless state.nil?
  Thread.current["ignore_access_control"] || false
end