Class: Aclatraz::ACL

Inherits:

Object

• Object
• Aclatraz::ACL

Defined in:

lib/aclatraz/acl.rb

Defined Under Namespace

Classes: Action

Instance Attribute Summary

• #actions ⇒ Object readonly

  All actions defined in current ACL.

• #suspect ⇒ Object

  Current suspected object.

Instance Method Summary

• #[](action) ⇒ Object

  Syntactic sugar for actions actions[action].

• #clone(&block) ⇒ Object

  :nodoc:.

• #evaluate(&block) ⇒ Object

  Evaluates given block in default action.

• #initialize(suspect, &block) ⇒ ACL constructor

  :nodoc:.

• #on(action, &block) ⇒ Object

  Defines given action with permissions described in evaluated block.

• #permissions ⇒ Object

  List of permissions defined in default action.

Constructor Details

#initialize(suspect, &block) ⇒ ACL

:nodoc:

# File 'lib/aclatraz/acl.rb', line 69

def initialize(suspect, &block) # :nodoc:
  @actions = {}
  @suspect = suspect
  evaluate(&block) if block_given?
end

Instance Attribute Details

#actions ⇒ Object (readonly)

All actions defined in current ACL.

# File 'lib/aclatraz/acl.rb', line 64

def actions
  @actions
end

#suspect ⇒ Object

Current suspected object.

# File 'lib/aclatraz/acl.rb', line 67

def suspect
  @suspect
end

Instance Method Details

#[](action) ⇒ Object

Syntactic sugar for actions actions[action].

# File 'lib/aclatraz/acl.rb', line 94

def [](action)
  actions[action]
end

#clone(&block) ⇒ Object

:nodoc:

# File 'lib/aclatraz/acl.rb', line 120

def clone(&block) # :nodoc:
  actions = Hash[*self.actions.map {|k,v| [k, v.clone(self)] }.flatten]
  cloned = self.class.new(suspect)
  cloned.instance_variable_set("@actions", actions)
  cloned.evaluate(&block)
  cloned
end

#evaluate(&block) ⇒ Object

Evaluates given block in default action.

Example

evaluate do 
  allow :foo
  deny :bar
  ...
end

# File 'lib/aclatraz/acl.rb', line 84

def evaluate(&block)
  on(:_, &block)
end

#on(action, &block) ⇒ Object

Defines given action with permissions described in evaluated block.

Examples

suspects do 
  on :create do 
    deny all
    allow :admin
  end
  on :delete do 
    allow :owner_of => "object"
  end
end

Raises:

• (ArgumentError)

# File 'lib/aclatraz/acl.rb', line 111

def on(action, &block)
  raise ArgumentError, "No block given" unless block_given?
  if @actions.key?(action)
    @actions[action].instance_eval(&block)
  else
    @actions[action] = Action.new(self, &block)
  end
end

#permissions ⇒ Object

List of permissions defined in default action.

# File 'lib/aclatraz/acl.rb', line 89

def permissions
  @actions[:_] ? @actions[:_].permissions : Dictionary.new
end