Class: Decidim::ActionAuthorizer

Inherits:

Object

Object
Decidim::ActionAuthorizer

show all

Includes:: Wisper::Publisher

Defined in:: app/services/decidim/action_authorizer.rb

Overview

This class is used to authorize a user against an action in the context of a feature.

Defined Under Namespace

Classes: AuthorizationError, AuthorizationStatus

Instance Method Summary collapse

#authorize ⇒ Object

Public: Broadcasts different events given the status of the authentication.
#initialize(user, feature, action) ⇒ ActionAuthorizer constructor

Initializes the ActionAuthorizer.

Constructor Details

#initialize(user, feature, action) ⇒ `ActionAuthorizer`

Initializes the ActionAuthorizer.

user - The user to authorize against. feature - The feature to authenticate against. action - The action to authenticate.

# File 'app/services/decidim/action_authorizer.rb', line 14

def initialize(user, feature, action)
  @user = user
  @feature = feature
  @action = action.to_s if action
end

Instance Method Details

#authorize ⇒ `Object`

Public: Broadcasts different events given the status of the authentication.

Broadcasts:

failed       - When no valid authorization can be found.
unauthorized - When an authorization was found, but didn't match the credentials.
incomplete   - An authorization was found, but lacks some required fields. User
               should re-authenticate.

Returns nil.

# File 'app/services/decidim/action_authorizer.rb', line 29

def authorize
  status_code, fields = *status_data

  status(status_code, fields || {})
end