Class: Permission::Base

Inherits:

Object

• Object
• Permission::Base

Extended by:

Forwardable

Defined in:

lib/permission/base.rb

Constant Summary

DEFAULT_FINDERS =

/^((find|with).*|first|last|all|children|paginate|scoped|count)$/

DEFAULT_SEARCHES =

/^search_.*/

Instance Attribute Summary

• #object ⇒ Object

  Returns the value of attribute object.

• #user ⇒ Object

  Returns the value of attribute user.

Instance Method Summary

• #attributes ⇒ Object
• #can_read?(attr_name) ⇒ Boolean
• #can_write?(attr_name) ⇒ Boolean
• #initialize(params) ⇒ Base constructor

  A new instance of Base.

• #method_missing(method, *args) ⇒ Object
• #read_attribute(attr_name) ⇒ Object
• #update_attribute(name, value) ⇒ Object
• #update_attributes(attributes) ⇒ Object
• #write_attribute(attr_name, value) ⇒ Object

Constructor Details

#initialize(params) ⇒ Base

Returns a new instance of Base.

# File 'lib/permission/base.rb', line 18

def initialize(params)
  @user = params[:user]
  @object = params[:object]
end

Dynamic Method Handling

This class handles dynamic methods through the method_missing method

#method_missing(method, *args) ⇒ Object

# File 'lib/permission/base.rb', line 23

def method_missing(method, *args)
  object.send(method, *args)
end

Instance Attribute Details

#object ⇒ Object

Returns the value of attribute object.

# File 'lib/permission/base.rb', line 13

def object
  @object
end

#user ⇒ Object

Returns the value of attribute user.

# File 'lib/permission/base.rb', line 13

def user
  @user
end

Instance Method Details

#attributes ⇒ Object

# File 'lib/permission/base.rb', line 39

def attributes
  object.attributes.reject{|key,value| !can_read?(key) }
end

#can_read?(attr_name) ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/permission/base.rb', line 59

def can_read?(attr_name)
  true
end

#can_write?(attr_name) ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/permission/base.rb', line 63

def can_write?(attr_name)
  true
end

#read_attribute(attr_name) ⇒ Object

# File 'lib/permission/base.rb', line 43

def read_attribute(attr_name)
  if can_read?(attr_name)
    object.read_attribute(attr_name)
  else
    raise PermissionException.new "#{user} does not have permission to access #{attr_name} on #{object}"
  end
end

#update_attribute(name, value) ⇒ Object

# File 'lib/permission/base.rb', line 27

def update_attribute(name, value)
  if can_write?(name)
    object.update_attribute(name, value)
  else
    raise PermissionException.new "#{user} does not have permission to access #{name} on #{object}"
  end
end

#update_attributes(attributes) ⇒ Object

# File 'lib/permission/base.rb', line 35

def update_attributes(attributes)
  object.update_attributes(attributes.reject{|key,value| !can_write?(key) })
end

#write_attribute(attr_name, value) ⇒ Object

# File 'lib/permission/base.rb', line 51

def write_attribute(attr_name, value)
  if can_write?(attr_name)
    object.write_attribute(attr_name, value)
  else
    raise PermissionException.new "#{user} does not have permission to access #{attr_name} on #{object}"
  end
end