Class: Permit

Inherits:

Object

• Object
• Permit

Defined in:

lib/permit.rb

Constant Summary

DEFAULT_API_URL =

'https://api.permit.io'.freeze

DEFAULT_PDP_URL =

'http://localhost:7766'.freeze

DEFAULT_TENANT =

"default"

Instance Attribute Summary

• #api ⇒ Object

  Returns the value of attribute api.

• #config ⇒ Object

  Returns the value of attribute config.

• #elements ⇒ Object

  Returns the value of attribute elements.

• #enforcement ⇒ Object

  Returns the value of attribute enforcement.

• #logger ⇒ Object

  Returns the value of attribute logger.

Instance Method Summary

• #check(user, action, resource, context = {}) ⇒ Object
• #initialize(token, api_url = DEFAULT_API_URL, pdp_url = DEFAULT_PDP_URL, debug = false, logger = Logger.new(STDOUT)) ⇒ Permit constructor

  A new instance of Permit.

• #sync_user(user) ⇒ Object

Constructor Details

#initialize(token, api_url = DEFAULT_API_URL, pdp_url = DEFAULT_PDP_URL, debug = false, logger = Logger.new(STDOUT)) ⇒ Permit

Returns a new instance of Permit.

# File 'lib/permit.rb', line 12

def initialize(token, api_url = DEFAULT_API_URL, pdp_url = DEFAULT_PDP_URL, debug = false, logger = Logger.new(STDOUT))
  @config = PermitConfig.new(token, api_url, pdp_url, nil, debug, logger)
  @api = PermitApiClient.new(@config, logger)
  # @elements = PermitElements.new
  # @enforcement = PermitEnforcer.new
end

Instance Attribute Details

#api ⇒ Object

Returns the value of attribute api.

# File 'lib/permit.rb', line 7

def api
  @api
end

#config ⇒ Object

Returns the value of attribute config.

# File 'lib/permit.rb', line 7

def config
  @config
end

#elements ⇒ Object

Returns the value of attribute elements.

# File 'lib/permit.rb', line 7

def elements
  @elements
end

#enforcement ⇒ Object

Returns the value of attribute enforcement.

# File 'lib/permit.rb', line 7

def enforcement
  @enforcement
end

#logger ⇒ Object

Returns the value of attribute logger.

# File 'lib/permit.rb', line 7

def logger
  @logger
end

Instance Method Details

#check(user, action, resource, context = {}) ⇒ Object

# File 'lib/permit.rb', line 19

def check(user, action, resource, context = {})
  normalized_user = if user.is_a?(String)
                      { key: user }
                    else
                      user
                    end
  normalized_resource = if resource.is_a?(String)
                          { type: resource.split(":").first, key: resource.split(":").last, tenant: DEFAULT_TENANT }
                        else
                          resource
                        end

  input = {
    user: normalized_user,
    action: action,
    resource: normalized_resource,
    context: context
  }
  uri = URI("#{self.config.pdp_url}/allowed")
  req = Net::HTTP::Post.new(uri, 'Content-Type' => 'application/json')
  req['Authorization'] = "Bearer #{config.token}"
  req.body = input.to_json

  res = Net::HTTP.start(uri.hostname, uri.port, use_ssl: uri.scheme == 'https') do |http|
    http.request(req)
  end

  if res.code != '200'
    raise "Permit SDK got unexpected status code: #{res.code}, please check your Permit SDK class init and PDP container are configured correctly. \nRead more about setting up the PDP at https://docs.permit.io/reference/SDKs/Ruby/quickstart_ruby"
  end

  content = JSON.parse(res.body)
  content["allow"]

end

#sync_user(user) ⇒ Object

# File 'lib/permit.rb', line 55

def sync_user(user)
  self.api.users.sync_user(user)
end