Class: ProxES::RequestPolicy

Inherits:

Object

Object
ProxES::RequestPolicy

show all

Includes:: Helpers::Indices

Defined in:: lib/proxes/policies/request_policy.rb

Direct Known Subclasses

ProxES::Request::RootPolicy, ProxES::Request::SearchPolicy, ProxES::Request::SnapshotPolicy, ProxES::Request::StatsPolicy

Defined Under Namespace

Classes: Scope

Instance Attribute Summary collapse

#record ⇒ Object readonly

Returns the value of attribute record.
#user ⇒ Object readonly

Returns the value of attribute user.

Instance Method Summary collapse

#action_allowed?(action) ⇒ Boolean
#index_allowed? ⇒ Boolean
#initialize(user, record) ⇒ RequestPolicy constructor

A new instance of RequestPolicy.
#logger ⇒ Object
#method_missing(method_sym, *arguments, &block) ⇒ Object
#respond_to_missing?(name, _include_private = false) ⇒ Boolean

Methods included from Helpers::Indices

#filter

Constructor Details

#initialize(user, record) ⇒ `RequestPolicy`

Returns a new instance of RequestPolicy.

# File 'lib/proxes/policies/request_policy.rb', line 13

def initialize(user, record)
  @user = user
  @record = record
end

Dynamic Method Handling

This class handles dynamic methods through the method_missing method

#method_missing(method_sym, *arguments, &block) ⇒ `Object`

# File 'lib/proxes/policies/request_policy.rb', line 18

def method_missing(method_sym, *arguments, &block)
  if method_sym.to_s[-1] == '?'
    return false if user.nil?

    if record.indices?
      return true if index_allowed?
    else
      return true if action_allowed? method_sym[0..-2].upcase
    end
    false
  else
    super
  end
end

Instance Attribute Details

#record ⇒ `Object` (readonly)

Returns the value of attribute record.



11
12
13

# File 'lib/proxes/policies/request_policy.rb', line 11

def record
  @record
end

#user ⇒ `Object` (readonly)

Returns the value of attribute user.



11
12
13

# File 'lib/proxes/policies/request_policy.rb', line 11

def user
  @user
end

Instance Method Details

#action_allowed?(action) ⇒ `Boolean`

Returns:

(Boolean)

# File 'lib/proxes/policies/request_policy.rb', line 40

def action_allowed?(action)
  # Give me all the user's permissions that match the verb
  Permission.for_user(user, action).each do |permission|
    return true if record.path =~ %r{#{permission.pattern}}
  end
  false
end

#index_allowed? ⇒ `Boolean`

Returns:

(Boolean)

# File 'lib/proxes/policies/request_policy.rb', line 33

def index_allowed?
  patterns = Permission.for_user(user, 'INDEX').map do |permission|
    permission.pattern.gsub(/\{user.(.*)\}/) { |match| user.send(Regexp.last_match[1].to_sym) }
  end
  return filter(record.index, patterns).count.positive?
end

#logger ⇒ `Object`



52
53
54

# File 'lib/proxes/policies/request_policy.rb', line 52

def logger
  @logger ||= ProxES::Services::Logger.instance
end

#respond_to_missing?(name, _include_private = false) ⇒ `Boolean`

Returns:

(Boolean)



48
49
50

# File 'lib/proxes/policies/request_policy.rb', line 48

def respond_to_missing?(name, _include_private = false)
  name[-1] == '?'
end

Class: ProxES::RequestPolicy

Direct Known Subclasses

Defined Under Namespace

Instance Attribute Summary collapse

Instance Method Summary collapse

Methods included from Helpers::Indices

Constructor Details

#initialize(user, record) ⇒ RequestPolicy

Dynamic Method Handling

#method_missing(method_sym, *arguments, &block) ⇒ Object

Instance Attribute Details

#record ⇒ Object (readonly)

#user ⇒ Object (readonly)

Instance Method Details

#action_allowed?(action) ⇒ Boolean

#index_allowed? ⇒ Boolean

#logger ⇒ Object

#respond_to_missing?(name, _include_private = false) ⇒ Boolean

#initialize(user, record) ⇒ `RequestPolicy`

#method_missing(method_sym, *arguments, &block) ⇒ `Object`

#record ⇒ `Object` (readonly)

#user ⇒ `Object` (readonly)

#action_allowed?(action) ⇒ `Boolean`

#index_allowed? ⇒ `Boolean`

#logger ⇒ `Object`

#respond_to_missing?(name, _include_private = false) ⇒ `Boolean`