Class: ProxES::RequestPolicy

Inherits:

Object

• Object
• ProxES::RequestPolicy

Includes:

Helpers::Indices

Defined in:

lib/proxes/policies/request_policy.rb

Direct Known Subclasses

ProxES::Request::BulkPolicy, ProxES::Request::CatPolicy, ProxES::Request::CreatePolicy, ProxES::Request::IndexPolicy, ProxES::Request::RootPolicy, ProxES::Request::SearchPolicy, ProxES::Request::SnapshotPolicy, ProxES::Request::StatsPolicy

Defined Under Namespace

Classes: Scope

Instance Attribute Summary

• #record ⇒ Object (also: #request) readonly

  Returns the value of attribute record.

• #user ⇒ Object readonly

  Returns the value of attribute user.

Instance Method Summary

• #action_allowed?(action) ⇒ Boolean
• #index_allowed? ⇒ Boolean
• #initialize(user, record) ⇒ RequestPolicy constructor

  A new instance of RequestPolicy.

• #logger ⇒ Object
• #method_missing(method_sym, *arguments, &block) ⇒ Object
• #patterns_for(action) ⇒ Object
• #respond_to_missing?(name, _include_private = false) ⇒ Boolean

Methods included from Helpers::Indices

#filter

Constructor Details

#initialize(user, record) ⇒ RequestPolicy

# File 'lib/proxes/policies/request_policy.rb', line 14

def initialize(user, record)
  @user = user
  @record = record
end

Dynamic Method Handling

This class handles dynamic methods through the method_missing method

#method_missing(method_sym, *arguments, &block) ⇒ Object

# File 'lib/proxes/policies/request_policy.rb', line 19

def method_missing(method_sym, *arguments, &block)
  return super if method_sym.to_s[-1] != '?'

  return false if request.indices? && !index_allowed?
  action_allowed? method_sym[0..-2].upcase
end

Instance Attribute Details

#record ⇒ Object (readonly) Also known as: request

Returns the value of attribute record.

# File 'lib/proxes/policies/request_policy.rb', line 11

def record
  @record
end

#user ⇒ Object (readonly)

Returns the value of attribute user.

# File 'lib/proxes/policies/request_policy.rb', line 11

def user
  @user
end

Instance Method Details

#action_allowed?(action) ⇒ Boolean

# File 'lib/proxes/policies/request_policy.rb', line 37

def action_allowed?(action)
  # Give me all the user's permissions that match the verb
  patterns_for(action).each do |permission|
    return true if request.path =~ /#{permission.pattern}/
  end
  false
end

#index_allowed? ⇒ Boolean

# File 'lib/proxes/policies/request_policy.rb', line 30

def index_allowed?
  patterns = patterns_for('INDEX').map do |permission|
    permission.pattern.gsub(/\{user.(.*)\}/) { |_match| user.send(Regexp.last_match[1].to_sym) }
  end
  filter(request.index, patterns).count > 0
end

#logger ⇒ Object

# File 'lib/proxes/policies/request_policy.rb', line 50

def logger
  @logger ||= Ditty::Services::Logger.instance
end

#patterns_for(action) ⇒ Object

# File 'lib/proxes/policies/request_policy.rb', line 45

def patterns_for(action)
  return Permission.for_user(user, action) if user
  []
end

#respond_to_missing?(name, _include_private = false) ⇒ Boolean

# File 'lib/proxes/policies/request_policy.rb', line 26

def respond_to_missing?(name, _include_private = false)
  name[-1] == '?'
end