Class: ActiveRecord::Base

Inherits:

Object

• Object
• ActiveRecord::Base

Defined in:

lib/authorizer/active_record_patch.rb

Class Method Summary

• .define_rule(*names, &block) ⇒ Object
• .get_perms ⇒ Object
• .init_fallback_rule ⇒ Object
• .set_fallback_rule(&rule) ⇒ Object

Instance Method Summary

• #is_authorized(action, authorizee) ⇒ Object

Class Method Details

.define_rule(*names, &block) ⇒ Object

# File 'lib/authorizer/active_record_patch.rb', line 15

def self.define_rule(*names, &block)
  perms = self.get_perms
  names.each {|name| perms[name.to_sym] = block}
end

.get_perms ⇒ Object

# File 'lib/authorizer/active_record_patch.rb', line 3

def self.get_perms
  unless (self.class_variables.include?(:'@@perms'))
    @@perms = {}
  end
  init_fallback_rule
  return @@perms
end

.init_fallback_rule ⇒ Object

# File 'lib/authorizer/active_record_patch.rb', line 11

def self.init_fallback_rule
  @@fallback_rule = nil unless (self.class_variable_defined?(:@@fallback_rule))
end

.set_fallback_rule(&rule) ⇒ Object

# File 'lib/authorizer/active_record_patch.rb', line 20

def self.set_fallback_rule(&rule)
  @@fallback_rule = rule
end

Instance Method Details

#is_authorized(action, authorizee) ⇒ Object

Raises:

• (ForbiddenError)

# File 'lib/authorizer/active_record_patch.rb', line 24

def is_authorized(action, authorizee)
  symbol = action.to_sym
  perms = self.class.get_perms

  authorized = false
  authorized = perms[symbol].(self, authorizee) if perms[symbol]
  authorized = @@fallback_rule.(self, authorizee) if @@fallback_rule && !perms[symbol]

  raise ForbiddenError.new(
    "Actor #{authorizee} is not authorized to perform action #{action} on resource #{self}."
  ) unless authorized

  self
end