Class: ActionAuthorization::Resource

Inherits:

Object

• Object
• ActionAuthorization::Resource

Defined in:

lib/authorizer/resource.rb

Overview

This class represents a generic list of models that are about to authorized.

It is instantiated automatically by ActionController::Metal#check_authorization and there should be little need to instantiate it directly.

Instance Attribute Summary

• #action ⇒ String, Symbol readonly

  The action which :actor is attempting to complete.

• #actor ⇒ Model readonly

  The model attempting authorization (usually a User).

• #options ⇒ Object readonly

  The options which are being used for authorization.

• #resources ⇒ Object readonly

  The list of models being authorized.

Instance Method Summary

• #get ⇒ Object

  Returns the list of models passed into the constructor if the list passes authorization, otherwise raises ForbiddenError.

• #initialize(action, actor, *resources, **options) ⇒ Resource constructor

  Creates a new instance of Resource.

Constructor Details

#initialize(action, actor, *resources, **options) ⇒ Resource

Creates a new instance of Resource.

Parameters:

• action (String, Symbol) —

  The name of the action being performed.

• actor (Model) —

  The model attempting authorization.

• *resources (Model) —

  The list of models being authorized.

• **options —

  Any additional options regarding the authorization options.

# File 'lib/authorizer/resource.rb', line 30

def initialize(action, actor, *resources, **options)
    @action = action
    @actor = actor
    @resources = resources
    @options = options
end

Instance Attribute Details

#action ⇒ String, Symbol (readonly)

Returns The action which :actor is attempting to complete.

Returns:

• (String, Symbol) —

  The action which :actor is attempting to complete.

# File 'lib/authorizer/resource.rb', line 12

def action
  @action
end

#actor ⇒ Model (readonly)

Returns The model attempting authorization (usually a User).

Returns:

• (Model) —

  The model attempting authorization (usually a User).

# File 'lib/authorizer/resource.rb', line 15

def actor
  @actor
end

#options ⇒ Object (readonly)

Returns The options which are being used for authorization.

Returns:

• The options which are being used for authorization.

# File 'lib/authorizer/resource.rb', line 21

def options
  @options
end

#resources ⇒ Object (readonly)

Returns The list of models being authorized.

Returns:

• The list of models being authorized.

# File 'lib/authorizer/resource.rb', line 18

def resources
  @resources
end

Instance Method Details

#get ⇒ Object

Returns the list of models passed into the constructor if the list passes authorization, otherwise raises ForbiddenError.

# File 'lib/authorizer/resource.rb', line 42

def get
  return @resources if @resources.nil?
  return @resources if @resources.length == 0
  
  behavior = @options[:behavior]
  if !behavior
      behavior = :filter
  end
  
  case behavior
  when :allow_all
      collect_permitted(return_res: true) {|results| results.length > 0}
  when :deny_all
      collect_permitted {|results| results.length == @resources.length}
  when :filter
      collect_permitted {|results| results.length > 0}
  else
    collect_permitted {|results| results.length > 0}
  end
end