Module: Zuul::ActiveRecord::ClassMethods

Defined in:

lib/zuul/active_record.rb

Class Method Summary

• .extended(base) ⇒ Object

Instance Method Summary

• #acts_as_authorization_context(args = {}, &block) ⇒ Object

  Configure the model to act as a zuul authorization context (or resource).

• #acts_as_authorization_context? ⇒ Boolean

  Checks if the model is setup to act as a zuul authorization context/resource.

• #acts_as_authorization_model(args = {}, &block) ⇒ Object

  Includes auth methods into the model and configures auth options and scopes.

• #acts_as_authorization_permission(args = {}, &block) ⇒ Object

  Configure the model to act as a zuul authorization permission.

• #acts_as_authorization_permission? ⇒ Boolean

  Checks if the model is setup to act as a zuul authorization permission.

• #acts_as_authorization_permission_role(args = {}, &block) ⇒ Object

  Configure the model to act as a zuul joining model for roles and subjects.

• #acts_as_authorization_permission_subject(args = {}, &block) ⇒ Object

  Configure the model to act as a zuul joining model for roles and subjects.

• #acts_as_authorization_role(args = {}, &block) ⇒ Object

  Configure the model to act as a zuul authorization role.

• #acts_as_authorization_role? ⇒ Boolean

  Checks if the model is setup to act as a zuul authorization role.

• #acts_as_authorization_role_subject(args = {}, &block) ⇒ Object

  Configure the model to act as a zuul joining model for roles and subjects.

• #acts_as_authorization_subject(args = {}, &block) ⇒ Object

  Configure the model to act as a zuul authorization subject.

• #acts_as_authorization_subject? ⇒ Boolean

  Checks if the model is setup to act as a zuul authorization subject.

• #prepare_join_classes(scope) ⇒ Object

  Sets up the join models for a newly defined scope.

Class Method Details

.extended(base) ⇒ Object

# File 'lib/zuul/active_record.rb', line 18

def self.extended(base)
end

Instance Method Details

#acts_as_authorization_context(args = {}, &block) ⇒ Object

Configure the model to act as a zuul authorization context (or resource)

The args parameter is an optional hash of configuration options.

# File 'lib/zuul/active_record.rb', line 64

def acts_as_authorization_context(args={}, &block)
  scope = acts_as_authorization_model(args, &block)
  prepare_join_classes scope.name
  include Context
end

#acts_as_authorization_context? ⇒ Boolean

Checks if the model is setup to act as a zuul authorization context/resource

Returns:

• (Boolean)

# File 'lib/zuul/active_record.rb', line 131

def acts_as_authorization_context?
  ancestors.include?(Zuul::ActiveRecord::Context)
end

#acts_as_authorization_model(args = {}, &block) ⇒ Object

Includes auth methods into the model and configures auth options and scopes

The args parameter is an optional hash of configuration options.

# File 'lib/zuul/active_record.rb', line 24

def acts_as_authorization_model(args={}, &block)
  include AuthorizationMethods
  auth_config = Zuul.configuration.clone.configure(args, &block)
  @auth_scopes ||= {}
  raise "Scope already in use: #{auth_config.scope}" if @auth_scopes.has_key?(auth_config.scope)
  @auth_scopes[auth_config.scope] = Scope.new(auth_config)
  @auth_scopes[:default] ||= @auth_scopes[auth_config.scope]
  @auth_scopes[auth_config.scope]
end

#acts_as_authorization_permission(args = {}, &block) ⇒ Object

Configure the model to act as a zuul authorization permission

The args parameter is an optional hash of configuration options.

# File 'lib/zuul/active_record.rb', line 46

def acts_as_authorization_permission(args={}, &block)
  scope = acts_as_authorization_model(args.merge({:permission_class => self.name}), &block)
  prepare_join_classes scope.name
  include Permission
end

#acts_as_authorization_permission? ⇒ Boolean

Checks if the model is setup to act as a zuul authorization permission

Returns:

• (Boolean)

# File 'lib/zuul/active_record.rb', line 126

def acts_as_authorization_permission?
  ancestors.include?(Zuul::ActiveRecord::Permission)
end

#acts_as_authorization_permission_role(args = {}, &block) ⇒ Object

Configure the model to act as a zuul joining model for roles and subjects

The args parameter is an optional hash of configuration options.

# File 'lib/zuul/active_record.rb', line 73

def acts_as_authorization_permission_role(args={}, &block)
  scope = acts_as_authorization_model(args.merge({:permission_role_class => self.name}), &block)
  include PermissionRole
end

#acts_as_authorization_permission_subject(args = {}, &block) ⇒ Object

Configure the model to act as a zuul joining model for roles and subjects

The args parameter is an optional hash of configuration options.

# File 'lib/zuul/active_record.rb', line 81

def acts_as_authorization_permission_subject(args={}, &block)
  scope = acts_as_authorization_model(args.merge({:permission_subject_class => self.name}), &block)
  include PermissionSubject
end

#acts_as_authorization_role(args = {}, &block) ⇒ Object

Configure the model to act as a zuul authorization role

The args parameter is an optional hash of configuration options.

# File 'lib/zuul/active_record.rb', line 37

def acts_as_authorization_role(args={}, &block)
  scope = acts_as_authorization_model(args.merge({:role_class => self.name}), &block)
  prepare_join_classes scope.name
  include Role 
end

#acts_as_authorization_role? ⇒ Boolean

Checks if the model is setup to act as a zuul authorization role

Returns:

• (Boolean)

# File 'lib/zuul/active_record.rb', line 121

def acts_as_authorization_role?
  ancestors.include?(Zuul::ActiveRecord::Role)
end

#acts_as_authorization_role_subject(args = {}, &block) ⇒ Object

Configure the model to act as a zuul joining model for roles and subjects

The args parameter is an optional hash of configuration options.

# File 'lib/zuul/active_record.rb', line 89

def acts_as_authorization_role_subject(args={}, &block)
  scope = acts_as_authorization_model(args.merge({:role_subject_class => self.name}), &block)
  include RoleSubject
end

#acts_as_authorization_subject(args = {}, &block) ⇒ Object

Configure the model to act as a zuul authorization subject

The args parameter is an optional hash of configuration options.

# File 'lib/zuul/active_record.rb', line 55

def acts_as_authorization_subject(args={}, &block)
  scope = acts_as_authorization_model(args.merge({:subject_class => self.name}), &block)
  prepare_join_classes scope.name
  include Subject
end

#acts_as_authorization_subject? ⇒ Boolean

Checks if the model is setup to act as a zuul authorization subject

Returns:

• (Boolean)

# File 'lib/zuul/active_record.rb', line 136

def acts_as_authorization_subject?
  ancestors.include?(Zuul::ActiveRecord::Subject)
end

#prepare_join_classes(scope) ⇒ Object

Sets up the join models for a newly defined scope.

This is similar the the acts_as_authorization_* methods, but it handles all the joining models for a scope.

# File 'lib/zuul/active_record.rb', line 97

def prepare_join_classes(scope)
  scope_config = auth_scope(scope).config

  unless auth_scope(scope).role_subject_class.ancestors.include?(RoleSubject)
    auth_scope(scope).role_subject_class.instance_eval do
      acts_as_authorization_role_subject(scope_config.to_h)
    end
  end
  
  if auth_scope(scope).config.with_permissions
    unless auth_scope(scope).permission_subject_class.ancestors.include?(PermissionSubject)
      auth_scope(scope).permission_subject_class.instance_eval do
        acts_as_authorization_permission_subject(scope_config.to_h)
      end
    end
    unless auth_scope(scope).permission_role_class.ancestors.include?(PermissionRole)
      auth_scope(scope).permission_role_class.instance_eval do
        acts_as_authorization_permission_role(scope_config.to_h)
      end
    end
  end
end