Module: Guachiman::Permissible

Extended by:

ActiveSupport::Concern

Defined in:

lib/guachiman/rails/permissible.rb

Instance Method Summary

• #authorize ⇒ Object
• #current_permission ⇒ Object
• #current_resource ⇒ Object
• #current_user ⇒ Object
• #not_authorized ⇒ Object
• #not_signed_in ⇒ Object
• #render_unauthorized ⇒ Object

Instance Method Details

#authorize ⇒ Object

# File 'lib/guachiman/rails/permissible.rb', line 24

def authorize
  if current_permission.allow? controller_name, action_name, current_resource
    current_permission.permit_params! params
  else
    if request.get? && !request.xhr?
      current_user ? not_authorized : not_signed_in
    else
      render_unauthorized
    end
  end
end

#current_permission ⇒ Object

# File 'lib/guachiman/rails/permissible.rb', line 16

def current_permission
  @current_permission ||= Permission.new current_user, request
end

#current_resource ⇒ Object

# File 'lib/guachiman/rails/permissible.rb', line 20

def current_resource
  nil
end

#current_user ⇒ Object

# File 'lib/guachiman/rails/permissible.rb', line 12

def current_user
  raise 'This method must be implemented'
end

#not_authorized ⇒ Object

# File 'lib/guachiman/rails/permissible.rb', line 36

def not_authorized
  redirect_to root_path, alert: t('flashes.not_authorized')
end

#not_signed_in ⇒ Object

# File 'lib/guachiman/rails/permissible.rb', line 40

def not_signed_in
  session[:next] = request.url
  redirect_to sign_in_path, alert: t('flashes.please_sign_in')
end

#render_unauthorized ⇒ Object

# File 'lib/guachiman/rails/permissible.rb', line 45

def render_unauthorized
  render text: "NO", status: :unauthorized
end