Module: TentD::Model::Permissible::ClassMethods

Defined in:: lib/tentd/model/permissible.rb

Instance Method Summary collapse

Instance Method Details

#fetch_all(params) ⇒ `Object`

# File 'lib/tentd/model/permissible.rb', line 112

def fetch_all(params)
  params = Hashie::Mash.new(params) unless params.kind_of?(Hashie::Mash)

  query = []
  query_conditions = []
  query_bindings = []

  if params.return_count
    query << "SELECT COUNT(#{table_name}.*) FROM #{table_name}"
  else
    query << "SELECT #{table_name}.* FROM #{table_name}"
  end

  if params.since_id
    query_conditions << "#{table_name}.id > ?"
    query_bindings << params.since_id.to_i
  end

  if params.before_id
    query_conditions << "#{table_name}.id < ?"
    query_bindings << params.before_id.to_i
  end

  if params.entity
    query_conditions << "#{table_name}.entity IN ?"
    query_bindings << Array(params.entity)
  end

  if block_given?
    yield params, query_conditions, query_bindings
  end

  query_conditions << "#{table_name}.user_id = ?"
  query_bindings << User.current.id

  query_conditions << "#{table_name}.deleted_at IS NULL"

  query << "WHERE #{query_conditions.join(' AND ')}"

  unless params.return_count
    query << "ORDER BY id DESC" unless query.find { |q| q =~ /^order/i }

    query << "LIMIT ?"
    query_bindings << [(params.limit ? params.limit.to_i : TentD::API::PER_PAGE), TentD::API::MAX_PER_PAGE].min
  end

  if params.return_count
    DataMapper.repository(:default).adapter.send(:with_connection) do |connection|
      connection.create_command(query.join(' ')).execute_reader(*query_bindings).to_a.first['count']
    end
  else
    find_by_sql([query.join(' '), *query_bindings])
  end
end

#fetch_with_permissions(params, current_auth, &block) ⇒ `Object`

# File 'lib/tentd/model/permissible.rb', line 167

def fetch_with_permissions(params, current_auth, &block)
  params = Hashie::Mash.new(params) unless params.kind_of?(Hashie::Mash)

  query_with_permissions(current_auth, params) do |query, query_bindings|
    if params.since_id
      query << "AND #{table_name}.id > ?"
      query_bindings << params.since_id.to_i
    end

    if params.before_id
      query << "AND #{table_name}.id < ?"
      query_bindings << params.before_id.to_i
    end

    if params.entity
      query << "AND #{table_name}.entity IN ?"
      query_bindings << Array(params.entity)
    end

    if block_given?
      yield params, query, query_bindings
    end

    unless params.return_count
      query << "ORDER BY id DESC" unless query.find { |q| q =~ /^order/i }

      query << "LIMIT ?"
      query_bindings << [(params.limit ? params.limit.to_i : TentD::API::PER_PAGE), TentD::API::MAX_PER_PAGE].min
    end

    if params.return_count
      DataMapper.repository(:default).adapter.send(:with_connection) do |connection|
        connection.create_command(query.join(' ')).execute_reader(*query_bindings).to_a.first['count']
      end
    else
      find_by_sql([query.join(' '), *query_bindings])
    end
  end
end

#find_with_permissions(id, current_auth) ⇒ `Object`

# File 'lib/tentd/model/permissible.rb', line 100

def find_with_permissions(id, current_auth)
  query_with_permissions(current_auth) do |query, query_bindings|
    query << "AND #{table_name}.id = ?"
    query_bindings << id

    query << "LIMIT 1"

    records = find_by_sql([query.join(' '), *query_bindings])
    records.first
  end
end

#query_with_permissions(current_auth, params = Hashie::Mash.new) ⇒ `Object`

# File 'lib/tentd/model/permissible.rb', line 58

def query_with_permissions(current_auth, params=Hashie::Mash.new)
  query = []
  query_bindings = []

  if params.return_count
    query << "SELECT COUNT(#{table_name}.*) FROM #{table_name}"
  else
    query << "SELECT #{table_name}.* FROM #{table_name}"
  end

  if current_auth && current_auth.respond_to?(:permissible_foreign_key)
    query << "LEFT OUTER JOIN permissions ON permissions.#{visibility_permissions_relationship_foreign_key} = #{table_name}.id"
    query << "AND (permissions.#{current_auth.permissible_foreign_key} = ?"
    query_bindings << current_auth.id
    if current_auth.respond_to?(:groups) && current_auth.groups.to_a.any?
      query << "OR permissions.group_public_id IN ?)"
      query_bindings << current_auth.groups
    else
      query << ")"
    end
    query << "WHERE (public = ? OR permissions.#{visibility_permissions_relationship_foreign_key} = #{table_name}.id)"
    query_bindings << true
  else
    query << "WHERE public = ?"
    query_bindings << true
  end

  query << "AND user_id = ?"
  query_bindings << User.current.id

  query << "AND #{table_name}.deleted_at IS NULL"

  if properties[:original]
    query << "AND original = ?"
    query_bindings << true
  end

  if block_given?
    yield query, query_bindings
  end
end

Module: TentD::Model::Permissible::ClassMethods

Instance Method Summary collapse

Instance Method Details

#fetch_all(params) ⇒ Object

#fetch_with_permissions(params, current_auth, &block) ⇒ Object

#find_with_permissions(id, current_auth) ⇒ Object

#query_with_permissions(current_auth, params = Hashie::Mash.new) ⇒ Object

#fetch_all(params) ⇒ `Object`

#fetch_with_permissions(params, current_auth, &block) ⇒ `Object`

#find_with_permissions(id, current_auth) ⇒ `Object`

#query_with_permissions(current_auth, params = Hashie::Mash.new) ⇒ `Object`