Module: Allows

Defined in:: lib/allows.rb,
lib/exceptions.rb

Defined Under Namespace

Modules: ClassMethods Classes: NoDefinedPermissions, NoInstanceVariable, NoPermissionChecker, NoPermissionDefinedForAction, Unauthorized

Class Method Summary collapse

.included(base) ⇒ Object

Instance Method Summary collapse

#check_permissions ⇒ Object

Class Method Details

.included(base) ⇒ `Object`

# File 'lib/allows.rb', line 6

def self.included(base)
  base.extend(ClassMethods)

  base.send :before_filter, :set_permissions
  base.send :before_filter, :check_permissions
  
  class << base
    attr_accessor :permissions
    cattr_accessor :permission_checker
  end

  # set default permission_checker
  base.permission_checker = :current_user
end

Instance Method Details

#check_permissions ⇒ `Object`

Raises:

(Unauthorized)

# File 'lib/allows.rb', line 23

def check_permissions
  im_allowed = false

  klass = self.class
  if klass.permission_checker && respond_to?(klass.permission_checker)
    if klass.permissions
      permissions_for_action = klass.permissions[action_name.to_sym]
      if permissions_for_action
        permissions_for_action.each do |permission|
          if assert_permission(permission)
            im_allowed = true
          end
        end
      else
        # Can execute the action. No "allow" rule affects this action.
        im_allowed = true
      end
    else
      # Can execute any action. Controller does not declare any "allow" rule
      im_allowed = true
    end
  else
    raise NoPermissionChecker # Permission checker isnt defined, so no permissions can be validated
  end
  raise Unauthorized unless im_allowed
end

Module: Allows

Defined Under Namespace

Class Method Summary collapse

Instance Method Summary collapse

Class Method Details

.included(base) ⇒ Object

Instance Method Details

#check_permissions ⇒ Object

.included(base) ⇒ `Object`

#check_permissions ⇒ `Object`