Module: Controlist

Defined in:

lib/controlist.rb,
lib/controlist/errors.rb,
lib/controlist/version.rb,
lib/controlist/permission.rb,
lib/controlist/interceptor.rb,
lib/controlist/managers/base_manager.rb,
lib/controlist/permissions/constrain.rb,
lib/controlist/permissions/operation.rb,
lib/controlist/permissions/ordered_package.rb,
lib/controlist/permissions/simple_constrain.rb,
lib/controlist/managers/thread_based_manager.rb,
lib/controlist/permissions/advanced_constrain.rb

Defined Under Namespace

Modules: Managers, Permissions Classes: ControlistError, Interceptor, NoPermissionError, NotReuseableError, Permission, PermissionForbidden

Constant Summary

VERSION =

"0.3.2"

Class Attribute Summary

• .attribute_proxy ⇒ Object

  Returns the value of attribute attribute_proxy.

• .logger ⇒ Object

  Returns the value of attribute logger.

• .permission_manager ⇒ Object

  Returns the value of attribute permission_manager.

• .value_object_proxy ⇒ Object

  Returns the value of attribute value_object_proxy.

Class Method Summary

• .debug(*args, &block) ⇒ Object
• .enable_logger ⇒ Object
• .has_permission(klass, operation) ⇒ Object
• .initialize(permission_manager, config = {}) ⇒ Object

  example: Controlist.initialize Controlist::Managers::ThreadBasedManager attribute_proxy: “_val”, value_object_proxy: “_value_object”, logger: Logger.new(STDOUT).

• .is_activerecord3? ⇒ Boolean
• .skip ⇒ Object

  Skip Controlist interceptor.

Class Attribute Details

.attribute_proxy ⇒ Object

Returns the value of attribute attribute_proxy.

# File 'lib/controlist.rb', line 11

def attribute_proxy
  @attribute_proxy
end

.logger ⇒ Object

Returns the value of attribute logger.

# File 'lib/controlist.rb', line 11

def logger
  @logger
end

.permission_manager ⇒ Object

Returns the value of attribute permission_manager.

# File 'lib/controlist.rb', line 11

def permission_manager
  @permission_manager
end

.value_object_proxy ⇒ Object

Returns the value of attribute value_object_proxy.

# File 'lib/controlist.rb', line 11

def value_object_proxy
  @value_object_proxy
end

Class Method Details

.debug(*args, &block) ⇒ Object

# File 'lib/controlist.rb', line 57

def debug(*args, &block)
  logger.debug *args, &block if @logger_enabled
end

.enable_logger ⇒ Object

# File 'lib/controlist.rb', line 61

def enable_logger
  @logger_enabled = true
end

.has_permission(klass, operation) ⇒ Object

# File 'lib/controlist.rb', line 65

def has_permission(klass, operation)
  permission_package = @permission_manager.get_permission_package
  permission_package && permission_package.has_permission(klass, operation)
end

.initialize(permission_manager, config = {}) ⇒ Object

example:

Controlist.initialize Controlist::Managers::ThreadBasedManager
    attribute_proxy: "_val",
    value_object_proxy: "_value_object",
    logger: Logger.new(STDOUT)

attribute_proxy and value_object_proxy are to avoid ActiveModel::MissingAttributeError due to select(attributes) according to constrains, suppose attribute_proxy is :_val, value_object_proxy is :_value_object

user = User.find 1
user.id
user._val(:attr_might_not_be_accessed)
user._value_object.attr_might_not_be_accessed

# File 'lib/controlist.rb', line 28

def initialize(permission_manager, config={})
  @permission_manager = permission_manager
  @attribute_proxy = config[:attribute_proxy] || "_val"
  @value_object_proxy = config[:value_object_proxy] || "_value_object"
  @logger = config[:logger] || Logger.new(STDOUT)
  Interceptor.hook
end

.is_activerecord3? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/controlist.rb', line 53

def is_activerecord3?
  ActiveRecord::VERSION::MAJOR == 3
end

.skip ⇒ Object

Skip Controlist interceptor

Controlist.skip do
  relation = User.unscoped
  sql = relation.to_sql
  assert_equal "SELECT \"users\".* FROM \"users\"", sql.strip
end

# File 'lib/controlist.rb', line 45

def skip
  is_skip = @permission_manager.skip?
  @permission_manager.enable_skip
  result = yield
  @permission_manager.disable_skip unless is_skip
  result
end