Module: Glib::Auth::Policy

Extended by:
ActiveSupport::Concern
Defined in:
app/controllers/concerns/glib/auth/policy.rb

Defined Under Namespace

Modules: ClassMethods, Overrides Classes: UnauthorizedError

Instance Method Summary collapse

Instance Method Details

#assert_current_user_presentObject

Raises:



20
21
22
# File 'app/controllers/concerns/glib/auth/policy.rb', line 20

def assert_current_user_present
  raise UnauthorizedError unless current_user
end

#can?(action, record, context = nil) ⇒ Boolean

Returns:

  • (Boolean)


68
69
70
# File 'app/controllers/concerns/glib/auth/policy.rb', line 68

def can?(action, record, context = nil)
  policy(record, nil, context).send("#{action}?")
end

#cannot?(action, record, context = nil) ⇒ Boolean

Returns:

  • (Boolean)


72
73
74
# File 'app/controllers/concerns/glib/auth/policy.rb', line 72

def cannot?(action, record, context = nil)
  !policy(record, nil, context).send("#{action}?")
end

#glib_authorize_resource(*args) ⇒ Object



77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
# File 'app/controllers/concerns/glib/auth/policy.rb', line 77

def glib_authorize_resource(*args)
  options = args.extract_options!
  resource_name = args.first

  resource_name ||= controller_name.split('/').last.singularize

  if (resource_key = options[:class]).nil?
    policy_name = resource_name.camelize.constantize
  else
    policy_name = case resource_key
                  when false
                    resource_name.to_sym
                  when Symbol, Class
                    resource_key
                  else
                    raise "Invalid resource class: #{resource_key}"
    end
  end

  resource_instance = instance_variable_get("@#{resource_name}") || policy_name

  query = "#{action_name}?"
  policy_instance = policy(resource_instance, policy_name, options.fetch(:context, nil))
  raise_access_denied(resource_instance, policy_instance) unless policy_instance.public_send(query)
end

#glib_raise_forbiddenObject

Raises:



58
59
60
# File 'app/controllers/concerns/glib/auth/policy.rb', line 58

def glib_raise_forbidden
  raise UnauthorizedError
end

#resource_name_from_controllerObject



154
155
156
# File 'app/controllers/concerns/glib/auth/policy.rb', line 154

def resource_name_from_controller
  params[:controller].split('/').last.singularize
end