Module: Glib::Auth::Policy
- Extended by:
- ActiveSupport::Concern
- Defined in:
- app/controllers/concerns/glib/auth/policy.rb
Defined Under Namespace
Modules: ClassMethods, Overrides
Classes: UnauthorizedError
Instance Method Summary
collapse
Instance Method Details
#assert_current_user_present ⇒ Object
20
21
22
|
# File 'app/controllers/concerns/glib/auth/policy.rb', line 20
def assert_current_user_present
raise UnauthorizedError unless current_user
end
|
#can?(action, record, context = nil) ⇒ Boolean
68
69
70
|
# File 'app/controllers/concerns/glib/auth/policy.rb', line 68
def can?(action, record, context = nil)
policy(record, nil, context).send("#{action}?")
end
|
#cannot?(action, record, context = nil) ⇒ Boolean
72
73
74
|
# File 'app/controllers/concerns/glib/auth/policy.rb', line 72
def cannot?(action, record, context = nil)
!policy(record, nil, context).send("#{action}?")
end
|
#glib_authorize_resource(*args) ⇒ Object
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
|
# File 'app/controllers/concerns/glib/auth/policy.rb', line 77
def glib_authorize_resource(*args)
options = args.
resource_name = args.first
resource_name ||= controller_name.split('/').last.singularize
if (resource_key = options[:class]).nil?
policy_name = resource_name.camelize.constantize
else
policy_name = case resource_key
when false
resource_name.to_sym
when Symbol, Class
resource_key
else
raise "Invalid resource class: #{resource_key}"
end
end
resource_instance = instance_variable_get("@#{resource_name}") || policy_name
query = "#{action_name}?"
policy_instance = policy(resource_instance, policy_name, options.fetch(:context, nil))
raise_access_denied(resource_instance, policy_instance) unless policy_instance.public_send(query)
end
|
#glib_raise_forbidden ⇒ Object
58
59
60
|
# File 'app/controllers/concerns/glib/auth/policy.rb', line 58
def glib_raise_forbidden
raise UnauthorizedError
end
|
#resource_name_from_controller ⇒ Object
154
155
156
|
# File 'app/controllers/concerns/glib/auth/policy.rb', line 154
def resource_name_from_controller
params[:controller].split('/').last.singularize
end
|