Class: GraphqlPundit::AuthorizationExtension

Inherits:

GraphQL::Schema::FieldExtension

• Object
• GraphQL::Schema::FieldExtension
• GraphqlPundit::AuthorizationExtension

Includes:

Common

Defined in:

lib/graphql_pundit/authorization_extension.rb

Overview

Authorization methods to be included in the used Field class

Instance Attribute Summary

• #authorize ⇒ Object readonly

  Returns the value of attribute authorize.

• #policy ⇒ Object readonly

  Returns the value of attribute policy.

• #raise_unauthorized ⇒ Object readonly

  Returns the value of attribute raise_unauthorized.

• #record ⇒ Object readonly

  Returns the value of attribute record.

Instance Method Summary

• #apply ⇒ Object
• #initialize(field:, options:) ⇒ AuthorizationExtension constructor

  A new instance of AuthorizationExtension.

• #resolve(object:, arguments:, context:, **_rest) ⇒ Object

Methods included from Common

#callable?, #model?, #object?

Constructor Details

#initialize(field:, options:) ⇒ AuthorizationExtension

Returns a new instance of AuthorizationExtension.

# File 'lib/graphql_pundit/authorization_extension.rb', line 10

def initialize(field:, options:)
  super
  @current_user = options[:current_user] || :current_user
end

Instance Attribute Details

#authorize ⇒ Object (readonly)

Returns the value of attribute authorize.

# File 'lib/graphql_pundit/authorization_extension.rb', line 8

def authorize
  @authorize
end

#policy ⇒ Object (readonly)

Returns the value of attribute policy.

# File 'lib/graphql_pundit/authorization_extension.rb', line 8

def policy
  @policy
end

#raise_unauthorized ⇒ Object (readonly)

Returns the value of attribute raise_unauthorized.

# File 'lib/graphql_pundit/authorization_extension.rb', line 8

def raise_unauthorized
  @raise_unauthorized
end

#record ⇒ Object (readonly)

Returns the value of attribute record.

# File 'lib/graphql_pundit/authorization_extension.rb', line 8

def record
  @record
end

Instance Method Details

#apply ⇒ Object

# File 'lib/graphql_pundit/authorization_extension.rb', line 15

def apply
  @raise_unauthorized = field.raise_unauthorized
  @authorize = field.authorize
  @record = field.record
  @policy = field.policy
  @method_sym = field.method_sym
end

#resolve(object:, arguments:, context:, **_rest) ⇒ Object

# File 'lib/graphql_pundit/authorization_extension.rb', line 23

def resolve(object:, arguments:, context:, **_rest)
  # yield the current time as `memo`
  raise ::Pundit::NotAuthorizedError unless do_authorize(object, arguments, context)

  yield(object, arguments)
rescue ::Pundit::NotAuthorizedError
  raise GraphQL::ExecutionError, "You're not authorized to do this" if @raise_unauthorized
end