Class: Ingress::PermissionsRepository

Inherits:

Object

• Object
• Ingress::PermissionsRepository

Defined in:

lib/ingress/permissions_repository.rb

Defined Under Namespace

Modules: Hashes

Instance Attribute Summary

• #role_rules ⇒ Object readonly

  Returns the value of attribute role_rules.

Instance Method Summary

• #add_permission(role_identifier, allow, action, subject, conditions = nil) ⇒ Object
• #copy_to_role(role_identifier, permission_repository) ⇒ Object
• #initialize ⇒ PermissionsRepository constructor

  A new instance of PermissionsRepository.

• #merge(permission_repository) ⇒ Object
• #rules_for(role_identifier, action, subject) ⇒ Object

Constructor Details

#initialize ⇒ PermissionsRepository

Returns a new instance of PermissionsRepository.

# File 'lib/ingress/permissions_repository.rb', line 7

def initialize
  @role_rules = Hashes.role_rules
  @role_subject_action_rule = Hashes.role_subject_action_rule
end

Instance Attribute Details

#role_rules ⇒ Object (readonly)

Returns the value of attribute role_rules.

# File 'lib/ingress/permissions_repository.rb', line 5

def role_rules
  @role_rules
end

Instance Method Details

#add_permission(role_identifier, allow, action, subject, conditions = nil) ⇒ Object

# File 'lib/ingress/permissions_repository.rb', line 12

def add_permission(role_identifier, allow, action, subject, conditions = nil)
  rule = PermissionRule.new(allows: allow, action: action, subject: subject, conditions: conditions)
  add_rule(role_identifier, rule)
end

#copy_to_role(role_identifier, permission_repository) ⇒ Object

# File 'lib/ingress/permissions_repository.rb', line 38

def copy_to_role(role_identifier, permission_repository)
  permission_repository.role_rules.each_pair do |_, rules|
    rules.each do |rule|
      add_rule(role_identifier, rule)
    end
  end
  self
end

#merge(permission_repository) ⇒ Object

# File 'lib/ingress/permissions_repository.rb', line 29

def merge(permission_repository)
  permission_repository.role_rules.each_pair do |role_identifier, rules|
    rules.each do |rule|
      add_rule(role_identifier, rule)
    end
  end
  self
end

#rules_for(role_identifier, action, subject) ⇒ Object

# File 'lib/ingress/permissions_repository.rb', line 17

def rules_for(role_identifier, action, subject)
  rules = []

  rules += find_rules(role_identifier, action, subject)
  rules += find_rules(role_identifier, "*", "*")
  rules += find_rules(role_identifier, action, "*")
  rules += find_rules(role_identifier, "*", subject)
  rules = apply_negative_rules(rules)

  rules
end