Module: Petergate::ActionController::Base
- Included in:
- ActionController::Base
- Defined in:
- lib/petergate/action_controller/base.rb
Defined Under Namespace
Modules: ClassMethods
Constant Summary collapse
- ALLRESTDEP =
[:show, :index, :new, :edit, :update, :create, :destroy]
Class Method Summary collapse
Instance Method Summary collapse
- #custom_message ⇒ Object
- #forbidden!(msg = nil) ⇒ Object
- #logged_in?(*roles) ⇒ Boolean
- #parse_permission_rules(rules) ⇒ Object
- #permissions(rules = {all: [:index, :show], customer: [], wiring: []}) ⇒ Object
- #unauthorized! ⇒ Object
Class Method Details
.included(base) ⇒ Object
63 64 65 66 |
# File 'lib/petergate/action_controller/base.rb', line 63 def self.included(base) base.extend(ClassMethods) base.helper_method :logged_in?, :forbidden!, :unauthorized! end |
Instance Method Details
#custom_message ⇒ Object
100 101 102 |
# File 'lib/petergate/action_controller/base.rb', line 100 def defined?(self.class.) ? self.class. : 'Permission Denied' end |
#forbidden!(msg = nil) ⇒ Object
113 114 115 116 117 118 119 120 121 |
# File 'lib/petergate/action_controller/base.rb', line 113 def forbidden!(msg = nil) respond_to do |format| format.any(:js, :json, :xml) { render nothing: true, status: :forbidden } format.html do destination = current_user.present? ? request.referrer || after_sign_in_path_for(current_user) : root_path redirect_to destination, notice: (msg || ) end end end |
#logged_in?(*roles) ⇒ Boolean
96 97 98 |
# File 'lib/petergate/action_controller/base.rb', line 96 def logged_in?(*roles) current_user && current_user.has_roles?(*roles) end |
#parse_permission_rules(rules) ⇒ Object
68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 |
# File 'lib/petergate/action_controller/base.rb', line 68 def (rules) rules = rules.inject({}) do |h, (k, v)| special_values = case v.class.to_s when "Symbol" v == :all ? self.class.all_actions : raise("No action for: #{v}") when "Hash" v[:except].present? ? self.class.except_actions(v[:except]) : raise("Invalid values for except: #{v.values}") when "Array" v else raise("No action for: #{v}") end h.merge({k => special_values}) end # Allows Array's of keys for he same hash. rules = rules.inject({}){|h, (k, v)| k.class == Array ? h.merge(Hash[k.map{|kk| [kk, v]}]) : h.merge(k => v) } end |
#permissions(rules = {all: [:index, :show], customer: [], wiring: []}) ⇒ Object
87 88 89 90 91 92 93 94 |
# File 'lib/petergate/action_controller/base.rb', line 87 def (rules = {all: [:index, :show], customer: [], wiring: []}) rules = (rules) allowances = [rules[:all]] current_user.roles.each do |role| allowances << rules[role] end if logged_in?(:user) allowances.flatten.compact.include?(action_name.to_sym) end |
#unauthorized! ⇒ Object
104 105 106 107 108 109 110 111 |
# File 'lib/petergate/action_controller/base.rb', line 104 def respond_to do |format| format.any(:js, :json, :xml) { render nothing: true, status: :unauthorized } format.html do authenticate_user! end end end |