Module: Authorization
- Defined in:
- lib/declarative_authorization/helper.rb,
lib/declarative_authorization/reader.rb,
lib/declarative_authorization/in_model.rb,
lib/declarative_authorization/maintenance.rb,
lib/declarative_authorization/authorization.rb,
lib/declarative_authorization/in_controller.rb,
lib/declarative_authorization/obligation_scope.rb,
lib/declarative_authorization/development_support/analyzer.rb,
lib/declarative_authorization/development_support/change_analyzer.rb,
lib/declarative_authorization/development_support/change_supporter.rb,
lib/declarative_authorization/development_support/development_support.rb
Defined Under Namespace
Modules: AuthorizationHelper, AuthorizationInController, AuthorizationInModel, DevelopmentSupport, Maintenance, Reader, TestHelper Classes: Attribute, AttributeAuthorizationError, AttributeWithPermission, AuthorizationError, AuthorizationRule, AuthorizationUsageError, ControllerPermission, Engine, GuestUser, NilAttributeValueError, NotAuthorized, ObligationScope
Constant Summary collapse
- AUTH_DSL_FILES =
["config/authorization_rules.rb"]
- @@dot_path =
"dot"
Class Method Summary collapse
-
.activate_authorization_rules_browser? ⇒ Boolean
:nodoc:.
-
.current_user ⇒ Object
Controller-independent method for retrieving the current user.
-
.current_user=(user) ⇒ Object
Controller-independent method for setting the current user.
- .dot_path ⇒ Object
- .dot_path=(path) ⇒ Object
-
.ignore_access_control(state = nil) ⇒ Object
For use in test cases only.
Class Method Details
.activate_authorization_rules_browser? ⇒ Boolean
:nodoc:
48 49 50 |
# File 'lib/declarative_authorization/authorization.rb', line 48 def self. # :nodoc: ::Rails.env.development? end |
.current_user ⇒ Object
Controller-independent method for retrieving the current user. Needed for model security where the current controller is not available.
33 34 35 |
# File 'lib/declarative_authorization/authorization.rb', line 33 def self.current_user Thread.current["current_user"] || GuestUser.new end |
.current_user=(user) ⇒ Object
Controller-independent method for setting the current user.
38 39 40 |
# File 'lib/declarative_authorization/authorization.rb', line 38 def self.current_user=(user) Thread.current["current_user"] = user end |
.dot_path ⇒ Object
53 54 55 |
# File 'lib/declarative_authorization/authorization.rb', line 53 def self.dot_path @@dot_path end |
.dot_path=(path) ⇒ Object
57 58 59 |
# File 'lib/declarative_authorization/authorization.rb', line 57 def self.dot_path= (path) @@dot_path = path end |
.ignore_access_control(state = nil) ⇒ Object
For use in test cases only
43 44 45 46 |
# File 'lib/declarative_authorization/authorization.rb', line 43 def self.ignore_access_control (state = nil) # :nodoc: Thread.current["ignore_access_control"] = state unless state.nil? Thread.current["ignore_access_control"] || false end |