Module: Authorization
- Defined in:
- lib/declarative_authorization/helper.rb,
lib/declarative_authorization/reader.rb,
lib/declarative_authorization/in_model.rb,
lib/declarative_authorization/maintenance.rb,
lib/declarative_authorization/authorization.rb,
lib/declarative_authorization/in_controller.rb,
lib/declarative_authorization/obligation_scope.rb,
lib/declarative_authorization/development_support/analyzer.rb,
lib/declarative_authorization/development_support/change_analyzer.rb,
lib/declarative_authorization/development_support/change_supporter.rb,
lib/declarative_authorization/development_support/development_support.rb
Defined Under Namespace
Modules: AuthorizationHelper, AuthorizationInController, AuthorizationInModel, DevelopmentSupport, Maintenance, Reader, TestHelper Classes: Attribute, AttributeAuthorizationError, AttributeWithPermission, AuthorizationError, AuthorizationRule, AuthorizationUsageError, ControllerPermission, Engine, GuestUser, NilAttributeValueError, NotAuthorized, ObligationScope
Constant Summary collapse
- AUTH_DSL_FILE =
"#{RAILS_ROOT}/config/authorization_rules.rb"
- @@ignore_access_control =
false
- @@dot_path =
"dot"
Class Method Summary collapse
-
.activate_authorization_rules_browser? ⇒ Boolean
:nodoc:.
-
.current_user ⇒ Object
Controller-independent method for retrieving the current user.
-
.current_user=(user) ⇒ Object
Controller-independent method for setting the current user.
- .dot_path ⇒ Object
- .dot_path=(path) ⇒ Object
-
.ignore_access_control(state = nil) ⇒ Object
For use in test cases only.
Class Method Details
.activate_authorization_rules_browser? ⇒ Boolean
:nodoc:
42 43 44 |
# File 'lib/declarative_authorization/authorization.rb', line 42 def self. # :nodoc: ::RAILS_ENV == 'development' end |
.current_user ⇒ Object
Controller-independent method for retrieving the current user. Needed for model security where the current controller is not available.
27 28 29 |
# File 'lib/declarative_authorization/authorization.rb', line 27 def self.current_user Thread.current["current_user"] || GuestUser.new end |
.current_user=(user) ⇒ Object
Controller-independent method for setting the current user.
32 33 34 |
# File 'lib/declarative_authorization/authorization.rb', line 32 def self.current_user=(user) Thread.current["current_user"] = user end |
.dot_path ⇒ Object
47 48 49 |
# File 'lib/declarative_authorization/authorization.rb', line 47 def self.dot_path @@dot_path end |
.dot_path=(path) ⇒ Object
51 52 53 |
# File 'lib/declarative_authorization/authorization.rb', line 51 def self.dot_path= (path) @@dot_path = path end |
.ignore_access_control(state = nil) ⇒ Object
For use in test cases only
6 7 8 9 |
# File 'lib/declarative_authorization/maintenance.rb', line 6 def self.ignore_access_control (state = nil) # :nodoc: Thread.current["ignore_access_control"] = state unless state.nil? Thread.current["ignore_access_control"] || false end |