Class: Authorization::ControllerPermission

Inherits:

Object

• Object
• Authorization::ControllerPermission

Defined in:

lib/declarative_authorization/in_controller.rb

Overview

:nodoc:

Instance Attribute Summary

• #actions ⇒ Object readonly

  Returns the value of attribute actions.

• #attribute_check ⇒ Object readonly

  Returns the value of attribute attribute_check.

• #context ⇒ Object readonly

  Returns the value of attribute context.

• #privilege ⇒ Object readonly

  Returns the value of attribute privilege.

Instance Method Summary

• #initialize(actions, privilege, context, attribute_check = false, load_object_model = nil, load_object_method = nil, filter_block = nil) ⇒ ControllerPermission constructor

  A new instance of ControllerPermission.

• #matches?(action_name) ⇒ Boolean
• #permit!(contr) ⇒ Object
• #remove_actions(actions) ⇒ Object

Constructor Details

#initialize(actions, privilege, context, attribute_check = false, load_object_model = nil, load_object_method = nil, filter_block = nil) ⇒ ControllerPermission

Returns a new instance of ControllerPermission.

# File 'lib/declarative_authorization/in_controller.rb', line 502

def initialize (actions, privilege, context, attribute_check = false, 
                load_object_model = nil, load_object_method = nil,
                filter_block = nil)
  @actions = actions.to_set
  @privilege = privilege
  @context = context
  @load_object_model = load_object_model
  @load_object_method = load_object_method
  @filter_block = filter_block
  @attribute_check = attribute_check
end

Instance Attribute Details

#actions ⇒ Object (readonly)

Returns the value of attribute actions.

# File 'lib/declarative_authorization/in_controller.rb', line 501

def actions
  @actions
end

#attribute_check ⇒ Object (readonly)

Returns the value of attribute attribute_check.

# File 'lib/declarative_authorization/in_controller.rb', line 501

def attribute_check
  @attribute_check
end

#context ⇒ Object (readonly)

Returns the value of attribute context.

# File 'lib/declarative_authorization/in_controller.rb', line 501

def context
  @context
end

#privilege ⇒ Object (readonly)

Returns the value of attribute privilege.

# File 'lib/declarative_authorization/in_controller.rb', line 501

def privilege
  @privilege
end

Instance Method Details

#matches?(action_name) ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/declarative_authorization/in_controller.rb', line 514

def matches? (action_name)
  @actions.include?(action_name.to_sym)
end

#permit!(contr) ⇒ Object

# File 'lib/declarative_authorization/in_controller.rb', line 518

def permit! (contr)
  if @filter_block
    return contr.instance_eval(&@filter_block)
  end
  context = @context || contr.class.controller_name.to_sym
  object = @attribute_check ? load_object(contr, context) : nil
  privilege = @privilege || :"#{contr.action_name}"
  
  #puts "Trying permit?(#{privilege.inspect}, "
  #puts "               :user => #{contr.send(:current_user).inspect}, "
  #puts "               :object => #{object.inspect}," 
  #puts "               :skip_attribute_test => #{!@attribute_check}," 
  #puts "               :context => #{contr.class.controller_name.pluralize.to_sym})"
  res = contr.authorization_engine.permit!(privilege, 
                                     :user => contr.send(:current_user),
                                     :object => object,
                                     :skip_attribute_test => !@attribute_check,
                                     :context => context)
  #puts "permit? result: #{res.inspect}"
  res
end

#remove_actions(actions) ⇒ Object

# File 'lib/declarative_authorization/in_controller.rb', line 540

def remove_actions (actions)
  @actions -= actions
  self
end