Class: Verifica::AclBuilder

Inherits:

Object

show all

Overview

Builder that holds mutable list of Access Control Entries and methods to add new entries

#allow(sid, actions) ⇒ self

Add Access Control Entries that allow particular actions for the given Security Identifier.
#build ⇒ Acl

A new, immutable Access Control List.
#deny(sid, actions) ⇒ self

Add Access Control Entries that deny particular actions for the given Security Identifier.
#initialize(initial_aces = EMPTY_ARRAY) ⇒ AclBuilder constructor

A new instance of AclBuilder.

Note:

Use Verifica::Acl.build or Verifica::Acl#build instead of this constructor directly

Returns a new instance of AclBuilder.

# File 'lib/verifica/acl_builder.rb', line 13

def initialize(initial_aces = EMPTY_ARRAY)
  @aces = initial_aces.dup
  freeze
end

Add Access Control Entries that allow particular actions for the given Security Identifier

builder = AclBuilder.new
  .allow("anonymous", [:read])
  .allow("root", [:read, :write, :delete])
acl = builder.build

Parameters:

sid (String) —

Security Identifier
actions (Enumerable<Symbol>, Enumerable<String>) —

list of actions allowed for the given SID

Returns:

# File 'lib/verifica/acl_builder.rb', line 32

def allow(sid, actions)
  @aces.concat(actions.map { |action| Ace.new(sid, action, true) })
  self
end

Returns a new, immutable Access Control List.

Returns:



59
60
61

# File 'lib/verifica/acl_builder.rb', line 59

def build
  Acl.new(@aces)
end

Add Access Control Entries that deny particular actions for the given Security Identifier

builder = Verifica::AclBuilder.new
  .deny("country:US", [:read, :comment])
  .deny("country:CA", [:read, :comment])
acl = builder.build

Parameters:

sid (String) —

Security Identifier
actions (Enumerable<Symbol>, Enumerable<String>) —

list of actions denied for the given SID

Returns:

# File 'lib/verifica/acl_builder.rb', line 51

def deny(sid, actions)
  @aces.concat(actions.map { |action| Ace.new(sid, action, false) })
  self
end