blangenfeld / acts_as_checkpoint
watch download tarball
public
Forks0Right
Watchers19Right
Description: Rails plugin for generating role- and association-based permission checks on controllers and ActiveRecord models.
Homepage:
Clone URL: git://github.com/blangenfeld/acts_as_checkpoint.git 
model_allows no longer requires a :by or :to option.
blangenfeld (author)
Thu Aug 14 00:22:06 -0700 2008
commit  ff6180dc00afc474fa1d54965c50ef046325aa6b
tree    54f56bae66c94efde5d6f1a765fe232aa0ef6f6a
parent  e698c571450ce3e9c0a50f6cd7079f850836e45f
name age
history
message
file MIT-LICENSE Mon Aug 11 23:56:01 -0700 2008 first commit [blangenfeld]
file README Wed Aug 13 23:11:11 -0700 2008 Added tests for Knotfield::Acts::Checkpoint::Mo... [blangenfeld]
file Rakefile Mon Aug 11 23:56:01 -0700 2008 first commit [blangenfeld]
file init.rb Mon Aug 11 23:56:01 -0700 2008 first commit [blangenfeld]
file install.rb Mon Aug 11 23:56:01 -0700 2008 first commit [blangenfeld]
directory lib/ Thu Aug 14 00:22:06 -0700 2008 model_allows no longer requires a :by or :to op... [blangenfeld]
directory tasks/ Wed Aug 13 23:13:58 -0700 2008 Removed .svn stuff [blangenfeld]
directory test/ Wed Aug 13 23:13:58 -0700 2008 Removed .svn stuff [blangenfeld]
file uninstall.rb Mon Aug 11 23:56:01 -0700 2008 first commit [blangenfeld]
README
ActsAsCheckpoint
================

This plugin provides a very simple syntax for setting up complex permissions.

Example for Controllers
=======================

Role-oriented approach:

  class YourController < ApplicationController
    acts_as_checkpoint :get_user_method => :current_user
    controller_allows :administrator, :to => [ :index, :show, :destroy ]
    controller_allows :registered_user, :to => [ :index, :show, :new, :edit, :create, :update ]
    controller_allows :anonymous_user, :to => [ :index, :show ]
  end

Action-oriented approach:

  class YourController < ApplicationController
    acts_as_checkpoint :get_user_method => :current_user
    controller_allows :index  , :by => [ :administrator, :registered_user, :anonymous_user ]
    controller_allows :show   , :by => [ :administrator, :registered_user ]
    controller_allows :new    , :by => :registered_user
    controller_allows :edit   , :by => :registered_user
    controller_allows :create , :by => :registered_user
    controller_allows :update , :by => :registered_user
    controller_allows :destroy, :by => :administrator
  end

The two approaches may be interspersed at will... just try not to get confused.

Example for Models
==================

  class Dog < ActiveRecord::Base
    belongs_to :owner

    acts_as_checkpoint
    model_may :eat, :drink, :lick
    model_allows :lick, :by => :self
    model_allows :pet, :by => :owner
  end

  class Human < ActiveRecord::Base
    has_many :dogs

    acts_as_checkpoint
    model_may :pet
    model_allows :lick, :by => :dogs
  end

  human = Human.new
  dog = Dog.new( :owner => human )

  human.can_pet?( dog )
  # => true
  dog.can_eat?( human )
  # => false
  dog.can_lick?( human )
  # => true

Copyright (c) 2008 Brian Langenfeld, released under the MIT license