260116354ca2fc33497683628a1a861a0a83e871 Chris Hapgood cch1@hapgoods.com http://github.com/cch1/authorize/commit/0f212d26dee3b446873de11a57526d218b45f608 0f212d26dee3b446873de11a57526d218b45f608 2009-09-14T12:53:50-07:00 2009-09-14T12:53:50-07:00 Updated default Rails version for testing to 2.3.2 84170590fbb8450decddb5710128cce5ac2527f9 Chris Hapgood cch1@hapgoods.com 42736c54053a395cc782037d0a1d42bf20f85eac Chris Hapgood cch1@hapgoods.com http://github.com/cch1/authorize/commit/260116354ca2fc33497683628a1a861a0a83e871 260116354ca2fc33497683628a1a861a0a83e871 2009-09-14T12:44:52-07:00 2009-09-14T12:44:52-07:00 Delegate loading of most dependencies to Rails acc3b1bba28eb3242011ebbdbdb745cf22f442f8 Chris Hapgood cch1@hapgoods.com 7b0061196d747afbcc7aa4f25815a746e0b47a4a Chris Hapgood cch1@hapgoods.com http://github.com/cch1/authorize/commit/42736c54053a395cc782037d0a1d42bf20f85eac 42736c54053a395cc782037d0a1d42bf20f85eac 2009-09-07T09:07:20-07:00 2009-09-07T09:07:20-07:00 Ensure token collections are converted to an array Rails is smart enough to recognize any enumerable when quoting values, but requires an instance of Array to switch the SQL operator from '=' to 'IN'. 76480e1ceff17e9852b611ba23532dc7dd80b5c1 Chris Hapgood cch1@hapgoods.com 7e36d25bf924a84e4cdf0a7baed20918ff1068f2 Chris Hapgood cch1@hapgoods.com http://github.com/cch1/authorize/commit/7b0061196d747afbcc7aa4f25815a746e0b47a4a 7b0061196d747afbcc7aa4f25815a746e0b47a4a 2009-09-07T08:29:28-07:00 2009-09-07T08:29:28-07:00 Armor query construction to better handle DB quoting variations 22f892ec5927bb3fa6afa4c3363121f2f1f502d7 Chris Hapgood cch1@hapgoods.com 9de6beac89a486f41e9a4b5878a6deed7269b74b Chris Hapgood cch1@hapgoods.com http://github.com/cch1/authorize/commit/7e36d25bf924a84e4cdf0a7baed20918ff1068f2 7e36d25bf924a84e4cdf0a7baed20918ff1068f2 2009-09-04T15:58:41-07:00 2009-09-04T15:58:41-07:00 Defer more query building to ActiveRecord * Let AR handles all the scalar/collection syntax variations, as well as composition of conditions for Subject.authorized. * Pre-compute subject conditions. ce1f5fea5362bc611c53f7e432fc3315a3e2455f Chris Hapgood cch1@hapgoods.com 28a213974703b83425045f2663df0ddee8b9b10b Chris Hapgood cch1@hapgoods.com http://github.com/cch1/authorize/commit/9de6beac89a486f41e9a4b5878a6deed7269b74b 9de6beac89a486f41e9a4b5878a6deed7269b74b 2009-09-04T15:36:13-07:00 2009-09-04T15:36:13-07:00 Allow authorization_tokens to be any enumerable, not just an array c0643b3e1199d044b721249217b3acfd156bb47e Chris Hapgood cch1@hapgoods.com a8ffe11186fceb3aafe09946e13042a282344b41 Chris Hapgood cch1@hapgoods.com http://github.com/cch1/authorize/commit/28a213974703b83425045f2663df0ddee8b9b10b 28a213974703b83425045f2663df0ddee8b9b10b 2009-09-04T15:32:44-07:00 2009-09-04T15:32:44-07:00 Make Authorization.find_effective return scope instead of proxy array 78b7371ce5b4fd9651c18f35d4f30a8013cb5d18 Chris Hapgood cch1@hapgoods.com 859a73c45e72ed5a2cdaa13d0252825d04e69f60 Chris Hapgood cch1@hapgoods.com http://github.com/cch1/authorize/commit/a8ffe11186fceb3aafe09946e13042a282344b41 a8ffe11186fceb3aafe09946e13042a282344b41 2009-09-04T12:47:26-07:00 2009-09-04T12:47:26-07:00 Add require for Digest dependency cbc7531479a76c37c02f34d82e30b7f772c3a1ed Chris Hapgood cch1@hapgoods.com 7e877821a2b725ef87c63e01adb96802b1405b52 Chris Hapgood cch1@hapgoods.com http://github.com/cch1/authorize/commit/859a73c45e72ed5a2cdaa13d0252825d04e69f60 859a73c45e72ed5a2cdaa13d0252825d04e69f60 2009-09-04T06:54:53-07:00 2009-09-04T06:54:53-07:00 Remove Token class from plugin As originally developed, the Token class represented only a subset of the methods for generating and managing tokens. Tokens are *arbitrary* strings. Some valid approaches for tokens include guaranteed-unique tokens derived from UUID-like strings, secure random tokens (with or without human-friendly keys) and constructed tokens revealing some additional information. d5a6fc07a9b31da4ec6a99bad3cd1dc5d6459671 Chris Hapgood cch1@hapgoods.com 64ac9a934c5ca79ffda3d0f120833bc72e06ac84 Chris Hapgood cch1@hapgoods.com http://github.com/cch1/authorize/commit/7e877821a2b725ef87c63e01adb96802b1405b52 7e877821a2b725ef87c63e01adb96802b1405b52 2009-09-03T15:08:57-07:00 2009-09-03T15:08:57-07:00 Refactor identity methods and add simple tests 21adb68227d3eed5293c5ea53667684dd6d3ee7a Chris Hapgood cch1@hapgoods.com 21a27f0c9e40bc1effc4848b5579517f5752aa32 Chris Hapgood cch1@hapgoods.com http://github.com/cch1/authorize/commit/64ac9a934c5ca79ffda3d0f120833bc72e06ac84 64ac9a934c5ca79ffda3d0f120833bc72e06ac84 2009-09-03T13:14:18-07:00 2009-09-03T13:14:18-07:00 Restore Authorization#trustee association * Change #permissions method on ActiveRecord trustees to use scope instead of an association. This gives us additional flexibility to set arbitrary attributes to arbitrary values on permission creation (polymorphic associations are limited to *_type and *_id attributes being set strictly from the base_class.name and id values). * Add a before_destroy callback on ActiveRecord trustees to compensate for losing the association's :dependent option. Now use #delete_all instead of reconstructing the destroy_all behavior. * Add Authorization#trustee method to find the trustee in somewhat the same fashion as ActiveRecord's polymorphic association. However, there is no ability to set the trustee via a #trustee= method. ca26cb1cb9718b7b35ae111d82e393e9b576ff71 Chris Hapgood cch1@hapgoods.com 9ee69e487271f86fc653a0203a576ca4db1ebef8 Chris Hapgood cch1@hapgoods.com http://github.com/cch1/authorize/commit/21a27f0c9e40bc1effc4848b5579517f5752aa32 21a27f0c9e40bc1effc4848b5579517f5752aa32 2009-09-03T09:22:21-07:00 2009-09-03T09:22:21-07:00 Use more flexible interpretation of polymorphic type and id attributes 5a4e66660ed689107b9a277be051c7d035974056 Chris Hapgood cch1@hapgoods.com 69585fb417464276050dc32cdd907cd2a7f4b89d Chris Hapgood cch1@hapgoods.com http://github.com/cch1/authorize/commit/9ee69e487271f86fc653a0203a576ca4db1ebef8 9ee69e487271f86fc653a0203a576ca4db1ebef8 2009-09-03T07:42:29-07:00 2009-09-03T07:42:29-07:00 Restrict token size in authorization for consistency d380fe77412ac0d87b0d1d859d6d4b2632ad450a Chris Hapgood cch1@hapgoods.com 68ef15aa7cbdcdcd119e405e0087860be9e4927d Chris Hapgood cch1@hapgoods.com http://github.com/cch1/authorize/commit/69585fb417464276050dc32cdd907cd2a7f4b89d 69585fb417464276050dc32cdd907cd2a7f4b89d 2009-09-03T07:41:52-07:00 2009-09-03T07:41:52-07:00 Fix bug in passing authorization options from class-level permission check 6d48324762d18a1479e8e2407c7969d81818ff83 Chris Hapgood cch1@hapgoods.com c56859c3dcc553a1eec5bf2db14992ea4ae39d6b Chris Hapgood cch1@hapgoods.com http://github.com/cch1/authorize/commit/68ef15aa7cbdcdcd119e405e0087860be9e4927d 68ef15aa7cbdcdcd119e405e0087860be9e4927d 2009-09-03T07:40:35-07:00 2009-09-03T07:40:35-07:00 Fix token length test and use more expressive assertion In a worst case scenario, each syllable could be three characters and thus the total length would be less than *or equal* to three times the syllable count. de466f6d578c64132a483df62c1d67a597fe13e4 Chris Hapgood cch1@hapgoods.com a4759243e4c4d36602d6e7722845823ab7fa7455 Chris Hapgood cch1@hapgoods.com http://github.com/cch1/authorize/commit/c56859c3dcc553a1eec5bf2db14992ea4ae39d6b c56859c3dcc553a1eec5bf2db14992ea4ae39d6b 2009-08-26T13:25:09-07:00 2009-08-26T13:25:09-07:00 Add gitignore for generated SQLite3 test database bd5ab35d7eda27ee41e00023a0bbc4fc5451c6dd Chris Hapgood cch1@hapgoods.com 489e568e48487a9c3c5dfc7afed88744c6290b16 Chris Hapgood cch1@hapgoods.com http://github.com/cch1/authorize/commit/a4759243e4c4d36602d6e7722845823ab7fa7455 a4759243e4c4d36602d6e7722845823ab7fa7455 2009-08-26T13:24:00-07:00 2009-08-26T13:24:00-07:00 Fix SQL generation of authorized scope when using MySQL Quoting should not be used when injecting the correlated query table name. SQLite accepts and processes the query, but MySQL considers the comparison to "table"."id" as a syntax error -which it probably is. 5066f5777e69585924b88bfd8e67c1318ff980f2 Chris Hapgood cch1@hapgoods.com e2e2a4c05cbbb15ad58737b96985a431f4bd2640 Chris Hapgood cch1@hapgoods.com http://github.com/cch1/authorize/commit/489e568e48487a9c3c5dfc7afed88744c6290b16 489e568e48487a9c3c5dfc7afed88744c6290b16 2009-08-26T13:07:41-07:00 2009-08-26T13:07:41-07:00 Update test schema for compatibility with MySQL * Override default index name to comply with MySQL length limitations. * Change field type for tokens so that they can be used in an index. c1e8791549ec0ab6d6e70434e10fbcc1cc5e3c5d Chris Hapgood cch1@hapgoods.com ffc29f98951d7eb0f24233a4d46d2e322c8d0778 Chris Hapgood cch1@hapgoods.com http://github.com/cch1/authorize/commit/e2e2a4c05cbbb15ad58737b96985a431f4bd2640 e2e2a4c05cbbb15ad58737b96985a431f4bd2640 2009-08-20T13:02:18-07:00 2009-08-20T13:02:18-07:00 Ensure proper options are passed to append_before_filter 78e164a5fc4a624bed1522ffbf8050e1fc504e89 Chris Hapgood cch1@hapgoods.com 5e1665a348572a30eac2ff8894b83f60cf455255 Chris Hapgood cch1@hapgoods.com http://github.com/cch1/authorize/commit/ffc29f98951d7eb0f24233a4d46d2e322c8d0778 ffc29f98951d7eb0f24233a4d46d2e322c8d0778 2009-08-17T09:13:06-07:00 2009-08-17T09:13:06-07:00 Correct digest size bug 85aad385d302db5cb3fb646997ab0dbdfbcfc510 Chris Hapgood cch1@hapgoods.com adb3dbfc330e6f62c8a63dc48d19dd07f2fa31b6 Chris Hapgood cch1@hapgoods.com http://github.com/cch1/authorize/commit/5e1665a348572a30eac2ff8894b83f60cf455255 5e1665a348572a30eac2ff8894b83f60cf455255 2009-08-17T08:58:52-07:00 2009-08-17T08:58:52-07:00 Add flexibility to association b5a1afe03f0458c116e0845b349a71c4f360f106 Chris Hapgood cch1@hapgoods.com 1263b30890a0c06f724c25e88ab51049e34f0eae Chris Hapgood cch1@hapgoods.com http://github.com/cch1/authorize/commit/adb3dbfc330e6f62c8a63dc48d19dd07f2fa31b6 adb3dbfc330e6f62c8a63dc48d19dd07f2fa31b6 2009-08-15T16:21:50-07:00 2009-08-15T16:21:50-07:00 Make Token class more parameter-driven and stop testing internals 5ec1f94b0a8f590eee059587264666ace56f8531 Chris Hapgood cch1@hapgoods.com 6a33a9c8f4a22d009cea92dadbde4d2b74f5c2a3 Chris Hapgood cch1@hapgoods.com http://github.com/cch1/authorize/commit/1263b30890a0c06f724c25e88ab51049e34f0eae 1263b30890a0c06f724c25e88ab51049e34f0eae 2009-08-13T10:31:16-07:00 2009-08-13T10:31:16-07:00 Concentrate global authorization complexity in find_effective finder * Restore conventional behavior to :as and :with scopes. * Factor out duplication in #to_s and its helper #subj e027eeecee2f1bb566a06d7884cf5f79a186f054 Chris Hapgood cch1@hapgoods.com 95095fa10b2a103b5c23d610f5bc335e77afe463 Chris Hapgood cch1@hapgoods.com http://github.com/cch1/authorize/commit/6a33a9c8f4a22d009cea92dadbde4d2b74f5c2a3 6a33a9c8f4a22d009cea92dadbde4d2b74f5c2a3 2009-08-13T10:26:00-07:00 2009-08-13T10:26:00-07:00 Clean up log message a41acb1866c38491e07fa9b7f61435bf4380c085 Chris Hapgood cch1@hapgoods.com 56c53397102a5058a04684eee8066854b37d43db Chris Hapgood cch1@hapgoods.com http://github.com/cch1/authorize/commit/95095fa10b2a103b5c23d610f5bc335e77afe463 95095fa10b2a103b5c23d610f5bc335e77afe463 2009-08-13T09:17:55-07:00 2009-08-13T09:17:55-07:00 Test validation of token presence 5b71d583df60d8489ce8b5892fcdcceaf25d031f Chris Hapgood cch1@hapgoods.com bdb135691be2722bb2a4a40d025c80f8438ee57d Chris Hapgood cch1@hapgoods.com http://github.com/cch1/authorize/commit/56c53397102a5058a04684eee8066854b37d43db 56c53397102a5058a04684eee8066854b37d43db 2009-08-13T08:53:43-07:00 2009-08-13T08:53:43-07:00 Make Token an immutable object subclassing String We subclass String so that ActiveRecord will db-quote a token with #to_s instead of the senseless #to_yaml. Otherwise, delegating would have been a more appropriate approach. aaaf16f797dc24abb9c70b288eb6b6310e3e5dc6 Chris Hapgood cch1@hapgoods.com 869a5d566f22723db9c71050b1a7564cf3ee4d37 Chris Hapgood cch1@hapgoods.com http://github.com/cch1/authorize/commit/bdb135691be2722bb2a4a40d025c80f8438ee57d bdb135691be2722bb2a4a40d025c80f8438ee57d 2009-08-12T19:15:43-07:00 2009-08-12T19:15:43-07:00 Made Token act_as_trustee f17137faa79d575839eeba494b2b7a1bc45f27b7 Chris Hapgood cch1@hapgoods.com 868998b73803089bbe70562002ec7b410673d3bd Chris Hapgood cch1@hapgoods.com http://github.com/cch1/authorize/commit/869a5d566f22723db9c71050b1a7564cf3ee4d37 869a5d566f22723db9c71050b1a7564cf3ee4d37 2009-08-12T16:06:21-07:00 2009-08-12T16:06:21-07:00 Generate tokens in fixtures properly bb05d98787d8adba71feec135287aafa13e0f7f0 Chris Hapgood cch1@hapgoods.com 4a34a089509f0f959228807163b59bf0660041e4 Chris Hapgood cch1@hapgoods.com http://github.com/cch1/authorize/commit/868998b73803089bbe70562002ec7b410673d3bd 868998b73803089bbe70562002ec7b410673d3bd 2009-08-12T15:59:25-07:00 2009-08-12T15:59:25-07:00 Make Token more flexible on input by coercing arguments with #to_s 64793a7a343c24514772e6560db0cefe48b16840 Chris Hapgood cch1@hapgoods.com 3d1e0df8cd29518911db761c735a85adf4eed1f8 Chris Hapgood cch1@hapgoods.com http://github.com/cch1/authorize/commit/4a34a089509f0f959228807163b59bf0660041e4 4a34a089509f0f959228807163b59bf0660041e4 2009-08-12T15:29:52-07:00 2009-08-12T15:29:52-07:00 Remove cruft from DegenerateUser model e77fb8e9baa212d6d98eafb286c5a4e36f787afc Chris Hapgood cch1@hapgoods.com