forked from zpatrick/rbac
/
main.go
71 lines (59 loc) · 1.75 KB
/
main.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
package main
import (
"flag"
"fmt"
"log"
"os"
"strings"
"text/tabwriter"
"github.com/zpatrick/rbac"
)
func main() {
roleName := flag.String("role", "guest", "the role to use")
flag.Parse()
// assign a role
var role rbac.Role
switch r := strings.ToLower(*roleName); r {
case "guest":
role = NewGuestRole()
case "member":
role = NewMemberRole(Articles()[0].AuthorID)
case "admin":
role = NewAdminRole()
default:
log.Fatalf("Role '%s' not recognized. Only 'guest', 'member', or 'admin' may be used.", r)
}
// print role permissions
w := tabwriter.NewWriter(os.Stdout, 20, 4, 0, ' ', 0)
fmt.Fprintf(w, "Role: %s\n", role.RoleID)
fmt.Fprintln(w, "Action\tArticleID\tAuthorID\tAllowed")
fmt.Fprintln(w, "-------------------------------------------------------------------")
canCreate, err := role.Can("CreateArticle", "")
if err != nil {
log.Fatal(err)
}
fmt.Fprintf(w, "CreateArticle\t-\t-\t%t\n", canCreate)
for _, article := range Articles() {
canRead, err := role.Can("ReadArticle", article.ArticleID)
if err != nil {
log.Fatal(err)
}
canEdit, err := role.Can("EditArticle", article.ArticleID)
if err != nil {
log.Fatal(err)
}
canDelete, err := role.Can("DeleteArticle", article.ArticleID)
if err != nil {
log.Fatal(err)
}
canRate, err := role.Can("RateArticle", article.ArticleID)
if err != nil {
log.Fatal(err)
}
fmt.Fprintf(w, "ReadArticle\t%s\t%s\t%t\n", article.ArticleID, article.AuthorID, canRead)
fmt.Fprintf(w, "EditArticle\t%s\t%s\t%t\n", article.ArticleID, article.AuthorID, canEdit)
fmt.Fprintf(w, "DeleteArticle\t%s\t%s\t%t\n", article.ArticleID, article.AuthorID, canDelete)
fmt.Fprintf(w, "RateArticle\t%s\t%s\t%t\n", article.ArticleID, article.AuthorID, canRate)
w.Flush()
}
}