forked from jnunemaker/canable
-
Notifications
You must be signed in to change notification settings - Fork 1
/
roles.rb
99 lines (80 loc) · 2.08 KB
/
roles.rb
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
$LOAD_PATH.unshift(File.join(File.dirname(__FILE__), '..', 'lib'))
$LOAD_PATH.unshift(File.dirname(__FILE__))
require 'rubygems'
require 'activesupport'
require 'canable'
require 'terminal-table/import'
module Canable::Roles
module BasicRole
include Canable::Role
default_response false
end
module EmployeeRole
include Canable::Role
default_response false
def can_destroy_article?(article)
article.creator == @name
end
def can_update_article?(article)
article.creator == @name
end
end
module ManagerRole
include Canable::Role
include EmployeeRole
def can_destroy_article?(article)
true
end
end
module AdminRole
include Canable::Role
default_response true
def can_create_article?(article)
false
end
end
end
class User
include Canable::Actor
attr_accessor :name
attr_accessor :role
default_role Canable::Roles::BasicRole
#role_attribute :@role #-- RBACanable by default looks in @role for a Module constant or string to use as a role
def initialize(attributes = {})
@name = attributes[:name]
@role = attributes[:role]
end
def to_s
"#{@role.to_s}: #{@name}"
end
end
class Article
include Canable::Ables
attr_accessor :creator
def initialize(attributes = {})
@creator = attributes[:creator]
end
def to_s
"#{@creator}'s article"
end
end
users = [
User.new(:name => "John", :role => :employee),
User.new(:name => "Steve", :role => :manager),
User.new(:name => "Harry", :role => :admin),
User.new(:name => "Jim")
]
posts = [
Article.new(:creator => "John"),
Article.new(:creator => "Steve"),
Article.new(:creator => "Harry")
]
user_table = table do |t|
t.headings = "User", "Resource", "Can View?", "Can Create?", "Can Update?", "Can Destroy?", "@role", "Included Role"
users.each do |user|
posts.each do |post|
t << [user.to_s, post.to_s, user.can_view?(post), user.can_create?(post), user.can_update?(post), user.can_destroy?(post), user.role, user.canable_included_role]
end
end
end
puts user_table