Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
- Loading branch information
Showing
1 changed file
with
202 additions
and
0 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,202 @@ | ||
| # Allowy - the simple authorization for Ruby (and/or Rails) | ||
|
|
||
| Allowy is the authorization library that doesn't enforce tight DSL on you. | ||
| It is very simple yet powerful. | ||
|
|
||
| If you have any questions please contact me [@dnagir](http://www.ApproachE.com). | ||
|
|
||
| ## Why another one? | ||
|
|
||
| I've been using really great [cancan](https://github.com/ryanb/cancan) gem by Ryan Bates for a long time. | ||
| It does its job amazingly well. | ||
|
|
||
| CanCan doesn't work very well for me when Ability definitions grow above 20 lines or so: | ||
|
|
||
| - it becomes **really** hard to track down why something was (or not) allowed. | ||
| - DSL enforces you to use ActiveRecord-like scopes or block to fall back. Those grow and it gets hard to maintain. | ||
| - The Ability class contains all the definitions for everything. Hard to test, hard to maintain. | ||
| - Implicit permission - CanCan tries to be very smart (and is indeed) using aliases such as `:manage` but it makes even harder to maintain. | ||
| - Implicit permission - you can use any symbol to check permissions. `:love_people` will do, even if you never defined it. | ||
| - A little bit tight to ORM. When using with database such as neo4j, some smalish things don't work. So I prefer to be explicit. | ||
|
|
||
| So I decided to put up allowy to solve those issue for me. | ||
|
|
||
| [Allowy](https://github.com/dnagir/allowy) better suites if you want more control over your authorization. It is inspired by CanCan, but was implemented with simplicity and explicitness in mind. | ||
|
|
||
|
|
||
| # Install | ||
|
|
||
| Add it to your Rails application's `Gemfile`: | ||
|
|
||
| ```ruby | ||
| gem 'alowy' | ||
| ``` | ||
|
|
||
| Then `bundle install`. | ||
|
|
||
| Or use `allowy` gem any other way you are not in Rails. | ||
|
|
||
| # Usage | ||
|
|
||
| I will be assuming a CMS-like system in the examples below. | ||
| The `Page` class may be ActiveRecord, Mongoid or any other model of your choise. Doesn't matter. | ||
|
|
||
|
|
||
| ## Minimal setup | ||
|
|
||
| You define a set of permissions per class. | ||
| If you want to safeguard `Page` class then define `PageAccess` class: | ||
|
|
||
| ```ruby | ||
| class PageAccess | ||
| include Allowy::AccessControl | ||
|
|
||
| # This will allow you to ask: can? :view, page | ||
| # The truthy result of this function will grant access, otherwise not. | ||
| def view?(page) | ||
| page and page.published? | ||
| end | ||
|
|
||
| def edit?(page) | ||
| page and page.wiki? | ||
| end | ||
| end | ||
|
|
||
| # Then, in rails, you would use it: | ||
| can? :view, page | ||
| cannot? :edit, page | ||
| authorize! :view, page # raises Allowy::AccessDenied if can?(:view, page) return false | ||
| can? :love_people, page # Will fail because `love_people` is not defined on the Access Control class | ||
| ``` | ||
|
|
||
| ## Context | ||
|
|
||
| You can access current user, request data etc using the `context` method. | ||
| In Rails, the context is set to the current controller, so you have full access to it (not only the current user!). | ||
|
|
||
|
|
||
| ```ruby | ||
| class PageAccess | ||
| include Allowy::AccessControl | ||
|
|
||
| def view?(page) | ||
| context.user_signed_in? and page.published? | ||
| end | ||
| end | ||
| ``` | ||
|
|
||
| If you want to change the context in Rails then just override it on a single controller or globally on the `ApplicationController`: | ||
|
|
||
| ```ruby | ||
| class DefaultAccess | ||
| include Allowy::AccessControl | ||
| # This will give you methods without the need to go to context object | ||
| delegate :current_user, :to => :context | ||
| delegate :current_company, :to => :context | ||
| end | ||
| ``` | ||
|
|
||
| ## More comprehensive example | ||
|
|
||
| You probably have multiple classes that you want to protect. | ||
| I recommend creating your own base class to provide common context and maybe some utility methods: | ||
|
|
||
| ```ruby | ||
| class DefaultAccess | ||
| include Allowy::AccessControl | ||
| end | ||
| ``` | ||
|
|
||
| Then you can create multiple access control classes much easier: | ||
|
|
||
| ```ruby | ||
| class PageAccess < DefaultAccess | ||
| # can? :view, page | ||
| def view?(page) | ||
| page and page.published? | ||
| end | ||
|
|
||
| # can? :edit, page | ||
| def edit?(page) | ||
| view?(page) and page.wiki? # Notice how we can reuse other definitions! | ||
| end | ||
|
|
||
| # can? :create, WikiPage | ||
| def create?(page_class) | ||
| # We can do something with WikiPage here if we need to | ||
| # but can just ignore it and authorize based on current context only | ||
| current_user and current_user.admin? | ||
| end | ||
|
|
||
| # can? :search, Page, 'Ruby rocks!' | ||
| def search?(clazz, phrase) | ||
| # Apart from context, we can require to pass additional parameters | ||
| create?(Page) and (phrase || '').match /rocks/i | ||
| end | ||
| end | ||
| ``` | ||
|
|
||
|
|
||
| # Testing with RSpec | ||
|
|
||
| To test the access control classes you can just instantiate those passing context as a parameter. | ||
| Most of the times you will stub out the context, so more isolated is a piece of cake. | ||
|
|
||
| You need to `require 'allowy/rspec'` to enable the RSpec matchers and Rails controller extensions. | ||
| It will give you RSpec matcher `be_able_to` and `ignore_authorization!` macro for controller specs. | ||
|
|
||
|
|
||
| ```ruby | ||
| # spec/models/page_access.rb | ||
| # Example spec for the PageAccess | ||
| describe PageAccess do | ||
| subject { PageAccess.new double(current_user: User.new.or_whatever) } | ||
| let(:page) { Page.new } | ||
|
|
||
| describe "#view" do | ||
| it { should_not be_able_to :view, page } | ||
|
|
||
| context "when published" do | ||
| before { page.publish! } | ||
| it { should be_able_to :view, page } | ||
| end | ||
| end | ||
|
|
||
| # and so on | ||
| end | ||
|
|
||
|
|
||
| # Example of a controller specs | ||
| describe PagesController do | ||
| # This will always grant access, so you don't have to create too many objects | ||
| # But make sure you test PageAccess separately as in the example above | ||
| ignore_authorization! | ||
|
|
||
| it "will always allow no matter what" do | ||
| post(:create).should be_success | ||
| end | ||
| end | ||
| ``` | ||
|
|
||
| # Development | ||
|
|
||
|
|
||
| - Source hosted at [GitHub](https://github.com/dnagir/allowy) | ||
| - Report issues and feature requests to [GitHub Issues](https://github.com/dnagir/allowy/issues) | ||
| - Ping me on Twitter [@dnagir](https://twitter.com/#!/dnagir) | ||
|
|
||
|
|
||
| To start contributing (assuming you already cloned the repo in cd-d into it): | ||
|
|
||
| ```bash | ||
| bundle install | ||
| # Now run the Ruby specs | ||
| bundle exec rspec spec/ | ||
| ``` | ||
|
|
||
|
|
||
| Pull requests are very welcome, but please include the specs. | ||
|
|
||
| # License | ||
|
|
||
| [MIT] (http://www.opensource.org/licenses/mit-license.php) |