Skip to content
/ doorboy Public

Simple and Light-Weight Library for Authorization made with Elixir

1 star 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

mori5321/doorboy

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

19 Commits

.elixir_ls

.elixir_ls

 
 

.vscode

.vscode

 
 

config

config

 
 

lib

lib

 
 

test

test

 
 

.formatter.exs

.formatter.exs

 
 

.gitignore

.gitignore

 
 

README.md

README.md

 
 

mix.exs

mix.exs

 
 

mix.lock

mix.lock

 
 

Repository files navigation

Doorboy

Description

Doorboy is a simple and lightweight library for authorization.

Usage

1. Define policy file for each Controller. And define Authorization-Function.

Authorization-Function

  • can be freely named
  • is recommended to be named with corresponding controller's action name.

if Authorization-Function returns true, it returns {:ok, nil}. if not, it returns {:error, :unauthorized}.

defmodule Sample.HogeControllerPolicy do
  # Authorization-Function
  #
  # If this function returns true. Function 'authorize' in your controller returns {:ok, nil}
  # If this function returns false . Function 'authorize' in your controller returns {:error, :unauthorized}
  def update(user: user, clip: clip) do
    user.id == clip.user_id
  end
end

2. You can call your Authorization-Function in your controller with 'authorize'.

  1. set "use Doorboy, policy: YourPolicyFile" in your Controller
  2. call authorize method wherever you like.
defmodule Sample.HogeController do
  use Doorboy, policy: Sample.HogeControllerPolicy

  def update(conn, params) do
    with {:ok, clip} <- Hoge.fetch_clip(params.id),
         {:ok, _} <- authorize(:update, user: conn.assigns.current_user, clip: clip), #authorize! 
         ...
    do
      ...
    else
      {:error, :unauthorized} -> ...
    end
  end
end

authorize/2

authorize(authorize_function_name, opts)

authorize(:update, user: user, clips: clips)

# returns {:ok, nil} or {:error, :unauthorized}

authorize!/2

authorize!(authorize_function_name, opts)

authorize!(:update, user: user, clips: clips)

# returns {:ok, nil} or raise AuthorizationError

Installation

The package can be installed by adding doorman to your list of dependencies in mix.exs:

def deps do
  [
    {:doorboy, "~> 0.1.1"}
  ]
end

Documentation can be generated with ExDoc and published on HexDocs. Once published, the docs can be found at https://hexdocs.pm/doorman.

About

Simple and Light-Weight Library for Authorization made with Elixir

Resources

Readme
Activity

Stars

1 star

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages