Skip to content
Newer
Older
100644 292 lines (134 sloc) 9.79 KB
6a01427 @ryanb releasing 1.6.5
authored
1 1.6.5 (May 18, 2011)
2
3 * pass action and subject through AccessDenied exception when :through isn't found - issue #366
4
5 * many Mongoid adapter improvements (thanks rahearn, cardagin) - issues #363, #352, #343
6
7 * allow :through option to work with private controller methods - issue #360
8
9 * ensure Mongoid::Document is defined before loading Mongoid adapter - issue #359
10
11 * many DataMapper adapter improvements (thanks emmanuel) - issue #355
12
13 * handle checking nil attributes through associations (thanks thatothermitch) - issue #330
14
15 * improve scope merging - issue #328
16
17
18
7bcfd3d @ryanb releasing 1.6.4
authored
19 1.6.4 (March 29, 2011)
20
21 * Fixed mongoid 'or' error - see issue #322
22
23
fb8e9bd @ryanb releasing 1.6.3
authored
24 1.6.3 (March 25, 2011)
25
26 * Make sure ActiveRecord::Relation is defined before checking conditions against it so Rails 2 is supported again - see issue #312
27
28 * Return subject passed to authorize! - see issue #314
29
30
5d97cfb @ryanb releasing 1.6.2
authored
31 1.6.2 (March 18, 2011)
32
33 * Fixed instance loading when :singleton option is used - see issue #310
34
35
b0c1646 @ryanb releasing 1.6.1
authored
36 1.6.1 (March 15, 2011)
37
38 * Use Item.new instead of build_item for singleton resource so it doesn't effect database - see issue #304
39
40 * Made accessible_by action default to :index and parent action default to :show instead of :read - see issue #302
41
42 * Reverted Inherited Resources "collection" override since it doesn't seem to be working - see issue #305
43
44
efa3ff1 @ryanb releasing 1.6.0
authored
45 1.6.0 (March 11, 2011)
46
47 * Added MetaWhere support - see issue #194 and #261
48
49 * Allow Active Record scopes in Ability conditions - see issue #257
50
51 * Added :if and :unless options to check_authorization - see issue #284
52
53 * Several Inherited Resources fixes (thanks aq1018, tanordheim and stefanoverna)
54
55 * Pass action name to accessible_by call when loading a collection (thanks amw)
56
57 * Added :prepend option to load_and_authorize_resource to load before other filters - see issue #290
58
59 * Fixed spacing issue in I18n message for multi-word model names - see issue #292
60
61 * Load resource collection for any action which doesn't have an "id" parameter - see issue #296
62
63 * Raise an exception when trying to make a Ability condition with both a hash of conditions and a block - see issue #269
64
65
929579f @ryanb releasing 1.5.1
authored
66 1.5.1 (January 20, 2011)
67
68 * Fixing deeply nested conditions in Active Record adapter - see issue #246
69
70 * Improving Mongoid support for multiple can and cannot definitions (thanks stellard) - see issue #239
71
72
04522c9 @ryanb releasing 1.5.0
authored
73 1.5.0 (January 11, 2011)
3885f46 @ryanb updating changelog
authored
74
75 * Added an Ability generator - see issue #170
76
77 * Added DataMapper support (thanks natemueller)
78
79 * Added Mongoid support (thanks bowsersenior)
80
81 * Added skip_load_and_authorize_resource methods to controller class - see issue #164
82
83 * Added support for uncountable resources in index action - see issue #193
84
85 * Cleaned up README and added spec/README
86
87 * Internal: renamed CanDefinition to Rule
88
89 * Internal: added a model adapter layer for easily supporting more ORMs
90
91 * Internal: added .rvmrc to auto-switch to 1.8.7 with gemset - see issue #231
92
93
872e4cf @ryanb releasing version 1.4.1
authored
94 1.4.1 (November 12, 2010)
95
96 * Renaming skip_authorization to skip_authorization_check - see issue #169
97
98 * Adding :through_association option to load_resource (thanks hunterae) - see issue #171
99
100 * The :shallow option now works with the :singleton option (thanks nandalopes) - see issue #187
101
102 * Play nicely with quick_scopes gem (thanks ramontayag) - see issue #183
103
104 * Fix odd behavior when "cache_classes = false" (thanks mphalliday) - see issue #174
105
106
67cd83d @ryanb releasing version 1.4.0
authored
107 1.4.0 (October 5, 2010)
bf9b8ad @ryanb filling in some inline documentation for 1.4
authored
108
b0cec52 @ryanb adding a couple things to the changelog
authored
109 * Adding Gemfile; to get specs running just +bundle+ and +rake+ - see issue #163
110
111 * Stop at 'cannot' definition when there are no conditions - see issue #161
112
3391c5a @ryanb adding to changelog
authored
113 * The :through option will now call a method with that name if instance variable doesn't exist - see issue #146
114
115 * Adding :shallow option to load_resource to bring back old behavior of fetching a child without a parent
116
117 * Raise AccessDenied error when loading a child and parent resource isn't found
118
119 * Abilities defined on a module will apply to anything that includes that module - see issue #150 and #152
120
121 * Abilities can be defined with a string of SQL in addition to a block so accessible_by works with a block - see issue #150
122
1f81b8d @ryanb use 'send' to access controller current_ability in case it's private
authored
123 * Adding better support for InheritedResource - see issue #23
3391c5a @ryanb adding to changelog
authored
124
1f81b8d @ryanb use 'send' to access controller current_ability in case it's private
authored
125 * Loading the collection instance variable (for index action) using accessible_by - see issue #137
3391c5a @ryanb adding to changelog
authored
126
127 * Adding action and subject variables to I18n unauthorized message - closes #142
128
bf9b8ad @ryanb filling in some inline documentation for 1.4
authored
129 * Adding check_authorization and skip_authorization controller class methods to ensure authorization is performed (thanks justinko) - see issue #135
130
131 * Setting initial attributes based on ability conditions in new/create actions - see issue #114
132
133 * Check parent attributes for nested association in index action - see issue #121
134
135 * Supporting nesting in can? method using hash - see issue #121
136
137 * Adding I18n support for Access Denied messages (thanks EppO) - see issue #103
138
139 * Passing no arguments to +can+ definition will pass action, class, and object to block - see issue #129
140
141 * Don't pass action to block in +can+ definition when using :+manage+ option - see issue #129
142
143 * No longer calling block in +can+ definition when checking on class - see issue #116
144
145
04b523e @ryanb releasing version 1.3.4
authored
146 1.3.4 (August 31, 2010)
147
148 * Don't stop at +cannot+ with hash conditions when checking class (thanks tamoya) - see issue #131
149
150
a10a38c @ryanb releasing version 1.3.3
authored
151 1.3.3 (August 20, 2010)
152
153 * Switching to Rspec namespace to remove deprecation warning in Rspec 2 - see issue #119
154
155 * Pluralize nested associations for conditions in accessible_by (thanks mlooney) - see issue #123
156
157
a566ea0 @ryanb releasing version 1.3.2 which fixes slice error when passing custom r…
authored
158 1.3.2 (August 7, 2010)
159
160 * Fixing slice error when passing in custom resource name - see issue #112
161
162
cd74267 @ryanb releasing version 1.3.1 with sanitize_sql fix
authored
163 1.3.1 (August 6, 2010)
164
165 * Fixing protected sanitize_sql error - see issue #111
166
167
7a17586 @ryanb releasing version 1.3.0
authored
168 1.3.0 (August 6, 2010)
169
7d9e710 @ryanb updating changelog
authored
170 * Adding :find_by option to load_resource - see issue #19
171
c9e0f4e @ryanb renaming :singular resource option to :singleton
authored
172 * Adding :singleton option to load_resource - see issue #93
7d9e710 @ryanb updating changelog
authored
173
a10a38c @ryanb releasing version 1.3.3
authored
174 * Supporting multiple resources in :through option for polymorphic associations - see issue #73
7d9e710 @ryanb updating changelog
authored
175
176 * Supporting Single Table Inheritance for "can" comparisons - see issue #55
177
178 * Adding :instance_name option to load/authorize_resource - see issue #44
179
180 * Don't pass nil to "new" to keep MongoMapper happy - see issue #63
181
156839b @ryanb only use the :read action when authorizing parent resources
authored
182 * Parent resources are now authorized with :read action.
183
25a1c55 @ryanb adding :through option to replace :nesting option and moving Resource…
authored
184 * Changing :resource option in load/authorize_resource back to :class with ability to pass false
185
186 * Removing :nested option in favor of :through option with separate load/authorize call
187
188 * Moving internal logic from ResourceAuthorization to ControllerResource class
189
c5737f6 @ryanb adding thanks to changelog
authored
190 * Supporting multiple "can" and "cannot" calls with accessible_by (thanks funny-falcon) - see issue #71
1659f21 @ryanb updating changelong with support for multiple can calls in accessible…
authored
191
cad4259 @ryanb supporting deeply nested aliases - closes #98
authored
192 * Supporting deeply nested aliases - see issue #98
193
7a17586 @ryanb releasing version 1.3.0
authored
194
1b4377c @ryanb releasing version 1.2.0
authored
195 1.2.0 (July 16, 2010)
196
1ade442 @ryanb load parent resources for collection actions such 'index'
authored
197 * Load nested parent resources on collection actions such as "index" (thanks dohzya)
198
2a3dd85 @ryanb adding :name option to load_and_authorize_resource if it does not mat…
authored
199 * Adding :name option to load_and_authorize_resource if it does not match controller - see issue #65
200
dfd84a1 @ryanb improving inline documentation
authored
201 * Fixing issue when using accessible_by with nil can conditions (thanks jrallison) - see issue #66
7543eed fixing issue when using accessible_by with nil can conditions - closes
John Allison authored
202
203 * Pluralize table name for belongs_to associations in can conditions hash (thanks logandk) - see issue #62
204
06296b0 @ryanb support has_many association or arrays in can conditions hash
authored
205 * Support has_many association or arrays in can conditions hash
206
e200814 @ryanb adding joins clause to accessible_by when conditions are across assoc…
authored
207 * Adding joins clause to accessible_by when conditions are across associations
208
1b4377c @ryanb releasing version 1.2.0
authored
209
232ecd5 @ryanb releasing 1.1.1 which fixes behavior in Rails 3 by properly initializ…
authored
210 1.1.1 (April 17, 2010)
211
212 * Fixing behavior in Rails 3 by properly initializing ResourceAuthorization
213
214
ff8c11c @ryanb releasing version 1.1, see wiki and changelog for details
authored
215 1.1.0 (April 17, 2010)
69f7a65 @ryanb support additional arguments to can? which get passed to the block - …
authored
216
f1ba76b @ryanb supporting arrays, ranges, and nested hashes in ability conditions
authored
217 * Supporting arrays, ranges, and nested hashes in ability conditions
218
f466963 @ryanb allow access to classes when using hash conditions since you'll gener…
authored
219 * Removing "unauthorized!" method in favor of "authorize!" in controllers
8903fee @ryanb removing unauthorized! in favor of authorize! and including more info…
authored
220
221 * Adding action, subject and default_message abilities to AccessDenied exception - see issue #40
222
ef5900c @ryanb adding caching to current_ability class method, if you're overriding …
authored
223 * Adding caching to current_ability controller method, if you're overriding this be sure to add caching too.
224
240c281 @ryanb renaming ActiveRecordAdditions#can method to accessible_by since it f…
authored
225 * Adding "accessible_by" method to Active Record for fetching records matching a specific ability
3c68a91 @ryanb adding can method to Active Record for fetching records matching a sp…
authored
226
baeef0b @ryanb adding conditions behavior to Ability#can and fetch with Ability#cond…
authored
227 * Adding conditions behavior to Ability#can and fetch with Ability#conditions - see issue #53
228
23a5888 @ryanb renaming :class option to :resource for load_and_authorize_resource w…
authored
229 * Renaming :class option to :resource for load_and_authorize_resource which now supports a symbol for non models - see issue #45
230
231 * Properly handle Admin::AbilitiesController in params[:controller] - see issue #46
232
233 * Adding be_able_to RSpec matcher (thanks dchelimsky), requires Ruby 1.8.7 or higher - see issue #54
6e1e96c @ryanb allow additional arguments for be_able_to matcher, this requires Ruby…
authored
234
69f7a65 @ryanb support additional arguments to can? which get passed to the block - …
authored
235 * Support additional arguments to can? which get passed to the block - see issue #48
236
237
3b9cdce @ryanb releasing v1.0.2
authored
238 1.0.2 (Dec 30, 2009)
239
7d3b4cd @ryanb Adding clear_aliased_actions to Ability which removes previously defi…
authored
240 * Adding clear_aliased_actions to Ability which removes previously defined actions including defaults - see issue #20
241
f99d506 @ryanb Append aliased actions (don't overwrite them) - closes #20
authored
242 * Append aliased actions (don't overwrite them) - see issue #20
243
ef22de6 @ryanb adding custom message argument to unauthorized! method - closes #18
authored
244 * Adding custom message argument to unauthorized! method (thanks tjwallace) - see issue #18
245
246
f919ac5 @ryanb releasing gem v1.0.1
authored
247 1.0.1 (Dec 14, 2009)
248
021f33c @ryanb Adding :class option to load_resource so one can customize which clas…
authored
249 * Adding :class option to load_resource so one can customize which class to use for the model - see issue #17
250
e9f0130 @ryanb Don't fetch parent of nested resource if *_id parameter is missing so…
authored
251 * Don't fetch parent of nested resource if *_id parameter is missing so it works with shallow nested routes - see issue #14
252
253
f7480d1 @ryanb releasing gem v1.0.0 (backwards incompatible, see changelog)
authored
254 1.0.0 (Dec 13, 2009)
255
ffa677b @ryanb Don't set resource instance variable if it has been set already - clo…
authored
256 * Don't set resource instance variable if it has been set already - see issue #13
257
a75aee7 @ryanb Allowing :nested option to accept an array for deep nesting
authored
258 * Allowing :nested option to accept an array for deep nesting
259
cd217eb @ryanb adding :nested option for load_resource - closes #10
authored
260 * Adding :nested option to load resource method - see issue #10
261
94e031b @ryanb Pass :only and :except options to before filters for load/authorize r…
authored
262 * Pass :only and :except options to before filters for load/authorize resource methods.
263
63634b4 @ryanb Adding :collection and :new options to load_resource method so we can…
authored
264 * Adding :collection and :new options to load_resource method so we can specify behavior of additional actions if needed.
265
a5f9882 @ryanb turning load and authorize resource methods into class methods which …
authored
266 * BACKWARDS INCOMPATIBLE: turning load and authorize resource methods into class methods which set up the before filter so they can accept additional arguments.
267
f7480d1 @ryanb releasing gem v1.0.0 (backwards incompatible, see changelog)
authored
268
43947c8 @ryanb releasing gem v0.2.1
authored
269 0.2.1 (Nov 26, 2009)
270
271 * many internal refactorings - see issues #11 and #12
272
d4405e6 @ryanb adding cannot method to define which abilities cannot be done - closes
authored
273 * adding "cannot" method to define which abilities cannot be done - see issue #7
274
e603655 @ryanb support custom objects (usually symbols) in can definition - closes #8
authored
275 * support custom objects (usually symbols) in can definition - see issue #8
276
f7480d1 @ryanb releasing gem v1.0.0 (backwards incompatible, see changelog)
authored
277
52649a8 @ryanb releasing gem 0.2.0 NOT BACKWARDS COMPATABLE, SEE CHANGELOG
authored
278 0.2.0 (Nov 17, 2009)
279
15a01a5 @ryanb fixing behavior of load_and_authorize_resource for namespaced control…
authored
280 * fix behavior of load_and_authorize_resource for namespaced controllers - see issue #3
281
766fe86 @ryanb support arrays being passed to 'can' to specify multiple actions or c…
authored
282 * support arrays being passed to "can" to specify multiple actions or classes - see issue #2
283
0f49b54 @ryanb adding 'cannot?' method which performs opposite check of 'can?' - clo…
authored
284 * adding "cannot?" method to ability, controller, and view which is inverse of "can?" - see issue #1
285
1edf583 @ryanb BACKWARDS INCOMPATIBLE: use Ability#initialize instead of 'prepare' t…
authored
286 * BACKWARDS INCOMPATIBLE: use Ability#initialize instead of 'prepare' to set up abilities - see issue #4
287
52649a8 @ryanb releasing gem 0.2.0 NOT BACKWARDS COMPATABLE, SEE CHANGELOG
authored
288
289 0.1.0 (Nov 16, 2009)
28eaf1b @ryanb releasing gem v0.1.0
authored
290
291 * initial release
Something went wrong with that request. Please try again.