Skip to content

HTTPS clone URL

Subversion checkout URL

You can clone with HTTPS or Subversion.

Download ZIP
Newer
Older
100644 248 lines (115 sloc) 8.713 kb
efa3ff1 @ryanb releasing 1.6.0
authored
1 1.6.0 (March 11, 2011)
2
3 * Added MetaWhere support - see issue #194 and #261
4
5 * Allow Active Record scopes in Ability conditions - see issue #257
6
7 * Added :if and :unless options to check_authorization - see issue #284
8
9 * Several Inherited Resources fixes (thanks aq1018, tanordheim and stefanoverna)
10
11 * Pass action name to accessible_by call when loading a collection (thanks amw)
12
13 * Added :prepend option to load_and_authorize_resource to load before other filters - see issue #290
14
15 * Fixed spacing issue in I18n message for multi-word model names - see issue #292
16
17 * Load resource collection for any action which doesn't have an "id" parameter - see issue #296
18
19 * Raise an exception when trying to make a Ability condition with both a hash of conditions and a block - see issue #269
20
21
929579f @ryanb releasing 1.5.1
authored
22 1.5.1 (January 20, 2011)
23
24 * Fixing deeply nested conditions in Active Record adapter - see issue #246
25
26 * Improving Mongoid support for multiple can and cannot definitions (thanks stellard) - see issue #239
27
28
04522c9 @ryanb releasing 1.5.0
authored
29 1.5.0 (January 11, 2011)
3885f46 @ryanb updating changelog
authored
30
31 * Added an Ability generator - see issue #170
32
33 * Added DataMapper support (thanks natemueller)
34
35 * Added Mongoid support (thanks bowsersenior)
36
37 * Added skip_load_and_authorize_resource methods to controller class - see issue #164
38
39 * Added support for uncountable resources in index action - see issue #193
40
41 * Cleaned up README and added spec/README
42
43 * Internal: renamed CanDefinition to Rule
44
45 * Internal: added a model adapter layer for easily supporting more ORMs
46
47 * Internal: added .rvmrc to auto-switch to 1.8.7 with gemset - see issue #231
48
49
872e4cf @ryanb releasing version 1.4.1
authored
50 1.4.1 (November 12, 2010)
51
52 * Renaming skip_authorization to skip_authorization_check - see issue #169
53
54 * Adding :through_association option to load_resource (thanks hunterae) - see issue #171
55
56 * The :shallow option now works with the :singleton option (thanks nandalopes) - see issue #187
57
58 * Play nicely with quick_scopes gem (thanks ramontayag) - see issue #183
59
60 * Fix odd behavior when "cache_classes = false" (thanks mphalliday) - see issue #174
61
62
67cd83d @ryanb releasing version 1.4.0
authored
63 1.4.0 (October 5, 2010)
bf9b8ad @ryanb filling in some inline documentation for 1.4
authored
64
b0cec52 @ryanb adding a couple things to the changelog
authored
65 * Adding Gemfile; to get specs running just +bundle+ and +rake+ - see issue #163
66
67 * Stop at 'cannot' definition when there are no conditions - see issue #161
68
3391c5a @ryanb adding to changelog
authored
69 * The :through option will now call a method with that name if instance variable doesn't exist - see issue #146
70
71 * Adding :shallow option to load_resource to bring back old behavior of fetching a child without a parent
72
73 * Raise AccessDenied error when loading a child and parent resource isn't found
74
75 * Abilities defined on a module will apply to anything that includes that module - see issue #150 and #152
76
77 * Abilities can be defined with a string of SQL in addition to a block so accessible_by works with a block - see issue #150
78
1f81b8d @ryanb use 'send' to access controller current_ability in case it's private
authored
79 * Adding better support for InheritedResource - see issue #23
3391c5a @ryanb adding to changelog
authored
80
1f81b8d @ryanb use 'send' to access controller current_ability in case it's private
authored
81 * Loading the collection instance variable (for index action) using accessible_by - see issue #137
3391c5a @ryanb adding to changelog
authored
82
83 * Adding action and subject variables to I18n unauthorized message - closes #142
84
bf9b8ad @ryanb filling in some inline documentation for 1.4
authored
85 * Adding check_authorization and skip_authorization controller class methods to ensure authorization is performed (thanks justinko) - see issue #135
86
87 * Setting initial attributes based on ability conditions in new/create actions - see issue #114
88
89 * Check parent attributes for nested association in index action - see issue #121
90
91 * Supporting nesting in can? method using hash - see issue #121
92
93 * Adding I18n support for Access Denied messages (thanks EppO) - see issue #103
94
95 * Passing no arguments to +can+ definition will pass action, class, and object to block - see issue #129
96
97 * Don't pass action to block in +can+ definition when using :+manage+ option - see issue #129
98
99 * No longer calling block in +can+ definition when checking on class - see issue #116
100
101
04b523e @ryanb releasing version 1.3.4
authored
102 1.3.4 (August 31, 2010)
103
104 * Don't stop at +cannot+ with hash conditions when checking class (thanks tamoya) - see issue #131
105
106
a10a38c @ryanb releasing version 1.3.3
authored
107 1.3.3 (August 20, 2010)
108
109 * Switching to Rspec namespace to remove deprecation warning in Rspec 2 - see issue #119
110
111 * Pluralize nested associations for conditions in accessible_by (thanks mlooney) - see issue #123
112
113
a566ea0 @ryanb releasing version 1.3.2 which fixes slice error when passing custom reso...
authored
114 1.3.2 (August 7, 2010)
115
116 * Fixing slice error when passing in custom resource name - see issue #112
117
118
cd74267 @ryanb releasing version 1.3.1 with sanitize_sql fix
authored
119 1.3.1 (August 6, 2010)
120
121 * Fixing protected sanitize_sql error - see issue #111
122
123
7a17586 @ryanb releasing version 1.3.0
authored
124 1.3.0 (August 6, 2010)
125
7d9e710 @ryanb updating changelog
authored
126 * Adding :find_by option to load_resource - see issue #19
127
c9e0f4e @ryanb renaming :singular resource option to :singleton
authored
128 * Adding :singleton option to load_resource - see issue #93
7d9e710 @ryanb updating changelog
authored
129
a10a38c @ryanb releasing version 1.3.3
authored
130 * Supporting multiple resources in :through option for polymorphic associations - see issue #73
7d9e710 @ryanb updating changelog
authored
131
132 * Supporting Single Table Inheritance for "can" comparisons - see issue #55
133
134 * Adding :instance_name option to load/authorize_resource - see issue #44
135
136 * Don't pass nil to "new" to keep MongoMapper happy - see issue #63
137
156839b @ryanb only use the :read action when authorizing parent resources
authored
138 * Parent resources are now authorized with :read action.
139
25a1c55 @ryanb adding :through option to replace :nesting option and moving ResourceAut...
authored
140 * Changing :resource option in load/authorize_resource back to :class with ability to pass false
141
142 * Removing :nested option in favor of :through option with separate load/authorize call
143
144 * Moving internal logic from ResourceAuthorization to ControllerResource class
145
c5737f6 @ryanb adding thanks to changelog
authored
146 * Supporting multiple "can" and "cannot" calls with accessible_by (thanks funny-falcon) - see issue #71
1659f21 @ryanb updating changelong with support for multiple can calls in accessible_by...
authored
147
cad4259 @ryanb supporting deeply nested aliases - closes #98
authored
148 * Supporting deeply nested aliases - see issue #98
149
7a17586 @ryanb releasing version 1.3.0
authored
150
1b4377c @ryanb releasing version 1.2.0
authored
151 1.2.0 (July 16, 2010)
152
1ade442 @ryanb load parent resources for collection actions such 'index'
authored
153 * Load nested parent resources on collection actions such as "index" (thanks dohzya)
154
2a3dd85 @ryanb adding :name option to load_and_authorize_resource if it does not match ...
authored
155 * Adding :name option to load_and_authorize_resource if it does not match controller - see issue #65
156
dfd84a1 @ryanb improving inline documentation
authored
157 * Fixing issue when using accessible_by with nil can conditions (thanks jrallison) - see issue #66
7543eed fixing issue when using accessible_by with nil can conditions - closes #...
John Allison authored
158
159 * Pluralize table name for belongs_to associations in can conditions hash (thanks logandk) - see issue #62
160
06296b0 @ryanb support has_many association or arrays in can conditions hash
authored
161 * Support has_many association or arrays in can conditions hash
162
e200814 @ryanb adding joins clause to accessible_by when conditions are across associat...
authored
163 * Adding joins clause to accessible_by when conditions are across associations
164
1b4377c @ryanb releasing version 1.2.0
authored
165
232ecd5 @ryanb releasing 1.1.1 which fixes behavior in Rails 3 by properly initializing...
authored
166 1.1.1 (April 17, 2010)
167
168 * Fixing behavior in Rails 3 by properly initializing ResourceAuthorization
169
170
ff8c11c @ryanb releasing version 1.1, see wiki and changelog for details
authored
171 1.1.0 (April 17, 2010)
69f7a65 @ryanb support additional arguments to can? which get passed to the block - clo...
authored
172
f1ba76b @ryanb supporting arrays, ranges, and nested hashes in ability conditions
authored
173 * Supporting arrays, ranges, and nested hashes in ability conditions
174
f466963 @ryanb allow access to classes when using hash conditions since you'll generall...
authored
175 * Removing "unauthorized!" method in favor of "authorize!" in controllers
8903fee @ryanb removing unauthorized! in favor of authorize! and including more informa...
authored
176
177 * Adding action, subject and default_message abilities to AccessDenied exception - see issue #40
178
ef5900c @ryanb adding caching to current_ability class method, if you're overriding thi...
authored
179 * Adding caching to current_ability controller method, if you're overriding this be sure to add caching too.
180
240c281 @ryanb renaming ActiveRecordAdditions#can method to accessible_by since it flow...
authored
181 * Adding "accessible_by" method to Active Record for fetching records matching a specific ability
3c68a91 @ryanb adding can method to Active Record for fetching records matching a speci...
authored
182
baeef0b @ryanb adding conditions behavior to Ability#can and fetch with Ability#conditi...
authored
183 * Adding conditions behavior to Ability#can and fetch with Ability#conditions - see issue #53
184
23a5888 @ryanb renaming :class option to :resource for load_and_authorize_resource whic...
authored
185 * Renaming :class option to :resource for load_and_authorize_resource which now supports a symbol for non models - see issue #45
186
187 * Properly handle Admin::AbilitiesController in params[:controller] - see issue #46
188
189 * Adding be_able_to RSpec matcher (thanks dchelimsky), requires Ruby 1.8.7 or higher - see issue #54
6e1e96c @ryanb allow additional arguments for be_able_to matcher, this requires Ruby 1....
authored
190
69f7a65 @ryanb support additional arguments to can? which get passed to the block - clo...
authored
191 * Support additional arguments to can? which get passed to the block - see issue #48
192
193
3b9cdce @ryanb releasing v1.0.2
authored
194 1.0.2 (Dec 30, 2009)
195
7d3b4cd @ryanb Adding clear_aliased_actions to Ability which removes previously defined...
authored
196 * Adding clear_aliased_actions to Ability which removes previously defined actions including defaults - see issue #20
197
f99d506 @ryanb Append aliased actions (don't overwrite them) - closes #20
authored
198 * Append aliased actions (don't overwrite them) - see issue #20
199
ef22de6 @ryanb adding custom message argument to unauthorized! method - closes #18
authored
200 * Adding custom message argument to unauthorized! method (thanks tjwallace) - see issue #18
201
202
f919ac5 @ryanb releasing gem v1.0.1
authored
203 1.0.1 (Dec 14, 2009)
204
021f33c @ryanb Adding :class option to load_resource so one can customize which class t...
authored
205 * Adding :class option to load_resource so one can customize which class to use for the model - see issue #17
206
e9f0130 @ryanb Don't fetch parent of nested resource if *_id parameter is missing so it...
authored
207 * Don't fetch parent of nested resource if *_id parameter is missing so it works with shallow nested routes - see issue #14
208
209
f7480d1 @ryanb releasing gem v1.0.0 (backwards incompatible, see changelog)
authored
210 1.0.0 (Dec 13, 2009)
211
ffa677b @ryanb Don't set resource instance variable if it has been set already - closes...
authored
212 * Don't set resource instance variable if it has been set already - see issue #13
213
a75aee7 @ryanb Allowing :nested option to accept an array for deep nesting
authored
214 * Allowing :nested option to accept an array for deep nesting
215
cd217eb @ryanb adding :nested option for load_resource - closes #10
authored
216 * Adding :nested option to load resource method - see issue #10
217
94e031b @ryanb Pass :only and :except options to before filters for load/authorize reso...
authored
218 * Pass :only and :except options to before filters for load/authorize resource methods.
219
63634b4 @ryanb Adding :collection and :new options to load_resource method so we can sp...
authored
220 * Adding :collection and :new options to load_resource method so we can specify behavior of additional actions if needed.
221
a5f9882 @ryanb turning load and authorize resource methods into class methods which set...
authored
222 * BACKWARDS INCOMPATIBLE: turning load and authorize resource methods into class methods which set up the before filter so they can accept additional arguments.
223
f7480d1 @ryanb releasing gem v1.0.0 (backwards incompatible, see changelog)
authored
224
43947c8 @ryanb releasing gem v0.2.1
authored
225 0.2.1 (Nov 26, 2009)
226
227 * many internal refactorings - see issues #11 and #12
228
d4405e6 @ryanb adding cannot method to define which abilities cannot be done - closes #...
authored
229 * adding "cannot" method to define which abilities cannot be done - see issue #7
230
e603655 @ryanb support custom objects (usually symbols) in can definition - closes #8
authored
231 * support custom objects (usually symbols) in can definition - see issue #8
232
f7480d1 @ryanb releasing gem v1.0.0 (backwards incompatible, see changelog)
authored
233
52649a8 @ryanb releasing gem 0.2.0 NOT BACKWARDS COMPATABLE, SEE CHANGELOG
authored
234 0.2.0 (Nov 17, 2009)
235
15a01a5 @ryanb fixing behavior of load_and_authorize_resource for namespaced controller...
authored
236 * fix behavior of load_and_authorize_resource for namespaced controllers - see issue #3
237
766fe86 @ryanb support arrays being passed to 'can' to specify multiple actions or clas...
authored
238 * support arrays being passed to "can" to specify multiple actions or classes - see issue #2
239
0f49b54 @ryanb adding 'cannot?' method which performs opposite check of 'can?' - closes...
authored
240 * adding "cannot?" method to ability, controller, and view which is inverse of "can?" - see issue #1
241
1edf583 @ryanb BACKWARDS INCOMPATIBLE: use Ability#initialize instead of 'prepare' to s...
authored
242 * BACKWARDS INCOMPATIBLE: use Ability#initialize instead of 'prepare' to set up abilities - see issue #4
243
52649a8 @ryanb releasing gem 0.2.0 NOT BACKWARDS COMPATABLE, SEE CHANGELOG
authored
244
245 0.1.0 (Nov 16, 2009)
28eaf1b @ryanb releasing gem v0.1.0
authored
246
247 * initial release
Something went wrong with that request. Please try again.