Skip to content
Newer
Older
100644 315 lines (145 sloc) 10.6 KB
9eebeb2 @ryanb releasing 1.6.7 with nested resource fix
ryanb authored Oct 4, 2011
1 1.6.7 (October 4, 2011)
2
3 * fixing nested resource problem caused by namespace addition - issue #482
4
5
26b40f2 @ryanb releasing version 1.6.6
ryanb authored Sep 28, 2011
6 1.6.6 (September 28, 2011)
7
8 * correct "return cant jump across threads" error when using check_authorization (thanks codeprimate) - issues #463, #469
9
10 * fixing tests in development by specifying with_model version (thanks kirkconnell) - issue #476
11
12 * added travis.yml file for TravisCI support (thanks bai) - issue #427
13
14 * better support for namespaced models (thanks whilefalse) - issues #424
15
16 * adding :id_param option to load_and_authorize_resource (thanks skhisma) - issue #425
17
18 * make default unauthorized message translatable text (thanks nhocki) - issue #409
19
20 * improving DataMapper behavior (thanks psanford, maxsum-corin) - issue #410, #373
21
22 * allow :find_by option to be full find method name - issue #335
23
24
6a01427 @ryanb releasing 1.6.5
ryanb authored May 18, 2011
25 1.6.5 (May 18, 2011)
26
27 * pass action and subject through AccessDenied exception when :through isn't found - issue #366
28
29 * many Mongoid adapter improvements (thanks rahearn, cardagin) - issues #363, #352, #343
30
31 * allow :through option to work with private controller methods - issue #360
32
33 * ensure Mongoid::Document is defined before loading Mongoid adapter - issue #359
34
35 * many DataMapper adapter improvements (thanks emmanuel) - issue #355
36
37 * handle checking nil attributes through associations (thanks thatothermitch) - issue #330
38
39 * improve scope merging - issue #328
40
41
7bcfd3d @ryanb releasing 1.6.4
ryanb authored Mar 29, 2011
42 1.6.4 (March 29, 2011)
43
44 * Fixed mongoid 'or' error - see issue #322
45
46
fb8e9bd @ryanb releasing 1.6.3
ryanb authored Mar 25, 2011
47 1.6.3 (March 25, 2011)
48
49 * Make sure ActiveRecord::Relation is defined before checking conditions against it so Rails 2 is supported again - see issue #312
50
51 * Return subject passed to authorize! - see issue #314
52
53
5d97cfb @ryanb releasing 1.6.2
ryanb authored Mar 18, 2011
54 1.6.2 (March 18, 2011)
55
56 * Fixed instance loading when :singleton option is used - see issue #310
57
58
b0c1646 @ryanb releasing 1.6.1
ryanb authored Mar 15, 2011
59 1.6.1 (March 15, 2011)
60
61 * Use Item.new instead of build_item for singleton resource so it doesn't effect database - see issue #304
62
63 * Made accessible_by action default to :index and parent action default to :show instead of :read - see issue #302
64
65 * Reverted Inherited Resources "collection" override since it doesn't seem to be working - see issue #305
66
67
efa3ff1 @ryanb releasing 1.6.0
ryanb authored Mar 10, 2011
68 1.6.0 (March 11, 2011)
69
70 * Added MetaWhere support - see issue #194 and #261
71
72 * Allow Active Record scopes in Ability conditions - see issue #257
73
74 * Added :if and :unless options to check_authorization - see issue #284
75
76 * Several Inherited Resources fixes (thanks aq1018, tanordheim and stefanoverna)
77
78 * Pass action name to accessible_by call when loading a collection (thanks amw)
79
80 * Added :prepend option to load_and_authorize_resource to load before other filters - see issue #290
81
82 * Fixed spacing issue in I18n message for multi-word model names - see issue #292
83
84 * Load resource collection for any action which doesn't have an "id" parameter - see issue #296
85
86 * Raise an exception when trying to make a Ability condition with both a hash of conditions and a block - see issue #269
87
88
929579f @ryanb releasing 1.5.1
ryanb authored Jan 20, 2011
89 1.5.1 (January 20, 2011)
90
91 * Fixing deeply nested conditions in Active Record adapter - see issue #246
92
93 * Improving Mongoid support for multiple can and cannot definitions (thanks stellard) - see issue #239
94
95
04522c9 @ryanb releasing 1.5.0
ryanb authored Jan 11, 2011
96 1.5.0 (January 11, 2011)
3885f46 @ryanb updating changelog
ryanb authored Jan 8, 2011
97
98 * Added an Ability generator - see issue #170
99
100 * Added DataMapper support (thanks natemueller)
101
102 * Added Mongoid support (thanks bowsersenior)
103
104 * Added skip_load_and_authorize_resource methods to controller class - see issue #164
105
106 * Added support for uncountable resources in index action - see issue #193
107
108 * Cleaned up README and added spec/README
109
110 * Internal: renamed CanDefinition to Rule
111
112 * Internal: added a model adapter layer for easily supporting more ORMs
113
114 * Internal: added .rvmrc to auto-switch to 1.8.7 with gemset - see issue #231
115
116
872e4cf @ryanb releasing version 1.4.1
ryanb authored Nov 12, 2010
117 1.4.1 (November 12, 2010)
118
119 * Renaming skip_authorization to skip_authorization_check - see issue #169
120
121 * Adding :through_association option to load_resource (thanks hunterae) - see issue #171
122
123 * The :shallow option now works with the :singleton option (thanks nandalopes) - see issue #187
124
125 * Play nicely with quick_scopes gem (thanks ramontayag) - see issue #183
126
127 * Fix odd behavior when "cache_classes = false" (thanks mphalliday) - see issue #174
128
129
67cd83d @ryanb releasing version 1.4.0
ryanb authored Oct 5, 2010
130 1.4.0 (October 5, 2010)
bf9b8ad @ryanb filling in some inline documentation for 1.4
ryanb authored Sep 3, 2010
131
b0cec52 @ryanb adding a couple things to the changelog
ryanb authored Oct 5, 2010
132 * Adding Gemfile; to get specs running just +bundle+ and +rake+ - see issue #163
133
134 * Stop at 'cannot' definition when there are no conditions - see issue #161
135
3391c5a @ryanb adding to changelog
ryanb authored Sep 21, 2010
136 * The :through option will now call a method with that name if instance variable doesn't exist - see issue #146
137
138 * Adding :shallow option to load_resource to bring back old behavior of fetching a child without a parent
139
140 * Raise AccessDenied error when loading a child and parent resource isn't found
141
142 * Abilities defined on a module will apply to anything that includes that module - see issue #150 and #152
143
144 * Abilities can be defined with a string of SQL in addition to a block so accessible_by works with a block - see issue #150
145
1f81b8d @ryanb use 'send' to access controller current_ability in case it's private
ryanb authored Sep 23, 2010
146 * Adding better support for InheritedResource - see issue #23
3391c5a @ryanb adding to changelog
ryanb authored Sep 21, 2010
147
1f81b8d @ryanb use 'send' to access controller current_ability in case it's private
ryanb authored Sep 23, 2010
148 * Loading the collection instance variable (for index action) using accessible_by - see issue #137
3391c5a @ryanb adding to changelog
ryanb authored Sep 21, 2010
149
150 * Adding action and subject variables to I18n unauthorized message - closes #142
151
bf9b8ad @ryanb filling in some inline documentation for 1.4
ryanb authored Sep 3, 2010
152 * Adding check_authorization and skip_authorization controller class methods to ensure authorization is performed (thanks justinko) - see issue #135
153
154 * Setting initial attributes based on ability conditions in new/create actions - see issue #114
155
156 * Check parent attributes for nested association in index action - see issue #121
157
158 * Supporting nesting in can? method using hash - see issue #121
159
160 * Adding I18n support for Access Denied messages (thanks EppO) - see issue #103
161
162 * Passing no arguments to +can+ definition will pass action, class, and object to block - see issue #129
163
164 * Don't pass action to block in +can+ definition when using :+manage+ option - see issue #129
165
166 * No longer calling block in +can+ definition when checking on class - see issue #116
167
168
04b523e @ryanb releasing version 1.3.4
ryanb authored Aug 31, 2010
169 1.3.4 (August 31, 2010)
170
171 * Don't stop at +cannot+ with hash conditions when checking class (thanks tamoya) - see issue #131
172
173
a10a38c @ryanb releasing version 1.3.3
ryanb authored Aug 20, 2010
174 1.3.3 (August 20, 2010)
175
176 * Switching to Rspec namespace to remove deprecation warning in Rspec 2 - see issue #119
177
178 * Pluralize nested associations for conditions in accessible_by (thanks mlooney) - see issue #123
179
180
a566ea0 @ryanb releasing version 1.3.2 which fixes slice error when passing custom r…
ryanb authored Aug 7, 2010
181 1.3.2 (August 7, 2010)
182
183 * Fixing slice error when passing in custom resource name - see issue #112
184
185
cd74267 @ryanb releasing version 1.3.1 with sanitize_sql fix
ryanb authored Aug 6, 2010
186 1.3.1 (August 6, 2010)
187
188 * Fixing protected sanitize_sql error - see issue #111
189
190
7a17586 @ryanb releasing version 1.3.0
ryanb authored Aug 6, 2010
191 1.3.0 (August 6, 2010)
192
7d9e710 @ryanb updating changelog
ryanb authored Aug 6, 2010
193 * Adding :find_by option to load_resource - see issue #19
194
c9e0f4e @ryanb renaming :singular resource option to :singleton
ryanb authored Aug 6, 2010
195 * Adding :singleton option to load_resource - see issue #93
7d9e710 @ryanb updating changelog
ryanb authored Aug 6, 2010
196
a10a38c @ryanb releasing version 1.3.3
ryanb authored Aug 20, 2010
197 * Supporting multiple resources in :through option for polymorphic associations - see issue #73
7d9e710 @ryanb updating changelog
ryanb authored Aug 6, 2010
198
199 * Supporting Single Table Inheritance for "can" comparisons - see issue #55
200
201 * Adding :instance_name option to load/authorize_resource - see issue #44
202
203 * Don't pass nil to "new" to keep MongoMapper happy - see issue #63
204
156839b @ryanb only use the :read action when authorizing parent resources
ryanb authored Aug 5, 2010
205 * Parent resources are now authorized with :read action.
206
25a1c55 @ryanb adding :through option to replace :nesting option and moving Resource…
ryanb authored Aug 5, 2010
207 * Changing :resource option in load/authorize_resource back to :class with ability to pass false
208
209 * Removing :nested option in favor of :through option with separate load/authorize call
210
211 * Moving internal logic from ResourceAuthorization to ControllerResource class
212
c5737f6 @ryanb adding thanks to changelog
ryanb authored Jul 20, 2010
213 * Supporting multiple "can" and "cannot" calls with accessible_by (thanks funny-falcon) - see issue #71
1659f21 @ryanb updating changelong with support for multiple can calls in accessible…
ryanb authored Jul 20, 2010
214
cad4259 @ryanb supporting deeply nested aliases - closes #98
ryanb authored Jul 19, 2010
215 * Supporting deeply nested aliases - see issue #98
216
7a17586 @ryanb releasing version 1.3.0
ryanb authored Aug 6, 2010
217
1b4377c @ryanb releasing version 1.2.0
ryanb authored Jul 19, 2010
218 1.2.0 (July 16, 2010)
219
1ade442 @ryanb load parent resources for collection actions such 'index'
ryanb authored May 21, 2010
220 * Load nested parent resources on collection actions such as "index" (thanks dohzya)
221
2a3dd85 @ryanb adding :name option to load_and_authorize_resource if it does not mat…
ryanb authored May 21, 2010
222 * Adding :name option to load_and_authorize_resource if it does not match controller - see issue #65
223
dfd84a1 @ryanb improving inline documentation
ryanb authored May 21, 2010
224 * Fixing issue when using accessible_by with nil can conditions (thanks jrallison) - see issue #66
7543eed fixing issue when using accessible_by with nil can conditions - closes
John Allison authored May 20, 2010
225
226 * Pluralize table name for belongs_to associations in can conditions hash (thanks logandk) - see issue #62
227
06296b0 @ryanb support has_many association or arrays in can conditions hash
ryanb authored Apr 22, 2010
228 * Support has_many association or arrays in can conditions hash
229
e200814 @ryanb adding joins clause to accessible_by when conditions are across assoc…
ryanb authored Apr 20, 2010
230 * Adding joins clause to accessible_by when conditions are across associations
231
1b4377c @ryanb releasing version 1.2.0
ryanb authored Jul 19, 2010
232
232ecd5 @ryanb releasing 1.1.1 which fixes behavior in Rails 3 by properly initializ…
ryanb authored Apr 17, 2010
233 1.1.1 (April 17, 2010)
234
235 * Fixing behavior in Rails 3 by properly initializing ResourceAuthorization
236
237
ff8c11c @ryanb releasing version 1.1, see wiki and changelog for details
ryanb authored Apr 17, 2010
238 1.1.0 (April 17, 2010)
69f7a65 @ryanb support additional arguments to can? which get passed to the block - …
ryanb authored Apr 15, 2010
239
f1ba76b @ryanb supporting arrays, ranges, and nested hashes in ability conditions
ryanb authored Apr 17, 2010
240 * Supporting arrays, ranges, and nested hashes in ability conditions
241
f466963 @ryanb allow access to classes when using hash conditions since you'll gener…
ryanb authored Apr 16, 2010
242 * Removing "unauthorized!" method in favor of "authorize!" in controllers
8903fee @ryanb removing unauthorized! in favor of authorize! and including more info…
ryanb authored Apr 16, 2010
243
244 * Adding action, subject and default_message abilities to AccessDenied exception - see issue #40
245
ef5900c @ryanb adding caching to current_ability class method, if you're overriding …
ryanb authored Apr 15, 2010
246 * Adding caching to current_ability controller method, if you're overriding this be sure to add caching too.
247
240c281 @ryanb renaming ActiveRecordAdditions#can method to accessible_by since it f…
ryanb authored Apr 15, 2010
248 * Adding "accessible_by" method to Active Record for fetching records matching a specific ability
3c68a91 @ryanb adding can method to Active Record for fetching records matching a sp…
ryanb authored Apr 15, 2010
249
baeef0b @ryanb adding conditions behavior to Ability#can and fetch with Ability#cond…
ryanb authored Apr 15, 2010
250 * Adding conditions behavior to Ability#can and fetch with Ability#conditions - see issue #53
251
23a5888 @ryanb renaming :class option to :resource for load_and_authorize_resource w…
ryanb authored Apr 15, 2010
252 * Renaming :class option to :resource for load_and_authorize_resource which now supports a symbol for non models - see issue #45
253
254 * Properly handle Admin::AbilitiesController in params[:controller] - see issue #46
255
256 * Adding be_able_to RSpec matcher (thanks dchelimsky), requires Ruby 1.8.7 or higher - see issue #54
6e1e96c @ryanb allow additional arguments for be_able_to matcher, this requires Ruby…
ryanb authored Apr 15, 2010
257
69f7a65 @ryanb support additional arguments to can? which get passed to the block - …
ryanb authored Apr 15, 2010
258 * Support additional arguments to can? which get passed to the block - see issue #48
259
260
3b9cdce @ryanb releasing v1.0.2
ryanb authored Dec 30, 2009
261 1.0.2 (Dec 30, 2009)
262
7d3b4cd @ryanb Adding clear_aliased_actions to Ability which removes previously defi…
ryanb authored Dec 30, 2009
263 * Adding clear_aliased_actions to Ability which removes previously defined actions including defaults - see issue #20
264
f99d506 @ryanb Append aliased actions (don't overwrite them) - closes #20
ryanb authored Dec 30, 2009
265 * Append aliased actions (don't overwrite them) - see issue #20
266
ef22de6 @ryanb adding custom message argument to unauthorized! method - closes #18
ryanb authored Dec 15, 2009
267 * Adding custom message argument to unauthorized! method (thanks tjwallace) - see issue #18
268
269
f919ac5 @ryanb releasing gem v1.0.1
ryanb authored Dec 14, 2009
270 1.0.1 (Dec 14, 2009)
271
021f33c @ryanb Adding :class option to load_resource so one can customize which clas…
ryanb authored Dec 14, 2009
272 * Adding :class option to load_resource so one can customize which class to use for the model - see issue #17
273
e9f0130 @ryanb Don't fetch parent of nested resource if *_id parameter is missing so…
ryanb authored Dec 14, 2009
274 * Don't fetch parent of nested resource if *_id parameter is missing so it works with shallow nested routes - see issue #14
275
276
f7480d1 @ryanb releasing gem v1.0.0 (backwards incompatible, see changelog)
ryanb authored Dec 13, 2009
277 1.0.0 (Dec 13, 2009)
278
ffa677b @ryanb Don't set resource instance variable if it has been set already - clo…
ryanb authored Dec 13, 2009
279 * Don't set resource instance variable if it has been set already - see issue #13
280
a75aee7 @ryanb Allowing :nested option to accept an array for deep nesting
ryanb authored Dec 13, 2009
281 * Allowing :nested option to accept an array for deep nesting
282
cd217eb @ryanb adding :nested option for load_resource - closes #10
ryanb authored Dec 13, 2009
283 * Adding :nested option to load resource method - see issue #10
284
94e031b @ryanb Pass :only and :except options to before filters for load/authorize r…
ryanb authored Dec 13, 2009
285 * Pass :only and :except options to before filters for load/authorize resource methods.
286
63634b4 @ryanb Adding :collection and :new options to load_resource method so we can…
ryanb authored Dec 13, 2009
287 * Adding :collection and :new options to load_resource method so we can specify behavior of additional actions if needed.
288
a5f9882 @ryanb turning load and authorize resource methods into class methods which …
ryanb authored Dec 13, 2009
289 * BACKWARDS INCOMPATIBLE: turning load and authorize resource methods into class methods which set up the before filter so they can accept additional arguments.
290
f7480d1 @ryanb releasing gem v1.0.0 (backwards incompatible, see changelog)
ryanb authored Dec 13, 2009
291
43947c8 @ryanb releasing gem v0.2.1
ryanb authored Nov 26, 2009
292 0.2.1 (Nov 26, 2009)
293
294 * many internal refactorings - see issues #11 and #12
295
d4405e6 @ryanb adding cannot method to define which abilities cannot be done - closes
ryanb authored Nov 25, 2009
296 * adding "cannot" method to define which abilities cannot be done - see issue #7
297
e603655 @ryanb support custom objects (usually symbols) in can definition - closes #8
ryanb authored Nov 25, 2009
298 * support custom objects (usually symbols) in can definition - see issue #8
299
f7480d1 @ryanb releasing gem v1.0.0 (backwards incompatible, see changelog)
ryanb authored Dec 13, 2009
300
52649a8 @ryanb releasing gem 0.2.0 NOT BACKWARDS COMPATABLE, SEE CHANGELOG
ryanb authored Nov 17, 2009
301 0.2.0 (Nov 17, 2009)
302
15a01a5 @ryanb fixing behavior of load_and_authorize_resource for namespaced control…
ryanb authored Nov 17, 2009
303 * fix behavior of load_and_authorize_resource for namespaced controllers - see issue #3
304
766fe86 @ryanb support arrays being passed to 'can' to specify multiple actions or c…
ryanb authored Nov 17, 2009
305 * support arrays being passed to "can" to specify multiple actions or classes - see issue #2
306
0f49b54 @ryanb adding 'cannot?' method which performs opposite check of 'can?' - clo…
ryanb authored Nov 17, 2009
307 * adding "cannot?" method to ability, controller, and view which is inverse of "can?" - see issue #1
308
1edf583 @ryanb BACKWARDS INCOMPATIBLE: use Ability#initialize instead of 'prepare' t…
ryanb authored Nov 17, 2009
309 * BACKWARDS INCOMPATIBLE: use Ability#initialize instead of 'prepare' to set up abilities - see issue #4
310
52649a8 @ryanb releasing gem 0.2.0 NOT BACKWARDS COMPATABLE, SEE CHANGELOG
ryanb authored Nov 17, 2009
311
312 0.1.0 (Nov 16, 2009)
28eaf1b @ryanb releasing gem v0.1.0
ryanb authored Nov 16, 2009
313
314 * initial release
Something went wrong with that request. Please try again.