区块链扩展技术>> unidom-authorization>> 返回
项目作者: topbitdu

项目描述 :
Unidom (UNIfied Domain Object Model) is a series of domain model engines. The Authorization domain model engine includes the Permission and Authorizing models. Unidom (统一领域对象模型)是一系列的领域模型引擎。授权领域模型引擎包括权限、授权的模型。
高级语言: Ruby
项目地址: git://github.com/topbitdu/unidom-authorization.git


Unidom Authorization 授权领域模型引擎

Documentation
License

Gem Version
Dependency Status

Unidom (UNIfied Domain Object Model) is a series of domain model engines. The Authorization domain model engine includes the Permission and Authorizing models.
Unidom (统一领域对象模型)是一系列的领域模型引擎。授权领域模型引擎包括权限、授权的模型。

Recent Update

Check out the Road Map to find out what’s the next.
Check out the Change Log to find out what’s new.

Usage in Gemfile

  1. gem 'unidom-authorization'

Run the Database Migration

  1. rake db:migrate

The migration versions start with 200004.

Call the Model

  1. Unidom::Authorization::Permission.valid_at.alive
  2. Unidom::Authorization::Authorizing.valid_at.alive
  4. permission = Unidom::Authorization::Permission.valid_at.alive.first
  6. permission.authorized? user, at: Time.now # false
  7. Unidom::Authorization::Authorizing.authorize! permission: permission, authorized: user
  8. # or: permission.authorize! user, by: current_user, at: Time.now
  9. # or: user.is_authorized! permission: permission, by: administrator, at: Time.now
  11. permission.authorize? user, at: Time.now # true
  12. user.is_authorized? permission: permission, at: Time.now # true
  14. user.is_prohibted! permission: permission, at: Time.now
  15. # or: permission.prohibit! user, at: Time.now
  17. permission.authorize? user, at: Time.now # false
  18. user.is_authorized? permission: permission, at: Time.now # false

Include the Concerns

  1. include Unidom::Authorization::Concerns::AsAuthorized
  2. include Unidom::Authorization::Concerns::AsPermission

As Authorized concern

The As Authorized concern do the following tasks for the includer automatically:

  1. Define the has_many :authorizings macro as: has_many :authorizings, class_name: 'Unidom::Authorization::Authorizing', as: :authorized

  2. Define the has_many :permissions macro as: has_many :permissions, through: :authorizings, source: :permission

  3. Define the #is_authorized! method as: is_authorized!(permission: nil, by: nil, at: Time.now)

  4. Define the #is_authorized? method as: is_authorized?(permission: nil, at: Time.now)

  5. Define the #is_prohibited! method as: is_prohibited!(permission: nil, at: Time.now)

As Permission concern

The As Permission concern do the following tasks for the includer automatically:

  1. Define the has_many :authorizings macro as: has_many :authorizings, class_name: 'Unidom::Authorization::Authorizing'

  2. Define the #authorize! method as: authorize!(authorized, by: nil, at: Time.now)

  3. Define the #authorize? method as: authorize?(authorized, at: Time.now)

  4. Define the #prohibit! method as: prohibit!(authorized, at: Time.now)

Disable the Model & Migration

If you only need the app components other than models, the migrations should be neglected, and the models should not be loaded.

  1. # config/initializers/unidom.rb
  2. Unidom::Common.configure do |options|
  4.   options[:neglected_namespaces] = %w{
  5.     Unidom::Authorization
  6.   }
  8. end

RSpec examples

RSpec example manifest (run automatically)

  1. # spec/models/unidom_spec.rb
  2. require 'unidom/authorization/models_rspec'
  4. # spec/types/unidom_spec.rb
  5. require 'unidom/authorization/types_rspec'
  7. # spec/validators/unidom_spec.rb
  8. require 'unidom/authorization/validators_rspec'

RSpec shared examples (to be integrated)

  1. # lib/unidom.rb
  2. def initialize_unidom
  4.   Unidom::Party::Person.class_eval do
  5.     include Unidom::Authorization::Concerns::AsAuthorized
  6.   end
  8.   Unidom::Position::Post.class_eval do
  9.     include Unidom::Authorization::Concerns::AsAuthorized
  10.   end
  12. end
  14. # spec/rails_helper.rb
  15. require 'unidom'
  16. initialize_unidom
  18. # spec/support/unidom_rspec_shared_examples.rb
  19. require 'unidom/authorization/rspec_shared_examples'
  21. # spec/models/unidom/party/person_spec.rb
  22. describe Unidom::Party::Person do
  24.   model_attribtues = {
  25.     name: 'Tim'
  26.   }
  28.   permission_attributes = {
  29.     path:      'administration/government_agency/create',
  30.     name:      'Create Government Agency',
  31.     opened_at: Time.now
  32.   }
  33.   permission = Unidom::Authorization::Permission.create! permission_attributes
  35.   authorizer_attributes = {}
  36.   authorizer = described_class.create! authorizer_attributes
  38.   it_behaves_like 'Unidom::Authorization::Concerns::AsAuthorized', model_attribtues, permission, authorizer
  40. end
  42. # spec/models/unidom/position/post_spec.rb
  43. describe Unidom::Position::Post do
  45.   model_attribtues = {
  46.     name:              'HR Manager',
  47.     organization_id:   SecureRandom.uuid,
  48.     organization_type: 'Unidom::Position::Organization::Mock',
  49.     position_id:       SecureRandom.uuid
  50.   }
  52.   permission_attributes = {
  53.     path:      'administration/government_agency/create',
  54.     name:      'Create Government Agency',
  55.     opened_at: Time.now
  56.   }
  57.   permission = Unidom::Authorization::Permission.create! permission_attributes
  59.   authorizer_attributes = {}
  60.   authorizer = described_class.create! authorizer_attributes
  62.   it_behaves_like 'Unidom::Authorization::Concerns::AsAuthorized', model_attribtues, permission, authorizer
  64. end
  66. # spec/models/unidom/authorization/permission_spec.rb
  67. describe Unidom::Authorization::Permission, type: :model do
  69.   before :each do
  70.   end
  72.   after :each do
  73.   end
  75.   context do
  77.     model_attributes = {
  78.       name: 'User Management',
  79.       path: 'users'
  80.     }
  82.     authorized_attributes = {}
  83.     authorized = Unidom::Visitor::User.create! authorized_attributes
  85.     authorizer_attributes = {}
  86.     authorizer = Unidom::Visitor::User.create! authorizer_attributes
  88.     it_behaves_like 'Unidom::Authorization::Permission', model_attributes, authorized, authorizer
  90.   end
  92. end
  94. # spec/models/unidom/authorization/authorizing_spec.rb
  95. describe Unidom::Authorization::Authorizing, type: :model do
  97.   before :each do
  98.   end
  100.   after :each do
  101.   end
  103.   context do
  105.     model_attributes = {
  106.       authorizer_id:   SecureRandom.uuid,
  107.       authorizer_type: 'Unidom::Authorization::Authorizer::Mock',
  108.       authorized_id:   SecureRandom.uuid,
  109.       authorized_type: 'Unidom::Authorization::Authorized::Mock',
  110.       permission_id:   SecureRandom.uuid
  111.     }
  112.     authorizer_class_list = [ Unidom::Visitor::User, Unidom::Party::Person ]
  114.     it_behaves_like 'Unidom::Authorization::Authorizing', model_attributes, authorizer_class_list, [ {}, { name: 'Tim' } ]
  116.   end
  118. end