module RouteAuthorizer::Authorizer

Private Instance Methods

authorize_user!() click to toggle source
# File lib/route_authorizer/authorizer.rb, line 26
def authorize_user!
  unless permit?(controller_path.to_s.gsub(/\//, "_"), action_name)
    raise AccessDenied.new("Acess denied to '#{controller_path}##{action_name}'")
  end
end
permission() click to toggle source
# File lib/route_authorizer/authorizer.rb, line 13
def permission
  @permission ||= ::Permission.new(current_user.try(:role))
end
permit?(_controller_path, _action_name) click to toggle source
# File lib/route_authorizer/authorizer.rb, line 17
def permit?(_controller_path, _action_name)
  permission.permit?(_controller_path, _action_name)
end
permit_path?(path) click to toggle source
# File lib/route_authorizer/authorizer.rb, line 21
def permit_path?(path)
  controller_and_action = Rails.application.routes.recognize_path(path).values[0..1]
  permit?(*controller_and_action)
end