module SimpleAccessControl

Constants

VERSION

Public Class Methods

included(base) click to toggle source

# File lib/simple_access_control.rb, line 6
def self.included(base)
  base.extend(ClassMethods)
  if base.respond_to?(:helper_method)
    base.send :helper_method, :restrict_to
    base.send :helper_method, :has_permission?
    base.send :helper_method, :permit?
  end
end

Public Instance Methods

has_permission?(rule, user = nil) click to toggle source

For use in both controllers and views.

Check if a role has permission?

has_permission?('role')
has_permission?('admin', other_user)

@return Boolean

# File lib/simple_access_control.rb, line 53
def has_permission?(rule, user = nil)
  user ||= (send(:current_user) if respond_to?(:current_user, true)) || nil
  access_controller.process(rule, user)
end

permission_required(rule = nil) click to toggle source

# File lib/simple_access_control.rb, line 35
def permission_required(rule = nil)
  if respond_to?(:logged_in?, true) && logged_in? && has_permission?(rule)
    send(:permission_granted) if respond_to?(:permission_granted)
    true
  else
    send(:permission_denied) if respond_to?(:permission_denied)
    false
  end
end

permit?(rule, context = {}) click to toggle source

# File lib/simple_access_control.rb, line 58
def permit?(rule, context = {})
  has_permission?(rule, (context && context[:user] ? context[:user] : nil))
end

restrict_to(rule, user = nil) { || ... } click to toggle source

Execute a code block ONLY if the user has access

restrict_to "admin | moderator" do
  link_to "foo"
end

# File lib/simple_access_control.rb, line 67
def restrict_to(rule, user = nil)
  yield if block_given? && has_permission?(rule, user)
end