2014-02-09 03:43:33 -05:00
# Pundit
2019-04-17 04:54:58 -04:00
## Unreleased
### Breaking changes
None
### Other changes
- Return a safer default NotAuthorizedError message. (#583)
2019-01-18 08:04:08 -05:00
## 2.0.1 (2019-01-18)
2018-10-02 07:21:15 -04:00
2019-01-18 06:59:26 -05:00
### Breaking changes
2019-01-18 07:09:41 -05:00
None
2019-01-18 06:59:26 -05:00
### Other changes
2018-10-02 07:21:15 -04:00
- Improve exception handling for `#policy_scope` and `#policy_scope!` . (#550)
2019-01-18 06:59:26 -05:00
- Add `:policy` metadata to RSpec template. (#566)
2018-10-02 07:21:15 -04:00
2018-07-21 14:35:16 -04:00
## 2.0.0 (2018-07-21)
No changes since beta1
2018-07-04 14:47:45 -04:00
## 2.0.0.beta1 (2018-07-04)
2018-04-27 07:34:39 -04:00
2018-11-16 04:11:18 -05:00
### Breaking changes
- Only pass last element of "namespace array" to policy and scope. (#529)
- Raise `InvalidConstructorError` if a policy or policy scope with an invalid constructor is called. (#462)
- Return passed object from `#authorize` method to make chaining possible. (#385)
### Other changes
2018-07-04 14:19:42 -04:00
- Add `policy_class` option to `authorize` to be able to override the policy. (#441)
- Add `policy_scope_class` option to `authorize` to be able to override the policy scope. (#441)
2018-06-17 03:53:26 -04:00
- Fix `param_key` issue when passed an array. (#529)
2018-06-16 15:45:31 -04:00
- Allow specification of a `NilClassPolicy` . (#525)
2018-06-06 14:36:49 -04:00
- Make sure `policy_class` override is called when passed an array. (#475)
2018-11-16 04:11:18 -05:00
2018-06-06 14:36:49 -04:00
- Use `action_name` instead of `params[:action]` . (#419)
2018-05-17 14:18:36 -04:00
- Add `pundit_params_for` method to make it easy to customize params fetching. (#502)
2018-04-27 07:34:39 -04:00
2016-01-14 10:06:50 -05:00
## 1.1.0 (2016-01-14)
- Can retrieve policies via an array of symbols/objects.
- Add autodetection of param key to `permitted_attributes` helper.
- Hide some methods which should not be actions.
- Permitted attributes should be expanded.
- Generator uses `RSpec.describe` according to modern best practices.
2015-07-15 05:58:54 -04:00
2015-05-27 12:31:53 -04:00
## 1.0.1 (2015-05-27)
- Fixed a regression where NotAuthorizedError could not be ininitialized with a string.
- Use `camelize` instead of `classify` for symbol policies to prevent weird pluralizations.
2015-04-19 07:26:56 -04:00
## 1.0.0 (2015-04-19)
2014-08-22 07:26:44 -04:00
- Caches policy scopes and policies.
- Explicitly setting the policy for the controller via `controller.policy = foo` has been removed. Instead use `controller.policies[record] = foo` .
- Explicitly setting the policy scope for the controller via `controller.policy_policy = foo` has been removed. Instead use `controller.policy_scopes[scope] = foo` .
2015-04-19 07:26:56 -04:00
- Add `permitted_attributes` helper to fetch attributes from policy.
2015-03-18 10:50:06 -04:00
- Add `pundit_policy_authorized?` and `pundit_policy_scoped?` methods.
2015-04-19 07:26:56 -04:00
- Instance variables are prefixed to avoid collisions.
- Add `Pundit.authorize` method.
- Add `skip_authorization` and `skip_policy_scope` helpers.
- Better errors when checking multiple permissions in RSpec tests.
- Better errors in case `nil` is passed to `policy` or `policy_scope` .
2015-06-07 03:52:37 -04:00
- Use `inspect` when printing object for better errors.
2015-04-19 07:26:56 -04:00
- Dropped official support for Ruby 1.9.3
2014-08-22 07:26:44 -04:00
## 0.3.0 (2014-08-22)
2014-04-28 17:00:48 -04:00
- Extend the default `ApplicationPolicy` with an `ApplicationPolicy::Scope` (#120)
2014-07-13 05:07:01 -04:00
- Fix RSpec 3 deprecation warnings for built-in matchers (#162)
- Generate blank policy spec/test files for Rspec/MiniTest/Test::Unit in Rails (#138)
2014-04-28 17:00:48 -04:00
2014-04-06 18:22:38 -04:00
## 0.2.3 (2014-04-06)
2014-02-09 03:43:33 -05:00
2014-04-28 17:00:48 -04:00
- Customizable error messages: `#query` , `#record` and `#policy` methods on `Pundit::NotAuthorizedError` (#114)
- Raise a different `Pundit::AuthorizationNotPerformedError` when `authorize` call is expected in controller action but missing (#109)
- Update Rspec matchers for Rspec 3 (#124)
2014-02-09 03:43:33 -05:00
## 0.2.2 (2014-02-07)
2014-04-28 17:00:48 -04:00
- Customize the user to be passed into policies: `pundit_user` (#42)