1
0
Fork 0
mirror of https://github.com/varvet/pundit.git synced 2022-11-09 12:30:11 -05:00

Merge pull request #259 from radanskoric/add_lower_level_usage_verification_methods

Add `pundit_policy_authorized?` and `pundit_policy_scoped?` methods
This commit is contained in:
Jonas Nicklas 2015-04-01 15:27:00 +02:00
commit 73ec66be01
4 changed files with 39 additions and 3 deletions

View file

@ -5,6 +5,7 @@
- Caches policy scopes and policies.
- Explicitly setting the policy for the controller via `controller.policy = foo` has been removed. Instead use `controller.policies[record] = foo`.
- Explicitly setting the policy scope for the controller via `controller.policy_policy = foo` has been removed. Instead use `controller.policy_scopes[scope] = foo`.
- Add `pundit_policy_authorized?` and `pundit_policy_scoped?` methods.
## 0.3.0 (2014-08-22)

View file

@ -177,7 +177,7 @@ end
```
Likewise, Pundit also adds `verify_policy_scoped` to your controller. This
will raise an exception in the vein of `verify_authorized`. However it tracks
will raise an exception in the vein of `verify_authorized`. However, it tracks
if `policy_scope` is used instead of `authorize`. This is mostly useful for
controller actions like `index` which find collections with a scope and don't
authorize individual instances.
@ -204,6 +204,11 @@ def show
end
```
If you need to perform some more sophisticated logic or you want to raise a custom
exception you can use the two lower level methods `pundit_policy_authorized?`
and `pundit_policy_scoped?` which return `true` or `false` depending on whether
`authorize` or `policy_scope` have been called, respectively.
## Scopes
Often, you will want to have some kind of view listing records which a

View file

@ -84,12 +84,20 @@ module Pundit
end
end
def pundit_policy_authorized?
!!@_pundit_policy_authorized
end
def pundit_policy_scoped?
!!@_pundit_policy_scoped
end
def verify_authorized
raise AuthorizationNotPerformedError unless @_pundit_policy_authorized
raise AuthorizationNotPerformedError unless pundit_policy_authorized?
end
def verify_policy_scoped
raise PolicyScopingNotPerformedError unless @_pundit_policy_scoped
raise PolicyScopingNotPerformedError unless pundit_policy_scoped?
end
def authorize(record, query=nil)

View file

@ -224,6 +224,28 @@ describe Pundit do
end
end
describe "#pundit_policy_authorized?" do
it "is true when authorized" do
controller.authorize(post)
expect(controller.pundit_policy_authorized?).to be true
end
it "is false when not authorized" do
expect(controller.pundit_policy_authorized?).to be false
end
end
describe "#pundit_policy_scoped?" do
it "is true when policy_scope is used" do
controller.policy_scope(Post)
expect(controller.pundit_policy_scoped?).to be true
end
it "is false when policy scope is not used" do
expect(controller.pundit_policy_scoped?).to be false
end
end
describe "#authorize" do
it "infers the policy name and authorizes based on it" do
expect(controller.authorize(post)).to be_truthy