Project

acts_as_privilege

0.0
Repository is archived
No commit activity in last 3 years
No release in over 3 years
acts_as_privilegecyril/acts_as_privilegeHomepageDocumentationSource CodeBug Tracker
Simple Rails plugin to restrict system access to authorized users.
2005
2006
2007
2008
2009
2010
2011
2012
2013
2014
2015
2016
2017
2018
2019
2020
2021
2022
2023
2024
2025
 Popularity
Downloads
26,116
Stars
6
Forks
1
Watchers
3
 Releases
Current version
2.0.1
Total releases
3
First release
2010-04-11
Latest release
2011-08-29
 Development
Primary Language
Ruby
Average date of last 50 commits
2011-11-07
Reverse Dependencies
0

 Dependencies

Runtime

railties
>= 3.0.0
 Project Readme

Acts as privilege

⚠️ This gem is outdated. Please do not use it.

Acts as privilege is a plugin for Ruby on Rails that provides the capabilities to restrict controller actions to privileged resources.

This ACL-based security model is designed as a role-based access control, where each role can be a group of users.

Status

Gem Version Build Status

Philosophy

General library that does only one thing, without any feature.

Installation

Include the gem in your Gemfile:

gem 'acts_as_privilege'

And run the bundle command. Or as a plugin:

rails plugin install git://github.com/cyril/acts_as_privilege.git

Then, generate files and apply the migration:

rails generate privileges model
rake db:migrate

At this point, Privilege model can be populated with:

rest_actions = %w(index show new create edit update destroy)
controllers = {
  groups:   rest_actions,
  users:    rest_actions,
  articles: rest_actions,
  comments: rest_actions }

Privilege.transaction do
  controllers.each_pair do |controller, actions|
    actions.each do |action|
      Privilege.create! route: [controller, action].join('#')
    end
  end
end

Example

First, let's run commands:

rails generate privileges group
rake db:migrate

Second, let's add this in Group model:

# app/models/group.rb
class Group < ActiveRecord::Base
  acts_as_privilege

  has_many :users
end

Now, check the current user capability to destroy articles:

current_user.group.privilege?('articles#destroy') # => false

And add a form helper that generates the field to manage group privileges:

form_for @group do |f|
  privileges_field f
end

Copyright (c) 2009-2011 Cyril Wack, released under the MIT license