Project

rails-doorman

0.0
No commit activity in last 3 years
No release in over 3 years
rails-doormanjrun/rails-doormanHomepageDocumentationSource CodeBug Tracker
Ruby on Rails authorization plugin
2005
2006
2007
2008
2009
2010
2011
2012
2013
2014
2015
2016
2017
2018
2019
2020
2021
2022
2023
2024
 Popularity
Downloads
4,685
Stars
2
Forks
0
Watchers
3
 Releases
Current version
0.1.0
Total releases
1
First release
2009-12-04
Latest release
2009-12-04
 Development
Primary Language
Ruby
Average date of last 50 commits
2009-07-28
Reverse Dependencies
0

 Dependencies

Development

cucumber
>= 0
grancher
> 0
rspec
>= 1.2.9
rspec-rails
>= 1.2.9
yard
~> 0.4.0

Runtime

rails
>= 2.3.2
 Project Readme

rails-doorman¶ ↑

rails-doorman is an authorization plugin for Ruby on Rails applications. This code was orignally written by Michael D. Ivey for Merb.

Configuration¶ ↑

Doorman expects the controller to respond to current_user

The :role option expects current_user to respond to +has_role?(role_name)+. To change the default assign the option a new value:

Doorman.options[:has_role_method]

The :user option expects current_user to respond to login. To change the default assign the option a new value:

Doorman.options[:user_identifier_method]

Usage¶ ↑

Controllers¶ ↑ 

class Admin::ArticlesController < AdminController
  allow :role => :admin
end

allow :role => :admin                         # current_user.has_role?(:admin)
deny :role => :troll 
allow :role => :admin, :exclude => :show
allow :role => :troll, :only => :index

rails-doorman supports more than roles.

allow :user => :nancy                     # current_user.login.to_sym == 'nancy'.to_sym
allow :host => 'allowed.example.org'      # request.host =~ Regexp.new('allowed.example.org')
deny :host => 'denied.example.org'
deny :user_agent => /MSIE/                # request.user_agent =~ Regexp.new(/MSIE/)

Views¶ ↑

All rules can be used in views.

<% allow(:role => :admin) do %>
  <h1>Allowed</h1>
<% end %>

<% deny(:role => :troll) do %>
  <h1>Allowed</h1>
<% end %>

Unauthorized¶ ↑

When a rule fails a Doorman::Unauthorized error is raised. The error can be caught in ApplicationController#rescue_action_in_public.

class ApplicationController < ActionController::Base
  private
  def rescue_action_in_public(exception)
    case exception
    when Doorman::InvalidRule
      render :text => 'Invalid Rule', :status => '500 Internal Server Error'
    when Doorman::Unauthorized
      render :text => 'Unauthorized', :status => '401 Unauthorized'
    else
      super(exception)
    end
  end
end

Resources¶ ↑

Development

Source

  • git://github.com/jrun/rails-doorman.git

Bugs

TODO¶ ↑

Rule inheritance¶ ↑

Controller subclasses do not inherit its parents rules. This is more like a bug than a todo.

More configurable¶ ↑

rails-doorman should be configurable but in what ways?