Project

stonewall

0.01
No commit activity in last 3 years
No release in over 3 years
stonewallbokmann/stonewallHomepageDocumentationSource CodeBug TrackerWiki
The acl from StoneWall, now as a shiny new gem!
2005
2006
2007
2008
2009
2010
2011
2012
2013
2014
2015
2016
2017
2018
2019
2020
2021
2022
2023
2024
 Popularity
Downloads
21,465
Stars
14
Forks
2
Watchers
3
 Releases
Current version
0.3.2
Total releases
6
First release
2010-03-20
Latest release
2011-01-06
 Pull Requests
Open Pull Requests
0
Closed Pull Requests
0
Merged Pull Requests
3
Pull Request Acceptance Rate
100%
 Development
Primary Language
Ruby
Average date of last 50 commits
2010-09-12
Reverse Dependencies
0

 Dependencies

Development

shoulda
>= 2.11.3

Runtime

activerecord
>= 2.0.0, < 2.4.0
sentient_user
>= 0.1.0
 Project Readme

Stonewall

Stonewall is officially retired. CanCan works well enough to do what this gem did, and is way more popular == way more support available.

What did this gem do?

Stonewall was a permissions framework extracted from the StonePath Workflow Methodology. In this methodology, permissions are controlled via a matrix of [role, variant, method]. Let me explain:

Role

The first axis was the user's Role. This might be things like 'group member', 'administrator', 'superuser', 'data entry clerk', and so on.

Variant

Every permissioned object is allowed to vary its access based on some value. In Stonepath, this was typically the field aasm_state, from the 'Acts As State MAchine' gem. Thus, we could have different sets of permissions when a Case is in intake vs verification vs Under Review vs completed, etc.

Method

Stonewall was a whitelist permission scheme, meaning that if it was guarded, and if you weren't explicitly allowed to use it, you were denied. Stonewall would wrap methods with an access guard, and if you didn't have permission, it would throw an exception.

Usage

On your class, you would define a stonepath configuration block that was composed of triples of role, variant, method that defined the possible permissions for that class in its various permutations.