Module: ConcernsOnRails::Controllers::Authorizable::ClassMethods

Defined in:: lib/concerns_on_rails/controllers/authorizable.rb

Instance Method Summary collapse

#authorize_by(only: nil, except: nil, status: :forbidden, message: "Forbidden", &block) ⇒ Object

Register an authorization predicate.
#require_role(*roles, via: :current_user, role_method: :role, only: nil, except: nil, status: :forbidden, message: "Forbidden") ⇒ Object

Sugar for the common “actor must have one of these roles” rule.

Instance Method Details

#authorize_by(only: nil, except: nil, status: :forbidden, message: "Forbidden", &block) ⇒ `Object`

Register an authorization predicate. ‘only:`/`except:` scope it to a subset of actions (mutually exclusive). `status:` (default :forbidden) and `message:` control the denial response.

Raises:

(ArgumentError)

# File 'lib/concerns_on_rails/controllers/authorizable.rb', line 37

def authorize_by(only: nil, except: nil, status: :forbidden, message: "Forbidden", &block)
  raise ArgumentError, "ConcernsOnRails::Controllers::Authorizable: a block is required" unless block

  add_authorization_rule(check: block, only: only, except: except, status: status, message: message)
end

#require_role(*roles, via: :current_user, role_method: :role, only: nil, except: nil, status: :forbidden, message: "Forbidden") ⇒ `Object`

Sugar for the common “actor must have one of these roles” rule. The actor is read via ‘via:` (default `:current_user`) and its role via `role_method:` (default `:role`). Implemented as a proc, never a lambda, so arity slicing can’t raise.