Module: Sequel::Plugins::Privacy::ClassMethods

Extended by:

T::Helpers, T::Sig

Defined in:

lib/sequel/plugins/privacy.rb

Instance Method Summary

• #_inject_privacy_eager_block(opts) ⇒ Object
• #allow_unsafe_access!(except: []) ⇒ Object
• #allow_unsafe_access?(name = nil) ⇒ Boolean
• #associate(type, name, opts = {}, &block) ⇒ Object
• #call(values) ⇒ Object
• #finalize_privacy! ⇒ Object
• #for_vc(vc) ⇒ Object
• #policies(action, *policy_chain) ⇒ Object
• #privacy(&block) ⇒ Object
• #privacy_association_policies ⇒ Object
• #privacy_fields ⇒ Object
• #privacy_finalized? ⇒ Boolean
• #privacy_policies ⇒ Object
• #privacy_vc_key ⇒ Object
• #protect_field(field, policy: nil) ⇒ Object
• #register_association_policies(assoc_name, action, policies) ⇒ Object
• #register_policies(action, policies) ⇒ Object
• #register_protected_field(field, policy_name) ⇒ Object
• #setup_association_privacy(assoc_name) ⇒ Object

Instance Method Details

#_inject_privacy_eager_block(opts) ⇒ Object

# File 'lib/sequel/plugins/privacy.rb', line 370

def _inject_privacy_eager_block(opts)
  original = opts[:eager_block]
  wrapped = proc do |ds|
    ds = original.call(ds) if original
    vc = Thread.current[DatasetMethods::EAGER_VC_KEY]
    if vc && T.unsafe(ds).model.respond_to?(:privacy_vc_key)
      T.unsafe(ds).for_vc(vc)
    else
      ds
    end
  end
  opts.merge(eager_block: wrapped)
end

#allow_unsafe_access!(except: []) ⇒ Object

# File 'lib/sequel/plugins/privacy.rb', line 158

def allow_unsafe_access!(except: [])
  @allow_unsafe_access = T.let(true, T.nilable(T::Boolean))
  @unsafe_access_except = T.let(except.map(&:to_sym), T.nilable(T::Array[Symbol]))
  Sequel::Privacy.logger&.warn("#{self} allows unsafe access - migrate to use for_vc()")
end

#allow_unsafe_access?(name = nil) ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/sequel/plugins/privacy.rb', line 166

def allow_unsafe_access?(name = nil)
  return false unless @allow_unsafe_access == true
  return true if name.nil?

  !(@unsafe_access_except || []).include?(name)
end

#associate(type, name, opts = {}, &block) ⇒ Object

# File 'lib/sequel/plugins/privacy.rb', line 349

def associate(type, name, opts = {}, &block)
  opts = _inject_privacy_eager_block(opts)
  result = super

  case type
  when :many_to_one, :one_to_one
    _override_singular_association(name)
    _override_association_dataset(name)
  when :one_to_many, :many_to_many
    _override_plural_association(name)
    _override_association_dataset(name)
    setup_association_privacy(name) if privacy_association_policies[name]
  end

  result
end

#call(values) ⇒ Object

# File 'lib/sequel/plugins/privacy.rb', line 183

def call(values)
  vc = Thread.current[privacy_vc_key]

  unless vc || allow_unsafe_access?
    Kernel.raise Sequel::Privacy::MissingViewerContext,
                 "#{self} requires a ViewerContext. Use #{self}.for_vc(vc) or call #{self}.allow_unsafe_access!"
  end

  super
end

#finalize_privacy! ⇒ Object

# File 'lib/sequel/plugins/privacy.rb', line 323

def finalize_privacy!
  @privacy_finalized = T.let(true, T.nilable(T::Boolean))
end

#for_vc(vc) ⇒ Object

# File 'lib/sequel/plugins/privacy.rb', line 344

def for_vc(vc)
  dataset.for_vc(vc)
end

#policies(action, *policy_chain) ⇒ Object

# File 'lib/sequel/plugins/privacy.rb', line 329

def policies(action, *policy_chain)
  Kernel.warn "DEPRECATED: #{self}.policies is deprecated. Use `privacy do; can :#{action}, ...; end` instead"
  register_policies(action, policy_chain)
end

#privacy(&block) ⇒ Object

# File 'lib/sequel/plugins/privacy.rb', line 223

def privacy(&block)
  if privacy_finalized?
    Kernel.raise Sequel::Privacy::PrivacyAlreadyFinalizedError, "Privacy already finalized for #{self}"
  end

  dsl = PrivacyDSL.new(self)
  dsl.instance_eval(&block)
end

#privacy_association_policies ⇒ Object

# File 'lib/sequel/plugins/privacy.rb', line 205

def privacy_association_policies
  @privacy_association_policies ||= T.let({}, T.nilable(T::Hash[Symbol, T::Hash[Symbol, T::Array[T.untyped]]]))
end

#privacy_fields ⇒ Object

# File 'lib/sequel/plugins/privacy.rb', line 200

def privacy_fields
  @privacy_fields ||= T.let({}, T.nilable(T::Hash[Symbol, Symbol]))
end

#privacy_finalized? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/sequel/plugins/privacy.rb', line 210

def privacy_finalized?
  @privacy_finalized == true
end

#privacy_policies ⇒ Object

# File 'lib/sequel/plugins/privacy.rb', line 195

def privacy_policies
  @privacy_policies ||= T.let({}, T.nilable(T::Hash[Symbol, T::Array[T.untyped]]))
end

#privacy_vc_key ⇒ Object

# File 'lib/sequel/plugins/privacy.rb', line 176

def privacy_vc_key
  :"#{self}_privacy_vc"
end

#protect_field(field, policy: nil) ⇒ Object

# File 'lib/sequel/plugins/privacy.rb', line 336

def protect_field(field, policy: nil)
  Kernel.warn "DEPRECATED: #{self}.protect_field is deprecated. Use `privacy do; field :#{field}, ...; end` instead"
  policy_name = policy || :"view_#{field}"
  register_protected_field(field, policy_name)
end

#register_association_policies(assoc_name, action, policies) ⇒ Object

# File 'lib/sequel/plugins/privacy.rb', line 274

def register_association_policies(assoc_name, action, policies)
  Kernel.raise "Privacy policies have been finalized for #{self}" if privacy_finalized?

  privacy_association_policies[assoc_name] ||= {}
  assoc_hash = T.must(privacy_association_policies[assoc_name])
  assoc_hash[action] ||= []
  T.must(assoc_hash[action]).concat(policies)
end

#register_policies(action, policies) ⇒ Object

# File 'lib/sequel/plugins/privacy.rb', line 233

def register_policies(action, policies)
  if privacy_finalized?
    Kernel.raise Sequel::Privacy::PrivacyAlreadyFinalizedError, "Privacy already finalized for #{self}"
  end

  privacy_policies[action] ||= []
  T.must(privacy_policies[action]).concat(policies)
end

#register_protected_field(field, policy_name) ⇒ Object

# File 'lib/sequel/plugins/privacy.rb', line 243

def register_protected_field(field, policy_name)
  if privacy_finalized?
    Kernel.raise Sequel::Privacy::PrivacyAlreadyFinalizedError, "Privacy already finalized for #{self}"
  end

  privacy_fields[field] = policy_name

  original_method = instance_method(field)

  define_method(field) do
    return original_method.bind(self).() if Sequel::Privacy::Enforcer.in_policy_eval?

    vc = instance_variable_get(:@viewer_context)

    unless vc
      return original_method.bind(self).() if T.unsafe(self.class).allow_unsafe_access?(field)

      Kernel.raise Sequel::Privacy::MissingViewerContext,
                   "#{self.class}##{field} requires a ViewerContext"
    end

    value = original_method.bind(self).()
    return unless T.cast(self, InstanceMethods).allow?(vc, policy_name)

    value
  end
end

#setup_association_privacy(assoc_name) ⇒ Object

# File 'lib/sequel/plugins/privacy.rb', line 286

def setup_association_privacy(assoc_name)
  assoc_policies = privacy_association_policies[assoc_name]
  return unless assoc_policies

  reflection = association_reflection(assoc_name)
  return unless reflection

  @_wrapped_associations ||= T.let({}, T.nilable(T::Hash[Symbol, T::Boolean]))
  return if @_wrapped_associations[assoc_name]

  @_wrapped_associations[assoc_name] = true

  # Sequel derives mutator names by stripping a trailing 's' from
  # the association name: many_to_many :members → add_member,
  # one_to_many :memberships → add_membership.
  #
  # TODO: I'm not sure if this will break sometimes.
  singular_name = reflection[:name].to_s.chomp('s').to_sym

  add_policies = assoc_policies[:add]
  if add_policies && method_defined?(:"add_#{singular_name}")
    _wrap_association_add(assoc_name, singular_name, add_policies)
  end

  remove_policies = assoc_policies[:remove]
  if remove_policies && method_defined?(:"remove_#{singular_name}")
    _wrap_association_remove(assoc_name, singular_name, remove_policies)
  end

  remove_all_policies = assoc_policies[:remove_all]
  return unless remove_all_policies && method_defined?(:"remove_all_#{reflection[:name]}")

  _wrap_association_remove_all(assoc_name, reflection[:name], remove_all_policies)
end