ActionItem41: adjusting access_control plugin so I can have a application-specif…

…ic standard set of roles git-svn-id: https://svn.colivre.coop.br/svn/noosfero/trunk@1321 3f533792-8f58-4932-b0fe-aaf55b0a4547

ActionItem41: adjusting access_control plugin so I can have a application-specif…
…ic standard set of roles git-svn-id: https://svn.colivre.coop.br/svn/noosfero/trunk@1321 3f533792-8f58-4932-b0fe-aaf55b0a4547
AntonioTerceiro
1 parent 6e1e807d
Showing 5 changed files with 58 additions and 4 deletions Show diff stats
vendor/plugins/access_control/generators/access_control_migration/templates/migration.rb
vendor/plugins/access_control/lib/role.rb
vendor/plugins/access_control/test/access_control_test.rb
vendor/plugins/access_control/test/role_test.rb
vendor/plugins/access_control/test/schema.rb
@@ -3,6 +3,8 @@ class AccessControlMigration &lt; ActiveRecord::Migration
     create_table :roles do |t|
       t.column :name,        :string
       t.column :permissions, :string
+      t.column :key,         :string
+      t.column :system,      :boolean, :default => false
     end
     create_table :role_assignments do |t|
@@ -4,6 +4,7 @@ class Role &lt; ActiveRecord::Base
   serialize :permissions, Array
   validates_presence_of :name
   validates_uniqueness_of :name
+  validates_uniqueness_of :key, :if => lambda { |role| !role.key.blank? }
   def initialize(*args)
     super(*args)
@@ -22,6 +23,16 @@ class Role &lt; ActiveRecord::Base
     perms.keys.detect{|k| perms[k].keys.include?(permissions[0]) }
   end
+  def name
+    text = self[:name]
+    self.class.included_modules.map {|item| item.to_s}.include?('GetText') ? gettext(text) : text
+  end
+
+  before_destroy :check_for_system_defined_role
+  def check_for_system_defined_role
+    ! system
+  end
+
   protected
   def perms
     ActiveRecord::Base::PERMISSIONS
@@ -1,4 +0,0 @@
-require 'test/unit'
-
-class AccessControlTest < Test::Unit::TestCase
-end
@@ -3,6 +3,10 @@ require File.join(File.dirname(__FILE__), &#39;test_helper&#39;)
 class RoleTest < Test::Unit::TestCase
+  def setup
+    Role.delete_all
+  end
+
   def test_role_creation
     count = Role.count
     role = Role.new(:name => 'any_role')
@@ -16,6 +20,12 @@ class RoleTest &lt; Test::Unit::TestCase
     assert ! role.save    
   end
+  def test_uniqueness_of_key
+    Role.create!(:name => 'unique key', :key => 'my_key')
+    role = Role.new(:key => 'my_key'); role.valid?
+    assert role.errors.invalid?(:key)
+  end
+
   def test_permission_setting
     role = Role.new(:name => 'permissive_role', :permissions => ['edit_profile'])
     assert role.save
@@ -25,4 +35,37 @@ class RoleTest &lt; Test::Unit::TestCase
     assert role.has_permission?('post_content')
     assert role.has_permission?('edit_profile')
   end
+
+  def test_should_translate_name_if_gettext_is_being_used
+    role = Role.new(:name => 'my name')
+    Role.expects(:included_modules).returns(['GetText'])
+    role.expects(:gettext).with('my name').returns('meu nome')
+
+    assert_equal 'meu nome', role.name
+  end
+
+  def test_should_not_try_gettext_if_not_being_used
+    Role.expects(:included_modules).returns([])
+    role = Role.new(:name => 'my name')
+    role.expects(:gettext).never
+    assert_equal 'my name', role.name
+  end
+
+  def test_should_remove_non_system_defined_roles_normally
+    role = Role.create!(:name => 'to be removed', :permissions => [], :system => false)
+    count = Role.count
+    role.destroy
+    assert_equal count - 1, Role.count
+  end
+
+  def test_should_not_allow_to_remove_system_defined_roles
+
+    role = Role.create!(:name => 'not to be removed', :permissions => [], :system => true)
+
+    count = Role.count
+    role.destroy
+    assert_equal count, Role.count
+
+  end
+
 end
@@ -5,6 +5,8 @@ ActiveRecord::Schema.define(:version =&gt; 0) do
   create_table :access_control_test_roles, :force => true do |t|
    t.column :name,        :string
    t.column :permissions, :string
+   t.column :key,         :string
+   t.column :system,      :boolean, :default => false
   end
   create_table :access_control_test_role_assignments, :force => true do |t|
	@@ -4,6 +4,7 @@ class Role < ActiveRecord::Base		@@ -4,6 +4,7 @@ class Role < ActiveRecord::Base
4	serialize :permissions, Array	4	serialize :permissions, Array
5	validates_presence_of :name	5	validates_presence_of :name
6	validates_uniqueness_of :name	6	validates_uniqueness_of :name
		7	+ validates_uniqueness_of :key, :if => lambda { \|role\| !role.key.blank? }
7		8
8	def initialize(*args)	9	def initialize(*args)
9	super(*args)	10	super(*args)
	@@ -22,6 +23,16 @@ class Role < ActiveRecord::Base		@@ -22,6 +23,16 @@ class Role < ActiveRecord::Base
22	perms.keys.detect{\|k\| perms[k].keys.include?(permissions[0]) }	23	perms.keys.detect{\|k\| perms[k].keys.include?(permissions[0]) }
23	end	24	end
24		25
		26	+ def name
		27	+ text = self[:name]
		28	+ self.class.included_modules.map {\|item\| item.to_s}.include?('GetText') ? gettext(text) : text
		29	+ end
		30	+
		31	+ before_destroy :check_for_system_defined_role
		32	+ def check_for_system_defined_role
		33	+ ! system
		34	+ end
		35	+
25	protected	36	protected
26	def perms	37	def perms
27	ActiveRecord::Base::PERMISSIONS	38	ActiveRecord::Base::PERMISSIONS
	@@ -1,4 +0,0 @@	@@ -1,4 +0,0 @@
1	-require 'test/unit'
2	-
3	-class AccessControlTest < Test::Unit::TestCase
4	-end
	@@ -3,6 +3,10 @@ require File.join(File.dirname(__FILE__), 'test_helper')		@@ -3,6 +3,10 @@ require File.join(File.dirname(__FILE__), 'test_helper')
3		3
4	class RoleTest < Test::Unit::TestCase	4	class RoleTest < Test::Unit::TestCase
5		5
		6	+ def setup
		7	+ Role.delete_all
		8	+ end
		9	+
6	def test_role_creation	10	def test_role_creation
7	count = Role.count	11	count = Role.count
8	role = Role.new(:name => 'any_role')	12	role = Role.new(:name => 'any_role')
	@@ -16,6 +20,12 @@ class RoleTest < Test::Unit::TestCase		@@ -16,6 +20,12 @@ class RoleTest < Test::Unit::TestCase
16	assert ! role.save	20	assert ! role.save
17	end	21	end
18		22
		23	+ def test_uniqueness_of_key
		24	+ Role.create!(:name => 'unique key', :key => 'my_key')
		25	+ role = Role.new(:key => 'my_key'); role.valid?
		26	+ assert role.errors.invalid?(:key)
		27	+ end
		28	+
19	def test_permission_setting	29	def test_permission_setting
20	role = Role.new(:name => 'permissive_role', :permissions => ['edit_profile'])	30	role = Role.new(:name => 'permissive_role', :permissions => ['edit_profile'])
21	assert role.save	31	assert role.save
	@@ -25,4 +35,37 @@ class RoleTest < Test::Unit::TestCase		@@ -25,4 +35,37 @@ class RoleTest < Test::Unit::TestCase
25	assert role.has_permission?('post_content')	35	assert role.has_permission?('post_content')
26	assert role.has_permission?('edit_profile')	36	assert role.has_permission?('edit_profile')
27	end	37	end
		38	+
		39	+ def test_should_translate_name_if_gettext_is_being_used
		40	+ role = Role.new(:name => 'my name')
		41	+ Role.expects(:included_modules).returns(['GetText'])
		42	+ role.expects(:gettext).with('my name').returns('meu nome')
		43	+
		44	+ assert_equal 'meu nome', role.name
		45	+ end
		46	+
		47	+ def test_should_not_try_gettext_if_not_being_used
		48	+ Role.expects(:included_modules).returns([])
		49	+ role = Role.new(:name => 'my name')
		50	+ role.expects(:gettext).never
		51	+ assert_equal 'my name', role.name
		52	+ end
		53	+
		54	+ def test_should_remove_non_system_defined_roles_normally
		55	+ role = Role.create!(:name => 'to be removed', :permissions => [], :system => false)
		56	+ count = Role.count
		57	+ role.destroy
		58	+ assert_equal count - 1, Role.count
		59	+ end
		60	+
		61	+ def test_should_not_allow_to_remove_system_defined_roles
		62	+
		63	+ role = Role.create!(:name => 'not to be removed', :permissions => [], :system => true)
		64	+
		65	+ count = Role.count
		66	+ role.destroy
		67	+ assert_equal count, Role.count
		68	+
		69	+ end
		70	+
28	end	71	end