CanCan and Rolify

Fernando Brito
1 parent 15668d05
Showing 11 changed files with 107 additions and 3 deletions Show diff stats
app/assets/stylesheets/static.css.scss
app/controllers/static_controller.rb
app/models/ability.rb
app/models/role.rb
app/models/user.rb
app/views/static/home.haml
config/initializers/rolify.rb
config/routes.rb
db/migrate/20140513072121_rolify_create_roles.rb
db/schema.rb
db/seeds.rb
@@ -0,0 +1,3 @@
+// Place all the styles related to the Static controller here.
+// They will automatically be included in application.css.
+// You can use Sass (SCSS) here: http://sass-lang.com/
@@ -0,0 +1,5 @@
+class StaticController < ApplicationController
+  def home
+
+  end
+end
@@ -0,0 +1,43 @@
+class Ability
+  include CanCan::Ability
+
+  def initialize(user)
+
+    user ||= User.new
+
+    if user.is_admin?
+      can :manage, :all
+    end
+
+    if user.id
+      can :manage, ActiveAdmin::Page, name: 'Dashboard'
+    end
+
+    # Define abilities for the passed in user here. For example:
+    #
+    #   user ||= User.new # guest user (not logged in)
+    #   if user.admin?
+    #     can :manage, :all
+    #   else
+    #     can :read, :all
+    #   end
+    #
+    # The first argument to `can` is the action you are giving the user 
+    # permission to do.
+    # If you pass :manage it will apply to every action. Other common actions
+    # here are :read, :create, :update and :destroy.
+    #
+    # The second argument is the resource the user can perform the action on. 
+    # If you pass :all it will apply to every resource. Otherwise pass a Ruby
+    # class of the resource.
+    #
+    # The third argument is an optional hash of conditions to further filter the
+    # objects.
+    # For example, here the user can only update published articles.
+    #
+    #   can :update, Article, :published => true
+    #
+    # See the wiki for details:
+    # https://github.com/ryanb/cancan/wiki/Defining-Abilities
+  end
+end
@@ -0,0 +1,6 @@
+class Role < ActiveRecord::Base
+  has_and_belongs_to_many :users, :join_table => :users_roles
+  belongs_to :resource, :polymorphic => true
+  
+  scopify
+end
 class User < ActiveRecord::Base
+  rolify
   # Include default devise modules. Others available are:
   # :confirmable, :lockable, :timeoutable and :omniauthable
   devise :database_authenticatable, 
@@ -0,0 +1 @@
+%h1 Home
 \ No newline at end of file
@@ -0,0 +1,8 @@
+Rolify.configure do |config|
+  # By default ORM adapter is ActiveRecord. uncomment to use mongoid
+  # config.use_mongoid
+  
+  # Dynamic shortcuts for User class (user.is_admin? like methods). Default is: false
+  # Enable this feature _after_ running rake db:migrate as it relies on the roles table
+  config.use_dynamic_shortcuts
+end
@@ -2,4 +2,6 @@ Rails.application.routes.draw do
   devise_for :users, ActiveAdmin::Devise.config
   ActiveAdmin.routes(self)
+
+  root 'static#home', as: :home
 end
@@ -0,0 +1,19 @@
+class RolifyCreateRoles < ActiveRecord::Migration
+  def change
+    create_table(:roles) do |t|
+      t.string :name
+      t.references :resource, :polymorphic => true
+
+      t.timestamps
+    end
+
+    create_table(:users_roles, :id => false) do |t|
+      t.references :user
+      t.references :role
+    end
+
+    add_index(:roles, :name)
+    add_index(:roles, [ :name, :resource_type, :resource_id ])
+    add_index(:users_roles, [ :user_id, :role_id ])
+  end
+end
@@ -11,7 +11,18 @@
 #
 # It's strongly recommended that you check this file into your version control system.
-ActiveRecord::Schema.define(version: 20140513065840) do
+ActiveRecord::Schema.define(version: 20140513072121) do
+
+  create_table "roles", force: true do |t|
+    t.string   "name"
+    t.integer  "resource_id"
+    t.string   "resource_type"
+    t.datetime "created_at"
+    t.datetime "updated_at"
+  end
+
+  add_index "roles", ["name", "resource_type", "resource_id"], name: "index_roles_on_name_and_resource_type_and_resource_id"
+  add_index "roles", ["name"], name: "index_roles_on_name"
   create_table "users", force: true do |t|
     t.string   "name"
@@ -32,4 +43,11 @@ ActiveRecord::Schema.define(version: 20140513065840) do
   add_index "users", ["email"], name: "index_users_on_email", unique: true
   add_index "users", ["reset_password_token"], name: "index_users_on_reset_password_token", unique: true
+  create_table "users_roles", id: false, force: true do |t|
+    t.integer "user_id"
+    t.integer "role_id"
+  end
+
+  add_index "users_roles", ["user_id", "role_id"], name: "index_users_roles_on_user_id_and_role_id"
+
 end
@@ -5,5 +5,3 @@
 #
 #   cities = City.create([{ name: 'Chicago' }, { name: 'Copenhagen' }])
 #   Mayor.create(name: 'Emanuel', city: cities.first)
-user = CreateAdminService.new.call
-puts 'CREATED ADMIN USER: ' << user.email
@@ -0,0 +1,3 @@		@@ -0,0 +1,3 @@
	1	+// Place all the styles related to the Static controller here.
	2	+// They will automatically be included in application.css.
	3	+// You can use Sass (SCSS) here: http://sass-lang.com/
@@ -0,0 +1,5 @@		@@ -0,0 +1,5 @@
	1	+class StaticController < ApplicationController
	2	+ def home
	3	+
	4	+ end
	5	+end
@@ -0,0 +1,43 @@		@@ -0,0 +1,43 @@
	1	+class Ability
	2	+ include CanCan::Ability
	3	+
	4	+ def initialize(user)
	5	+
	6	+ user \|\|= User.new
	7	+
	8	+ if user.is_admin?
	9	+ can :manage, :all
	10	+ end
	11	+
	12	+ if user.id
	13	+ can :manage, ActiveAdmin::Page, name: 'Dashboard'
	14	+ end
	15	+
	16	+ # Define abilities for the passed in user here. For example:
	17	+ #
	18	+ # user \|\|= User.new # guest user (not logged in)
	19	+ # if user.admin?
	20	+ # can :manage, :all
	21	+ # else
	22	+ # can :read, :all
	23	+ # end
	24	+ #
	25	+ # The first argument to `can` is the action you are giving the user
	26	+ # permission to do.
	27	+ # If you pass :manage it will apply to every action. Other common actions
	28	+ # here are :read, :create, :update and :destroy.
	29	+ #
	30	+ # The second argument is the resource the user can perform the action on.
	31	+ # If you pass :all it will apply to every resource. Otherwise pass a Ruby
	32	+ # class of the resource.
	33	+ #
	34	+ # The third argument is an optional hash of conditions to further filter the
	35	+ # objects.
	36	+ # For example, here the user can only update published articles.
	37	+ #
	38	+ # can :update, Article, :published => true
	39	+ #
	40	+ # See the wiki for details:
	41	+ # https://github.com/ryanb/cancan/wiki/Defining-Abilities
	42	+ end
	43	+end
@@ -0,0 +1,6 @@		@@ -0,0 +1,6 @@
	1	+class Role < ActiveRecord::Base
	2	+ has_and_belongs_to_many :users, :join_table => :users_roles
	3	+ belongs_to :resource, :polymorphic => true
	4	+
	5	+ scopify
	6	+end
1	class User < ActiveRecord::Base	1	class User < ActiveRecord::Base
		2	+ rolify
2	# Include default devise modules. Others available are:	3	# Include default devise modules. Others available are:
3	# :confirmable, :lockable, :timeoutable and :omniauthable	4	# :confirmable, :lockable, :timeoutable and :omniauthable
4	devise :database_authenticatable,	5	devise :database_authenticatable,
	@@ -0,0 +1 @@		@@ -0,0 +1 @@
		1	+%h1 Home
0	\ No newline at end of file	2	\ No newline at end of file
@@ -0,0 +1,8 @@		@@ -0,0 +1,8 @@
	1	+Rolify.configure do \|config\|
	2	+ # By default ORM adapter is ActiveRecord. uncomment to use mongoid
	3	+ # config.use_mongoid
	4	+
	5	+ # Dynamic shortcuts for User class (user.is_admin? like methods). Default is: false
	6	+ # Enable this feature _after_ running rake db:migrate as it relies on the roles table
	7	+ config.use_dynamic_shortcuts
	8	+end
	@@ -2,4 +2,6 @@ Rails.application.routes.draw do		@@ -2,4 +2,6 @@ Rails.application.routes.draw do
2	devise_for :users, ActiveAdmin::Devise.config	2	devise_for :users, ActiveAdmin::Devise.config
3		3
4	ActiveAdmin.routes(self)	4	ActiveAdmin.routes(self)
		5	+
		6	+ root 'static#home', as: :home
5	end	7	end
@@ -0,0 +1,19 @@		@@ -0,0 +1,19 @@
	1	+class RolifyCreateRoles < ActiveRecord::Migration
	2	+ def change
	3	+ create_table(:roles) do \|t\|
	4	+ t.string :name
	5	+ t.references :resource, :polymorphic => true
	6	+
	7	+ t.timestamps
	8	+ end
	9	+
	10	+ create_table(:users_roles, :id => false) do \|t\|
	11	+ t.references :user
	12	+ t.references :role
	13	+ end
	14	+
	15	+ add_index(:roles, :name)
	16	+ add_index(:roles, [ :name, :resource_type, :resource_id ])
	17	+ add_index(:users_roles, [ :user_id, :role_id ])
	18	+ end
	19	+end
	@@ -11,7 +11,18 @@		@@ -11,7 +11,18 @@
11	#	11	#
12	# It's strongly recommended that you check this file into your version control system.	12	# It's strongly recommended that you check this file into your version control system.
13		13
14	-ActiveRecord::Schema.define(version: 20140513065840) do	14	+ActiveRecord::Schema.define(version: 20140513072121) do
		15	+
		16	+ create_table "roles", force: true do \|t\|
		17	+ t.string "name"
		18	+ t.integer "resource_id"
		19	+ t.string "resource_type"
		20	+ t.datetime "created_at"
		21	+ t.datetime "updated_at"
		22	+ end
		23	+
		24	+ add_index "roles", ["name", "resource_type", "resource_id"], name: "index_roles_on_name_and_resource_type_and_resource_id"
		25	+ add_index "roles", ["name"], name: "index_roles_on_name"
15		26
16	create_table "users", force: true do \|t\|	27	create_table "users", force: true do \|t\|
17	t.string "name"	28	t.string "name"
	@@ -32,4 +43,11 @@ ActiveRecord::Schema.define(version: 20140513065840) do		@@ -32,4 +43,11 @@ ActiveRecord::Schema.define(version: 20140513065840) do
32	add_index "users", ["email"], name: "index_users_on_email", unique: true	43	add_index "users", ["email"], name: "index_users_on_email", unique: true
33	add_index "users", ["reset_password_token"], name: "index_users_on_reset_password_token", unique: true	44	add_index "users", ["reset_password_token"], name: "index_users_on_reset_password_token", unique: true
34		45
		46	+ create_table "users_roles", id: false, force: true do \|t\|
		47	+ t.integer "user_id"
		48	+ t.integer "role_id"
		49	+ end
		50	+
		51	+ add_index "users_roles", ["user_id", "role_id"], name: "index_users_roles_on_user_id_and_role_id"
		52	+
35	end	53	end