eletrotupi

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41


module ActsAsAccessible
  # This is the global hash of permissions and each item is of the form
  # 'class_name' => permission_hash for each target have its own set of permissions
  # but its not a namespace so each permission name should be unique
  PERMISSIONS = {}

  extend ActiveSupport::Concern

  module ClassMethods
    # Acts as accessible makes a model acts as a resource that can be targeted by a permission
    def acts_as_accessible
      has_many :role_assignments, :as => :resource, :dependent => :destroy
    end
  end

  # A superior instance is an object that has higher level an thus can be targeted by a permission
  # to represent an permission over a group of related resources rather than a single one
  def superior_instance
    nil
  end

  def affiliate(accessor, roles, attributes = {})
    roles = Array(roles)
    roles.map {|role| accessor.add_role(role, self, attributes)}.any?
  end

  def disaffiliate(accessor, roles)
    roles = Array(roles)
    role_assignments.map do |ra|
      ra.destroy if roles.include?(ra.role) && ra.accessor == accessor
    end
  end

  def roles
    Role.where(environment_id: environment.id).select do |r|
      r.permissions.any?{ |p| PERMISSIONS[self.class.base_class.name].include?(p) }
    end
  end
end

ActiveRecord::Base.send(:include, ActsAsAccessible)
cirandas.net
