will/cancan
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

removing need to pass tableize option around for query conditions

Browse Source
This commit is contained in:
Ryan Bates 2010-07-20 13:43:43 -07:00
parent a42e067f3b
commit 964a4765b1
6 changed files with 11 additions and 31 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
lib/cancan/ability.rb
View File

@ -183,8 +183,8 @@ module CanCan
end end
# Returns a CanCan::Query instance to help generate database queries based on the ability. # Returns a CanCan::Query instance to help generate database queries based on the ability.
def query(action, subject, options = {}) def query(action, subject)
Query.new(relevant_can_definitions_without_block(action, subject), subject, options) Query.new(subject, relevant_can_definitions_without_block(action, subject))
end end
private private

2
lib/cancan/active_record_additions.rb
View File

@ -20,7 +20,7 @@ module CanCan
# Here only the articles which the user can update are returned. This # Here only the articles which the user can update are returned. This
# internally uses Ability#conditions method, see that for more information. # internally uses Ability#conditions method, see that for more information.
def accessible_by(ability, action = :read) def accessible_by(ability, action = :read)
query = ability.query(action, self, :tableize => true) query = ability.query(action, self)
conditions = query.sql_conditions || {:id => nil} conditions = query.sql_conditions || {:id => nil}
if respond_to? :where if respond_to? :where
where(conditions).joins(query.association_joins) where(conditions).joins(query.association_joins)

12
lib/cancan/can_definition.rb
View File

@ -4,7 +4,6 @@ module CanCan
# helpful methods to determine permission checking and conditions hash generation. # helpful methods to determine permission checking and conditions hash generation.
class CanDefinition # :nodoc: class CanDefinition # :nodoc:
attr_reader :conditions, :block, :base_behavior attr_reader :conditions, :block, :base_behavior
include ActiveSupport::Inflector
attr_reader :block attr_reader :block
attr_reader :actions attr_reader :actions
attr_writer :expanded_actions attr_writer :expanded_actions
@ -37,17 +36,14 @@ module CanCan
end end
end end
# Returns a hash of conditions. If the ":tableize => true" option is passed # Returns a hash of conditions, pluralizing the table names
# it will pluralize the association conditions to match the table name. def tableized_conditions
def conditions(options = {}) if @conditions
if options[:tableize] && @conditions.kind_of?(Hash)
@conditions.inject({}) do |tableized_conditions, (name, value)| @conditions.inject({}) do |tableized_conditions, (name, value)|
name = tableize(name).to_sym if value.kind_of? Hash name = name.to_s.tableize.to_sym if value.kind_of? Hash
tableized_conditions[name] = value tableized_conditions[name] = value
tableized_conditions tableized_conditions
end end
else
@conditions
end end
end end

7
lib/cancan/query.rb
View File

@ -3,10 +3,9 @@ module CanCan
# Generates the sql conditions and association joins for use in ActiveRecord queries. # Generates the sql conditions and association joins for use in ActiveRecord queries.
# Normally you will not use this class directly, but instead through ActiveRecordAdditions#accessible_by. # Normally you will not use this class directly, but instead through ActiveRecordAdditions#accessible_by.
class Query class Query
def initialize(can_definitions, sanitizer, options) def initialize(sanitizer, can_definitions)
@can_definitions = can_definitions
@sanitizer = sanitizer @sanitizer = sanitizer
@options = options @can_definitions = can_definitions
end end
# Returns an array of arrays composing from desired action and hash of conditions which match the given ability. # Returns an array of arrays composing from desired action and hash of conditions which match the given ability.
@ -27,7 +26,7 @@ module CanCan
def conditions def conditions
unless @can_definitions.empty? unless @can_definitions.empty?
@can_definitions.map do |can_definition| @can_definitions.map do |can_definition|
[can_definition.base_behavior, can_definition.conditions(@options)] [can_definition.base_behavior, can_definition.tableized_conditions]
end end
else else
false false

2
spec/cancan/can_definition_spec.rb
View File

@ -34,7 +34,7 @@ describe CanCan::CanDefinition do
it "should return table names in conditions for association joins" do it "should return table names in conditions for association joins" do
@conditions[:foo] = {:bar => 1} @conditions[:foo] = {:bar => 1}
@conditions[:test] = 1 @conditions[:test] = 1
@can.conditions(:tableize => true).should == { :foos => { :bar => 1}, :test => 1 } @can.tableized_conditions.should == { :foos => { :bar => 1}, :test => 1 }
end end
it "should return no association joins if conditions is nil" do it "should return no association joins if conditions is nil" do

15
spec/cancan/query_spec.rb
View File

@ -84,19 +84,4 @@ describe CanCan::Query do
@ability.query(:manage, Person).sql_conditions.should == {:id=>1} @ability.query(:manage, Person).sql_conditions.should == {:id=>1}
@ability.query(:read, Person).sql_conditions.should == 'true=true' @ability.query(:read, Person).sql_conditions.should == 'true=true'
end end
it "should accept array condition for use in sql" do
@ability.can :read, Person, ["user_id = ?", 1]
@ability.query(:read, Person).sql_conditions.should == ['user_id = ?', 1]
@ability.query(:read, Person).association_joins.should be_nil
end
it "should accept array condition for use in sql and do sanitizing in complex conditions" do
@ability.cannot :read, Person
@ability.can :read, Person, ["user_id = ?", 1]
@ability.query(:read, Person).sql_conditions.should == 'user_id = 1'
@ability.query(:read, Person).association_joins.should be_nil
end
end end