Class: AbilityAnalysis

Inherits:

Object

• Object
• AbilityAnalysis

Defined in:

lib/ability_analysis.rb

Overview

Tools to assist with analysing permissions

Defined Under Namespace

Classes: SpecGenerator, UserStub

Constant Summary

ALIAS =

{ update: [:edit], show: [:read], index: [:read], manage: %i[create edit read delete] }.freeze

AUTHORIZED_ROLES =

Roles associated with an authorizable

{
  'manager' => %w[project study],
  'follower' => %w[project study],
  'owner' => %w[project sample study]
}.freeze

BASE_ABILITIES =

These were pulled directly out of Sequencescape by finding can?[ (]:\w+, *[\w@_]+ and then were re-jigged semi-manually

{
  'AssetGroup' => %i[create edit read delete],
  'BaitLibrary' => %i[create edit read delete],
  'BarcodePrinter' => %i[create edit read delete],
  'Batch' => [:rollback],
  'Comment' => %i[create delete],
  'CustomText' => %i[create edit read delete],
  'Delayed::Job' => [:read],
  'Document' => [:delete],
  'FacultySponsor' => %i[create edit read delete],
  'GelsController' => %i[create edit read delete],
  'Labware' => %i[rename change_purpose edit],
  'Order' => [:create],
  'Plate' => [:convert_to_tube],
  'PlateTemplate' => [:read],
  'PrimerPanel' => %i[create edit read delete],
  'Program' => %i[create edit read delete],
  'Project' => %i[administer edit create],
  'Purpose' => %i[create edit read delete],
  'QcDecision' => [:create],
  'Receptacle' => %i[edit close],
  'ReferenceGenome' => %i[create edit read delete],
  'Request' => %i[
    create_additional
    copy
    cancel
    change_priority
    see_previously_failed
    edit_additional
    reset_qc_information
    edit
    change_decision
  ],
  'Robot' => %i[create edit read delete],
  'Role' => %i[create administer edit read delete],
  'Sample' => %i[edit release accession],
  'SampleLogisticsController' => [:read],
  'SampleManifest' => [:create],
  'Sequencescape' => [:administer],
  'Study' => %i[administer unlink_sample link_sample edit create activate deactivate print_asset_group_labels],
  'Submission' => %i[create read edit delete change_priority],
  'Supplier' => [:create],
  'TagGroup' => [:create],
  'TagLayoutTemplate' => [:create],
  # NOTE: TagSet is missing from this list, not sure if this was intentional or not
  'User' => [:administer]
}.freeze

Instance Attribute Summary

• #ability ⇒ Object readonly

  Returns the value of attribute ability.

• #permissions ⇒ Object readonly

  Returns the value of attribute permissions.

• #roles ⇒ Object readonly

  Returns the value of attribute roles.

Instance Method Summary

• #abilities_for(user) ⇒ Object
• #ability_for_role(role_name) ⇒ Ability

  Returns an Ability for a user with a role named role_name.

• #all_roles ⇒ Object
• #generate_spec(output = $stdout) ⇒ Object
• #initialize(permissions: BASE_ABILITIES, roles: Role.keys, ability: Ability) ⇒ AbilityAnalysis constructor

  A new instance of AbilityAnalysis.

• #permission_matrix ⇒ Array

  Returns a matrix of permission in the format [ ModelClass, [ [:action, [*permissions_for_each_role]] ]].

• #sorted_permissions ⇒ Object

  Returns an array of arrays in the format: [[Model, [:permissions]]].

• #user_with_roles(*role_names) ⇒ Object

Constructor Details

#initialize(permissions: BASE_ABILITIES, roles: Role.keys, ability: Ability) ⇒ AbilityAnalysis

Returns a new instance of AbilityAnalysis.

# File 'lib/ability_analysis.rb', line 68

has_metadata do
  # NOTE: The following attribute is not required for Microarray Genotyping.
  # I think this might be broken and suggests that there should be separate classes for project: one for
  # next-gen sequencing that includes this attribute in it's metadata, and one for microarray genotyping
  # that doesn't.
  include ProjectManager::Associations
  include BudgetDivision::Associations

  custom_attribute(:project_cost_code, required: true)
  custom_attribute(:funding_comments)
  custom_attribute(:collaborators)
  custom_attribute(:external_funding_source)
  custom_attribute(:sequencing_budget_cost_centre)
  custom_attribute(:project_funding_model, in: PROJECT_FUNDING_MODELS)
  custom_attribute(:gt_committee_tracking_id)

  before_validation do |record|
    record.project_cost_code = nil if record.project_cost_code.blank?
    record.project_funding_model = nil if record.project_funding_model.blank?
  end
end

Instance Attribute Details

#ability ⇒ Object (readonly)

Returns the value of attribute ability.

# File 'lib/ability_analysis.rb', line 5

has_metadata do
  # NOTE: The following attribute is not required for Microarray Genotyping.
  # I think this might be broken and suggests that there should be separate classes for project: one for
  # next-gen sequencing that includes this attribute in it's metadata, and one for microarray genotyping
  # that doesn't.
  include ProjectManager::Associations
  include BudgetDivision::Associations

  custom_attribute(:project_cost_code, required: true)
  custom_attribute(:funding_comments)
  custom_attribute(:collaborators)
  custom_attribute(:external_funding_source)
  custom_attribute(:sequencing_budget_cost_centre)
  custom_attribute(:project_funding_model, in: PROJECT_FUNDING_MODELS)
  custom_attribute(:gt_committee_tracking_id)

  before_validation do |record|
    record.project_cost_code = nil if record.project_cost_code.blank?
    record.project_funding_model = nil if record.project_funding_model.blank?
  end
end

#permissions ⇒ Object (readonly)

Returns the value of attribute permissions.

# File 'lib/ability_analysis.rb', line 5

has_metadata do
  # NOTE: The following attribute is not required for Microarray Genotyping.
  # I think this might be broken and suggests that there should be separate classes for project: one for
  # next-gen sequencing that includes this attribute in it's metadata, and one for microarray genotyping
  # that doesn't.
  include ProjectManager::Associations
  include BudgetDivision::Associations

  custom_attribute(:project_cost_code, required: true)
  custom_attribute(:funding_comments)
  custom_attribute(:collaborators)
  custom_attribute(:external_funding_source)
  custom_attribute(:sequencing_budget_cost_centre)
  custom_attribute(:project_funding_model, in: PROJECT_FUNDING_MODELS)
  custom_attribute(:gt_committee_tracking_id)

  before_validation do |record|
    record.project_cost_code = nil if record.project_cost_code.blank?
    record.project_funding_model = nil if record.project_funding_model.blank?
  end
end

#roles ⇒ Object (readonly)

Returns the value of attribute roles.

# File 'lib/ability_analysis.rb', line 5

has_metadata do
  # NOTE: The following attribute is not required for Microarray Genotyping.
  # I think this might be broken and suggests that there should be separate classes for project: one for
  # next-gen sequencing that includes this attribute in it's metadata, and one for microarray genotyping
  # that doesn't.
  include ProjectManager::Associations
  include BudgetDivision::Associations

  custom_attribute(:project_cost_code, required: true)
  custom_attribute(:funding_comments)
  custom_attribute(:collaborators)
  custom_attribute(:external_funding_source)
  custom_attribute(:sequencing_budget_cost_centre)
  custom_attribute(:project_funding_model, in: PROJECT_FUNDING_MODELS)
  custom_attribute(:gt_committee_tracking_id)

  before_validation do |record|
    record.project_cost_code = nil if record.project_cost_code.blank?
    record.project_funding_model = nil if record.project_funding_model.blank?
  end
end

Instance Method Details

#abilities_for(user) ⇒ Object

# File 'lib/ability_analysis.rb', line 80

has_metadata do
  # NOTE: The following attribute is not required for Microarray Genotyping.
  # I think this might be broken and suggests that there should be separate classes for project: one for
  # next-gen sequencing that includes this attribute in it's metadata, and one for microarray genotyping
  # that doesn't.
  include ProjectManager::Associations
  include BudgetDivision::Associations

  custom_attribute(:project_cost_code, required: true)
  custom_attribute(:funding_comments)
  custom_attribute(:collaborators)
  custom_attribute(:external_funding_source)
  custom_attribute(:sequencing_budget_cost_centre)
  custom_attribute(:project_funding_model, in: PROJECT_FUNDING_MODELS)
  custom_attribute(:gt_committee_tracking_id)

  before_validation do |record|
    record.project_cost_code = nil if record.project_cost_code.blank?
    record.project_funding_model = nil if record.project_funding_model.blank?
  end
end

#ability_for_role(role_name) ⇒ Ability

Returns an Ability for a user with a role named role_name

Parameters:

• role_name (String) —

  The name of a role

Returns:

• (Ability) —

  An ability covering the role

# File 'lib/ability_analysis.rb', line 120

has_metadata do
  # NOTE: The following attribute is not required for Microarray Genotyping.
  # I think this might be broken and suggests that there should be separate classes for project: one for
  # next-gen sequencing that includes this attribute in it's metadata, and one for microarray genotyping
  # that doesn't.
  include ProjectManager::Associations
  include BudgetDivision::Associations

  custom_attribute(:project_cost_code, required: true)
  custom_attribute(:funding_comments)
  custom_attribute(:collaborators)
  custom_attribute(:external_funding_source)
  custom_attribute(:sequencing_budget_cost_centre)
  custom_attribute(:project_funding_model, in: PROJECT_FUNDING_MODELS)
  custom_attribute(:gt_committee_tracking_id)

  before_validation do |record|
    record.project_cost_code = nil if record.project_cost_code.blank?
    record.project_funding_model = nil if record.project_funding_model.blank?
  end
end

#all_roles ⇒ Object

# File 'lib/ability_analysis.rb', line 90

has_metadata do
  # NOTE: The following attribute is not required for Microarray Genotyping.
  # I think this might be broken and suggests that there should be separate classes for project: one for
  # next-gen sequencing that includes this attribute in it's metadata, and one for microarray genotyping
  # that doesn't.
  include ProjectManager::Associations
  include BudgetDivision::Associations

  custom_attribute(:project_cost_code, required: true)
  custom_attribute(:funding_comments)
  custom_attribute(:collaborators)
  custom_attribute(:external_funding_source)
  custom_attribute(:sequencing_budget_cost_centre)
  custom_attribute(:project_funding_model, in: PROJECT_FUNDING_MODELS)
  custom_attribute(:gt_committee_tracking_id)

  before_validation do |record|
    record.project_cost_code = nil if record.project_cost_code.blank?
    record.project_funding_model = nil if record.project_funding_model.blank?
  end
end

#generate_spec(output = $stdout) ⇒ Object

# File 'lib/ability_analysis.rb', line 76

has_metadata do
  # NOTE: The following attribute is not required for Microarray Genotyping.
  # I think this might be broken and suggests that there should be separate classes for project: one for
  # next-gen sequencing that includes this attribute in it's metadata, and one for microarray genotyping
  # that doesn't.
  include ProjectManager::Associations
  include BudgetDivision::Associations

  custom_attribute(:project_cost_code, required: true)
  custom_attribute(:funding_comments)
  custom_attribute(:collaborators)
  custom_attribute(:external_funding_source)
  custom_attribute(:sequencing_budget_cost_centre)
  custom_attribute(:project_funding_model, in: PROJECT_FUNDING_MODELS)
  custom_attribute(:gt_committee_tracking_id)

  before_validation do |record|
    record.project_cost_code = nil if record.project_cost_code.blank?
    record.project_funding_model = nil if record.project_funding_model.blank?
  end
end

#permission_matrix ⇒ Array

Returns a matrix of permission in the format [ ModelClass, [ [:action, [*permissions_for_each_role]] ]]

Returns:

• (Array) —

  Nested array of each model and their permissions

# File 'lib/ability_analysis.rb', line 102

has_metadata do
  # NOTE: The following attribute is not required for Microarray Genotyping.
  # I think this might be broken and suggests that there should be separate classes for project: one for
  # next-gen sequencing that includes this attribute in it's metadata, and one for microarray genotyping
  # that doesn't.
  include ProjectManager::Associations
  include BudgetDivision::Associations

  custom_attribute(:project_cost_code, required: true)
  custom_attribute(:funding_comments)
  custom_attribute(:collaborators)
  custom_attribute(:external_funding_source)
  custom_attribute(:sequencing_budget_cost_centre)
  custom_attribute(:project_funding_model, in: PROJECT_FUNDING_MODELS)
  custom_attribute(:gt_committee_tracking_id)

  before_validation do |record|
    record.project_cost_code = nil if record.project_cost_code.blank?
    record.project_funding_model = nil if record.project_funding_model.blank?
  end
end

#sorted_permissions ⇒ Object

Returns an array of arrays in the format: [[Model, [:permissions]]]

# File 'lib/ability_analysis.rb', line 86

has_metadata do
  # NOTE: The following attribute is not required for Microarray Genotyping.
  # I think this might be broken and suggests that there should be separate classes for project: one for
  # next-gen sequencing that includes this attribute in it's metadata, and one for microarray genotyping
  # that doesn't.
  include ProjectManager::Associations
  include BudgetDivision::Associations

  custom_attribute(:project_cost_code, required: true)
  custom_attribute(:funding_comments)
  custom_attribute(:collaborators)
  custom_attribute(:external_funding_source)
  custom_attribute(:sequencing_budget_cost_centre)
  custom_attribute(:project_funding_model, in: PROJECT_FUNDING_MODELS)
  custom_attribute(:gt_committee_tracking_id)

  before_validation do |record|
    record.project_cost_code = nil if record.project_cost_code.blank?
    record.project_funding_model = nil if record.project_funding_model.blank?
  end
end

#user_with_roles(*role_names) ⇒ Object

# File 'lib/ability_analysis.rb', line 109

has_metadata do
  # NOTE: The following attribute is not required for Microarray Genotyping.
  # I think this might be broken and suggests that there should be separate classes for project: one for
  # next-gen sequencing that includes this attribute in it's metadata, and one for microarray genotyping
  # that doesn't.
  include ProjectManager::Associations
  include BudgetDivision::Associations

  custom_attribute(:project_cost_code, required: true)
  custom_attribute(:funding_comments)
  custom_attribute(:collaborators)
  custom_attribute(:external_funding_source)
  custom_attribute(:sequencing_budget_cost_centre)
  custom_attribute(:project_funding_model, in: PROJECT_FUNDING_MODELS)
  custom_attribute(:gt_committee_tracking_id)

  before_validation do |record|
    record.project_cost_code = nil if record.project_cost_code.blank?
    record.project_funding_model = nil if record.project_funding_model.blank?
  end
end