grant [permission], to: [grantees] -> result
permission - Symbol (required) - one of [:discover|:read|:edit]
David Chandek-Stark dchandekstark
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ActiveFedora::Base.class_eval do | |
| # method_missing is defined, so adding methods | |
| def auditable? | |
| begin | |
| self.is_a? ActiveFedora::Auditable | |
| rescue | |
| false | |
| end |
dchandekstark
/ datastream.rb
Last active
December 17, 2015 11:09
Extensions to Rubydora digital object and datastream APIs
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ACTIVE = 'A' | |
| INACTIVE = 'I' | |
| DELETED = 'D' | |
| def active? | |
| dsState == ACTIVE | |
| end | |
| def inactive? | |
| dsState == INACTIVE |
dchandekstark
/ gist:6794732
Last active
December 24, 2015 11:59
Proposal: Add backward-compatible API to Hydra rights metadata permissions using a SQL-like grant/revoke syntax
dchandekstark
/ get_objects_for_solr_field_values.rb
Last active
January 2, 2016 15:19
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| def get_objects_for_solr_field_values(solr_field, values, opts = {}) | |
| extra_solr_params = opts.delete(:extra_solr_params) || {} | |
| documents = get_solr_response_for_field_values(solr_field, values, extra_solr_params)[1] | |
| method = opts.delete(:lazy) ? :lazy_reify_solr_results : :reify_solr_results | |
| ActiveFedora::SolrService.send(method, documents, opts) | |
| end |
dchandekstark
/ has_content_validator.rb
Last active
August 29, 2015 13:55
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| class HasContentValidator < ActiveModel::EachValidator | |
| def validate_each(record, attribute, value) | |
| unless value.has_content? | |
| record.errors[attribute] << "The \"#{value.dsid}\" datastream does not have content" | |
| end | |
| end | |
| end |
Hydra's current authorization model accounts for user- and group-based permissions (what I am calling groups are sometimes in Hydra called "roles", such as in the RoleMapper class or hydra-role-management). Authorization data is stored in the repository (as rightsMetadata or policy-based defaultRights) and provides a simple set of permissions ("discover", "read", and "edit") which are applied atomically at the object level. Adding other kinds of permissions (such as the ability to add child objects to a parent) or ones that don't depend on repository data (such as the ability to create new objects) involves custom coding using the current authorization library (CanCan, or CanCanCan in hydra-head 7).
It would seem beneficial to the Hydra community and/or individual adopters to explore the possibility of a common approach to extending Hydra's native authorization API.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| class Foo < ActiveRecord::Base | |
| belongs_to_af :bar | |
| end | |
| class Bar < ActiveFedora::Base | |
| has_many_ar :foos | |
| end |
Manager
dchandekstark
/ generic_file.rb
Last active
August 29, 2015 14:01
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| CHUNK = 1024**2 | |
| def add_file(file, dsid, file_name) | |
| return add_external_file(file, file_name) if dsid == 'content' | |
| super | |
| end | |
| def add_external_file(file, original_filename) | |
| external_file_path = generate_external_file_path |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <?xml version="1.0" encoding="UTF-8"?> | |
| <!DOCTYPE rdf:RDF [ | |
| <!ENTITY rdfns 'http://www.w3.org/1999/02/22-rdf-syntax-ns#'> | |
| <!ENTITY rdfsns 'http://www.w3.org/2000/01/rdf-schema#'> | |
| <!ENTITY dcns 'http://purl.org/dc/elements/1.1/'> | |
| <!ENTITY dctermsns 'http://purl.org/dc/terms/'> | |
| <!ENTITY dctypens 'http://purl.org/dc/dcmitype/'> | |
| <!ENTITY dcamns 'http://purl.org/dc/dcam/'> | |
| <!ENTITY skosns 'http://www.w3.org/2004/02/skos/core#'> | |
| <!ENTITY owlns 'http://www.w3.org/2002/07/owl#'> |
OlderNewer