Bug #57835 for Catalyst-ActionRole-ACL: Feature request: abstract validation methods

Tue May 25 18:37:36 2010 danny [...] sadinoff.com - Ticket created

CC:	danny [...] sadinoff.com
Subject:	Feature request: abstract validation methods

My desire is for there to be a way to use Catayst::ActionRole::ACL to express arbitrarily complex authorization conditions, i.e. "you may only execute this method if the following CODEREF, when executed, returns true". I will let the power and general usefulness of such an approach speak for itself. t0m's suggested design: patch ActionRole::ACL to have an AuthValidateMethod('some_method') method some_method ($self, $user, $action, $c) { # Your code here } [...with the suggestion that you could] put the some_method into a role if you need to share it.. you can even put it in a param role, and bake it in several times, parameterised different ways, then config up it's use using CatalystX::Component::Traits... so the _entire_ ACL composition is done by reusing the custom code, but entirely from config.. (FSVO config) so.. You add handling of 1 attribute to ActionRole::ACL

Tue May 25 18:41:23 2010 bobtfish [...] bobtfish.net - Cc BOBTFISH added

Tue May 25 18:43:05 2010 danny [...] sadinoff.com - Requestor DSADINOFF added

Fri May 28 09:29:06 2010 danny [...] sadinoff.com - Correspondence added

Not sure what the "action" parameter is for in the callback. How does it differ from $c->action ?

Fri May 28 09:29:07 2010 danny [...] sadinoff.com - Status changed from 'new' to 'open'

Fri May 28 09:32:12 2010 converter [...] cpan.org - Taken

Sun May 30 09:51:27 2010 danny [...] sadinoff.com - Correspondence added

I've committed a fairly simple implementation, but I changed the API of can_visit : sub can_visit( $self, $c, $controller) is there some cleaner way to get the controller from the action itself? ...anyway, please have a look: http://github.com/dsadinoff/catalyst-actionrole-acl