app/models/concerns/taxonomix.rb
module Taxonomix
extend ActiveSupport::Concern
include DirtyAssociations
TAXONOMY_JOIN_TABLE = :taxable_taxonomies
included do
has_many TAXONOMY_JOIN_TABLE, :dependent => :destroy, :as => :taxable
has_many :locations, -> { where(:type => 'Location') },
:through => TAXONOMY_JOIN_TABLE, :source => :taxonomy,
:validate => false
has_many :organizations, -> { where(:type => 'Organization') },
:through => TAXONOMY_JOIN_TABLE, :source => :taxonomy,
:validate => false
after_initialize :set_current_taxonomy
scoped_search :relation => :locations, :on => :name, :rename => :location, :complete_value => true, :only_explicit => true
scoped_search :relation => :locations, :on => :id, :rename => :location_id, :complete_enabled => false, :only_explicit => true, :validator => ScopedSearch::Validators::INTEGER
scoped_search :relation => :organizations, :on => :name, :rename => :organization, :complete_value => true, :only_explicit => true
scoped_search :relation => :organizations, :on => :id, :rename => :organization_id, :complete_enabled => false, :only_explicit => true, :validator => ScopedSearch::Validators::INTEGER
dirty_has_many_associations :organizations, :locations
audit_associations :organizations, :locations if respond_to? :audit_associations
validate :ensure_taxonomies_not_escalated, :if => proc { User.current.nil? || !User.current.admin? }
end
module ClassMethods
attr_accessor :which_ancestry_method, :which_location, :which_organization
# default inner_method includes children (subtree_ids)
def with_taxonomy_scope(loc = Location.current, org = Organization.current, inner_method = :subtree_ids)
scope = block_given? ? yield : where(nil)
self.which_ancestry_method = inner_method
self.which_location = Location.expand(loc)
self.which_organization = Organization.expand(org)
scope_by_taxable_ids(scope).readonly(false)
end
# default inner_method includes parents (path_ids)
def with_taxonomy_scope_override(loc = nil, org = nil, inner_method = :path_ids)
# need to .unscope in case default_scope {with_taxonomy_scope} overrides inner_method
unscope(:where => :taxonomy).with_taxonomy_scope(loc, org, inner_method)
end
def used_taxonomy_ids
used_location_ids + used_organization_ids
end
def used_location_ids
return [] unless which_location
get_taxonomy_ids(which_location, which_ancestry_method)
end
def used_organization_ids
return [] unless which_organization
get_taxonomy_ids(which_organization, which_ancestry_method)
end
def get_taxonomy_ids(taxonomy, method)
Array(taxonomy).map { |t| t.send(method) + t.ancestor_ids }.flatten.uniq
end
def taxable_ids(loc = which_location, org = which_organization, inner_method = which_ancestry_method)
# Return everything (represented by nil), including objects without
# taxonomies. This value should only be returned for admin users.
return nil if any_context?(loc) && any_context?(org) &&
User.current.try(:admin?)
ids = inner_ids(loc, Location, inner_method) & inner_ids(org, Organization, inner_method)
if self == User
# In the case of users we want the taxonomy scope to get both the users
# of the taxonomy, admins, and the current user.
ids.concat(admin_ids) if User.current.present? && User.current.admin?
ids << User.current.id if User.current.present?
end
ids
end
# Returns the IDs available for the passed context.
# Passing a nil or [] value as taxonomy equates to "Any context".
# Any other value will be understood as 'IDs available in this taxonomy'.
def inner_ids(taxonomy, taxonomy_class, inner_method)
return unscoped.pluck("#{table_name}.id") if taxonomy_class.ignore?(to_s)
return inner_select(taxonomy, inner_method) if taxonomy.present?
return [] unless User.current.present?
# Any available taxonomy to the current user
return unscoped.pluck("#{table_name}.id") if User.current.admin?
taxonomy_relation = taxonomy_class.to_s.underscore.pluralize
any_context_taxonomies = User.current.
taxonomy_and_child_ids(:"#{taxonomy_relation}")
unscoped.joins(TAXONOMY_JOIN_TABLE).
where("#{TAXONOMY_JOIN_TABLE}.taxonomy_id" => any_context_taxonomies).
pluck(:id)
end
def any_context?(taxonomy)
taxonomy.blank?
end
# taxonomy can be either specific taxonomy object or array of these objects
# it can also be an empty array that means all taxonomies (user is not assigned to any)
def inner_select(taxonomy, inner_method = which_ancestry_method)
# always include ancestor_ids in inner select
conditions = { :taxable_type => base_class.name }
if taxonomy.present?
taxonomy_ids = get_taxonomy_ids(taxonomy, inner_method)
conditions[:taxonomy_id] = taxonomy_ids
end
TaxableTaxonomy.where(conditions).distinct.pluck(:taxable_id).compact
end
def admin_ids
User.unscoped.only_admin.pluck(:id) if self == User
end
def scope_by_taxable_ids(scope)
case (cached_ids = taxable_ids)
when nil
scope
when []
# If *no* taxable ids were found, then don't show any resources
scope.none
else
# We need to generate the WHERE part of the SQL query as a string,
# otherwise the default scope would set id on each new instance
# and the same taxable_id on taxable_taxonomy objects
scope.where(sanitize_sql("#{table_name}.id IN (#{cached_ids.join(',')})"))
end
end
def join_user_organizations
org_ids = user_taxonomy_ids(Organization)
join_taxonomies(org_ids, org_join_arel, Organization)
end
def join_user_locations
loc_ids = user_taxonomy_ids(Location)
join_taxonomies(loc_ids, loc_join_arel, Location)
end
def join_taxonomies(taxonomy_ids, tax_arel, taxonomy_class)
return all unless filter_taxonomy?(taxonomy_class)
class_arel = base_class.arel_table
statement = class_arel.join(tax_arel, Arel::Nodes::InnerJoin).on(
class_arel[:id].eq(tax_arel[:taxable_id]).
and(tax_arel[:taxable_type].eq(base_class.name)).
and(tax_arel[:taxonomy_id].in(taxonomy_ids))
)
joins(statement.join_sources)
end
def taxonomy_join_scope
unscoped.distinct.join_user_organizations.join_user_locations
end
def filter_taxonomy?(taxonomy_class)
taxonomy_class.current || !User.current.admin?
end
def org_join_arel
Arel::Table.new(:taxable_taxonomies).alias("tto")
end
def loc_join_arel
Arel::Table.new(:taxable_taxonomies).alias("ttl")
end
def user_taxonomy_ids(taxonomy_class)
taxonomy = taxonomy_class.current
if any_context?(taxonomy)
taxonomy_relation = taxonomy_class.to_s.underscore.pluralize
taxonomy_class.send("my_#{taxonomy_relation}").reorder(nil).pluck(:id)
else
get_taxonomy_ids(taxonomy, :subtree_ids)
end
end
end
def set_current_taxonomy
if new_record? && errors.empty?
# we need to use _ids methods so that DirtyAssociations is correctly saved
self.location_ids += [Location.current.id] if add_current_location?
self.organization_ids += [Organization.current.id] if add_current_organization?
end
end
def add_current_organization?
add_current_taxonomy?(:organization)
end
def add_current_location?
add_current_taxonomy?(:location)
end
def add_current_taxonomy?(taxonomy)
klass, association = case taxonomy
when :organization
[Organization, :organizations]
when :location
[Location, :locations]
else
raise ArgumentError, "unknown taxonomy #{taxonomy}"
end
current_taxonomy = klass.current
current_taxonomy && !send(association).include?(current_taxonomy)
end
def used_location_ids
used_taxonomy_ids(:location_id)
end
def used_organization_ids
used_taxonomy_ids(:organization_id)
end
def used_or_selected_location_ids
(location_ids + used_location_ids).uniq
end
def used_or_selected_organization_ids
(organization_ids + used_organization_ids).uniq
end
def children_of_selected_location_ids
children_of_selected_taxonomy_ids(:locations)
end
def children_of_selected_organization_ids
children_of_selected_taxonomy_ids(:organizations)
end
# Only administrator can choose empty taxonomies or taxonomies that they aren't assigned to,
# other users can select only taxonomies they are granted to assign
# and they can't leave the selection empty (which would mean global resource)
#
# we skip checking if user is global or it's not a new record and taxonomies were not changed
# for existing records it would block saving global objects if taxonomies were not changed
# for new records this would allow to create global objects for non global users
def ensure_taxonomies_not_escalated
Taxonomy.types.each do |taxonomy|
assoc_base = taxonomy.to_s.downcase
assoc = assoc_base.pluralize
key = assoc_base + '_ids'
next if (User.current.nil? || User.current.send(assoc.to_s).empty?) || (!new_record? && !send("#{key}_changed?"))
allowed = taxonomy.authorized("assign_#{assoc}", taxonomy).pluck(:id).to_set.union(send("#{key}_was"))
tried = send(key).to_set
if tried.empty? || !tried.subset?(allowed)
errors.add key, _("Invalid %{assoc} selection, you must select at least one of yours and have '%{perm}' permission.") % { :assoc => _(assoc), :perm => "assign_#{assoc}" }
end
end
end
protected
def taxonomy_foreign_key_conditions
if respond_to?(:taxonomy_foreign_conditions)
taxonomy_foreign_conditions
else
{ "#{self.class.base_class.to_s.tableize.singularize}_id".to_sym => id }
end
end
def used_taxonomy_ids(type)
return [] if new_record? || !respond_to?(:hosts)
Host::Base.where(taxonomy_foreign_key_conditions).distinct.pluck(type).compact
end
def children_of_selected_taxonomy_ids(assoc)
return [] if new_record?
ids = []
send(assoc).each do |tax|
ids << tax.descendant_ids
end
ids.flatten.compact.uniq
end
end