feat(pundit): Add types for Pundit authorization (#974)

Author: ichiroc

gems/pundit/.rubocop.yml

@@ -0,0 +1,19 @@
+# This configuration inherits from /.rubocop.yml.
+# You can configure RBS style of this gem.
+# This file is used on CI. It is configured to automatically
+# make rubocop suggestions on pull requests for this gem.
+# If you do not like the style enforcement, you should remove this file.
+inherit_from: ../../.rubocop.yml
+
+##
+# If you want to customize the style, please consult with the gem reviewers.
+# You can see the list of cops at https://github.com/ksss/rubocop-on-rbs/blob/main/docs/modules/ROOT/pages/cops.adoc
+
+RBS/Layout:
+  Enabled: true
+
+RBS/Lint:
+  Enabled: true
+
+RBS/Style:
+  Enabled: true

gems/pundit/2.5/_test/metadata.yaml

@@ -0,0 +1,2 @@
+additional_gems:
+  - actionpack

gems/pundit/2.5/_test/test.rb

@@ -0,0 +1,42 @@
+require "pundit"
+require "action_controller"
+
+class Post
+end
+
+class PostPolicy
+  def initialize(user, record)
+    @user = user
+    @record = record
+  end
+
+  def update?
+    true
+  end
+
+  class Scope
+    def initialize(user, scope)
+      @user = user
+      @scope = scope
+    end
+
+    def resolve
+      @scope
+    end
+  end
+end
+
+class ApplicationController < ActionController::Base
+  include Pundit::Authorization
+
+  def show
+    post = Post.new
+    authorize(post)
+    authorize(post, :update?)
+    policy(post)
+    policy_scope(Post)
+
+    raise Pundit::NotAuthorizedError
+    raise Pundit::NotDefinedError
+  end
+end

gems/pundit/2.5/_test/test.rbs

@@ -0,0 +1,26 @@
+class Post
+end
+
+class PostPolicy
+  @user: untyped
+  @record: untyped
+
+  def initialize: (untyped user, untyped record) -> void
+
+  def update?: () -> bool
+
+  class Scope
+    @user: untyped
+    @scope: untyped
+
+    def initialize: (untyped user, untyped scope) -> void
+
+    def resolve: () -> untyped
+  end
+end
+
+class ApplicationController < ActionController::Base
+  include Pundit::Authorization
+
+  def show: () -> untyped
+end

gems/pundit/2.5/pundit.rbs

@@ -0,0 +1,25 @@
+module Pundit
+  class NotAuthorizedError < StandardError
+  end
+
+  class NotDefinedError < StandardError
+  end
+
+  module Authorization
+    def authorize: [T] (T record, ?Symbol? query, ?policy_class: untyped?) -> T
+
+    def policy: (untyped record) -> untyped
+
+    def policy_scope: [T] (T scope, ?policy_scope_class: untyped?) -> T?
+
+    def policy_scope!: [T] (T scope, ?policy_scope_class: untyped?) -> T
+
+    def verify_authorized: () -> void
+
+    def verify_policy_scoped: () -> void
+
+    def skip_authorization: () -> void
+
+    def skip_policy_scope: () -> void
+  end
+end