Authorizer callback api change and bugfix

lib/assoc_list.ex

@@ -181,7 +181,7 @@ defmodule QueryBuilder.AssocList do
       end
 
     {join_type, auth_z_join_filters} =
-      case authorizer && authorizer.reject_unauthorized_assoc(source_schema, assoc_field) do
+      case authorizer && authorizer.reject_unauthorized_assoc(source_schema, {assoc_field, assoc_schema}) do
         %{join: join, on: on, or_on: or_on} ->
           {cond do
             join == :left || join_type == :left -> :left

lib/query.ex

@@ -15,8 +15,6 @@ defimpl Inspect, for: QueryBuilder.Query do
 end
 
 defimpl Ecto.Queryable, for: QueryBuilder.Query do
-  @authorizer Application.get_env(:query_builder, :authorizer)
-
   def to_query(%{ecto_query: ecto_query} = query) do
     source_schema = QueryBuilder.Utils.root_schema(ecto_query)
 
@@ -43,7 +41,7 @@ defimpl Ecto.Queryable, for: QueryBuilder.Query do
               []
           end
 
-        opts = [{:authorizer, @authorizer} | opts]
+        opts = [{:authorizer, authorizer()} | opts]
 
         QueryBuilder.AssocList.build(source_schema, accumulated_assocs, assocs, opts)
       end)

test/query_builder_test.exs

@@ -81,7 +81,7 @@ defmodule QueryBuilderTest do
 
     query =
       User
-      |> QueryBuilder.where(id: 102)
+      |> QueryBuilder.where(id: 103)
       |> QueryBuilder.preload(:authored_articles)
 
     assert Repo.one!(query).authored_articles == []

test/support/authorizer.ex

@@ -26,7 +26,7 @@ defmodule QueryBuilder.Authorizer do
     query
   end
 
-  def reject_unauthorized_assoc(User, :authored_articles) do
+  def reject_unauthorized_assoc(User, {:authored_articles, Article}) do
     grantors_for_user =
       Acl
       |> QueryBuilder.where(grantee_id: @current_user_id)