-
Hi there,
The changes in 2.0.1 to support Mongoid 7.1 have been committed to master, but a release for 2.0.1 is not released to Rubygems.org.
Can you push a release so that we can reference this…
-
### Steps to reproduce
I'm trying to use `load_and_authorize_resource` after using `before_action :find_area, only: %i[show update]` and it's not enforcing authorization. I know my authorizations a…
-
- [ ] Allow signed-in admins to create a new user
- [ ] Also add password fields
- [ ] Make sure it doesn't sign out admin/sign in as new user
- [ ] Allow admins/users to change other fields without c…
-
Entering The Username Password Give Exception Access Denied. I am Using Devise gem
-
How can I Whitelist the whole of activeadmin and devise to no use cancan to skip authorization, so far
```
> check_authorization unless: :devise_controller?
```
works for login page only but cant ge…
-
when i have a user that doesn't have a role, it has a Infinite loop and not redirecting to the login page
my rescue_from
```
rescue_from CanCan::AccessDenied do |exception|
if user_signed_i…
-
Hi,
I have an ability defined like so:
can :manage, AssignedTask, :task => {:job => {:franchise_id => user.franchise_id}}
My models define that the AssignedTask belongs to a Task which belongs to…
-
Hi
I have a polymorphic relationship in AR class Client like so: belongs_to :monitorable, :polymorphic=>true
In release 1.6.8 this works
can :manage, Client, {:monitorable=>{:person_people=>{:targe…
-
If I do
```
can :roll, :logs if user.admin?
```
it works fine, but what if logs is nested in an admin module then it should be something like:
```
can :roll, :admin_logs
```
but the `authorize_res…
-
I was trying to define permissions for an administrator role like this:
```
can :manage, :all
cannot :propose_with_code, SubjectCode, ["subject_codes.department_id NOT IN (select id from departments …