-
Hi, I have a around 13 models in my rails app, I use ability on all of them. My ability class has grown huge. I have different ability conditions on different CRUD actions which is making it hard to m…
-
Hi!
I would like to restrict a platform admin to manage specific sub classes of User. But this admin can manage User instance. I tried to change the declaration of the manage ability for User class b…
-
This is a feature well supported by the Devise gem, but not CanCanCan to my knowledge. This feature should be better thought out so that any user can change their password freely, but securely.
-
load_and_authorize_resource :dygest
load_and_authorize_resource :issue, through: :dygest, shallow: true
works before pull request #800. After pull request #800 the same code returns an error:
Couldn…
-
Hi,
I am using Rails 4 and don't find any branch especially for Rails 4.
My ability.rb code.
```
def initialize(user)
# Define abilities for the passed in user here. For example:
#
…
-
Hi,
I've got this code in Rails 3.2.11 project with CanCan 1.6.8:
Ability model:
``` ruby
if user.is_super_admin?
can :manage, User
cannot :manage, User, :rank => "root"
end
```
in UserCon…
-
Assuming we're using cancan 1.6.10 (not a problem in 1.6.9) and our classes have this kind of relationship:
class User
belongs_to :parent_a
belongs_to :parent_b
has_many :resource_a
end
Abilit…
-
I have a comments controller with a a polymorphic association like this:
load_resource :project
load_resource :upload
load_and_authorize_resource :comment, :through => [:project, :upload]
This is su…
-
I'm writing a [DataMapper adapter](https://github.com/siegfried/dm-parse) to make DataMapper work on [Parse](https://parse.com/). When I use #load_and_authorize_resource in nested resource controller,…
-
Using rails 3.2.6, CanCan 1.6.8, and mongoid 3.05.
I have a Products collection where each Product document can be quite large.
Each user document has an array of Product IDs that the user "owns" un…