-
How to use [Pundit](https://github.com/elabs/pundit) and [Rolify](https://github.com/RolifyCommunity/rolify)?
-
- [elabs/pundit](https://github.com/elabs/pundit)
- [CanCanCommunity/cancancan](https://github.com/CanCanCommunity/cancancan)
-
Authentication & Devise is in (Authorization & Pundit)
-
Implement 'pundit' gem
-
wire up devise to authenticate logged in users, and pundit to provide authorization to the graphql server
-
Some controllers rely solely on [Pundit](https://github.com/varvet/pundit) and others on custom legacy code like [require_admin](https://github.com/openSUSE/open-build-service/blob/92b16b72e57e483f708…
-
`extensions/pundit/authorization_adapter.rb` contains this code:
``` ruby
def query(_action, abstract_model)
@controller.policy_scope(abstract_model.model.all)
rescue ::Pund…
-
I'm loving this gem. I would like to scope dropdown options to the current_user and preferably without altering the Administrate controllers or views.
Surely there's an elegant way to achieve this?…
-
**Describe the bug**
We have a type that uses `pundits` as part of the authorization flow. When being resolved as a connection, in graphql version 2.0.24, the authorization check occurs. In graphql-r…
-
Mostly putting this out there as a discussion on possible ways to abstract the code to make it easier to extend. A few things I think would be useful:
1. Separate out any Pundit requirements. While I …