-
I recently start using pundit in a project.
After reading the documentation, I start by creating an ApplicationPolicy and its child policies to match my models.
Things were going fine, everythin…
-
### Steps to reproduce
We have a controller with the following code:
```
class SomeController < ApiController
def create
Request.create(
user: current_user,
metadata: para…
-
When accessing UUIDs that don't exist or don't have access to, return a generic 404
-
Expected Behavior:
In `application_policy.rb`, if `index?` returns false, the user should not be able to access the index page.
Some Code:
In `application_policy.rb`, I've defined my `index?` act…
-
They should just 403 out and be quiet about it jeez
-
### Steps to reproduce
- Have a Rails app with Doorkeeper
- Create a custom model that'll replace Doorkeeper::Application
```ruby
# Class like this
class OauthApplication < ApplicationRecord
…
-
Redirects to published works from SS3 should (ideally) not 404.
## WDLL
* count links like `/concern/generic_works/[id]` and redirect with a 200
* count links like `/concern/generic_works/[id]`…
awead updated
3 years ago
-
**Describe the bug**
Run into namespacing error when trying to specify pundit role on array of AR records on argument for mutation. Given the following ruby:
```ruby
# frozen_string_literal: tr…
-
First off, thanks for `resque-retry`!
The "Retry" tab is not visible for me.
In `config/…
-
As described in #321, if a user has some custom DSL in their specs then a handful of cops produce false positives. For example
```ruby
RSpec.describe Authentication do
role :user do
it 'ac…