Add policies - Githubissues

C83 / THP_2.0

0 stars 0 forks source link

Add policies #24

Open C83 opened 6 years ago

C83 commented 6 years ago

Why ?

Because everyone isn't authorized to do everything.

Must have

[ ] Proper policies in place
[ ] The API must nicely answer with 401 when unauthorized

Todo

[ ] Add pundit gem
[ ] Write a policy so that only its creator can modify or delete a lesson
[ ] Test it :D