Solved

CanCan plugin

Posted on 2010-11-25
7
934 Views
Last Modified: 2012-05-10
Hi,

  I am using the Can Can plugin and if you are familiar with it perhaps you can help me.
  I need to create this class Ability. The Ability class has the initialize method and I'd like to add a new parameter there.
  This parameters doesn't come and perhaps somebody could help me.
  Here is the plugin: https://github.com/ryanb/cancan

class Ability
  include CanCan::Ability

  def initialize(user, user_role)
    case (user_role)
      when 1: # administrator
        can :manage, :all
      when 2: # presbyter
        can :read, :all
      when 3: # secretary
        can :read, :all
      when 4: # area_pastor
        can :read, :all
      when 5: # coordinator
        can :read, :all
      when 6: # supervisor
        can :read, :all
      when 7: # leader
        can :read, :all
      when 8: # member
        can :read, :all
      when 9: # frequenter
        can :read, :all      
      else
        # guest user, what TODO ??
    end
  end
end

Open in new window



and I am calling like this:
        <% if can? :update, ConfigMaster, current_user_role %>
        ...
       <% end %>

Open in new window

0
Comment
Question by:lusfernandos
  • 4
  • 3
7 Comments
 
LVL 12

Accepted Solution

by:
JESii earned 500 total points
ID: 34215427
You may be able to override the definition of initialize as you did, but that's only half the problem. You also have to find where the Ability class instance is created (with the Ability.new expression) and change those as well.

For example, in lines 276-278 of the file cancan/lib/cancan/controller_additions.rb a new Ability instance is created and there is only one parameter there.

You may be able to solve this problem by leaving only a single parameter but attaching your roles to the user instance, so that you can reference user.user_role
#Code from lines 276-278 of cancan/lib/cancan/controller_additions.rb
    def current_ability
      @current_ability ||= ::Ability.new(current_user)
    end

Open in new window

0
 
LVL 2

Author Comment

by:lusfernandos
ID: 34217156
Hi JESii,

  Thanks for your answer. I thought I could do something without changing the plugin/gem. Thinking this way your second suggestion would be perfect, however I did tried sometime back adding an attribute to User, but I wasn't able to ( I am new to Rails ...).
  I am using the authlogic for authenticating the user, so I need to know the exact place to add this attribute. I am thinking about
1) Add a new virtual attribute to User class
2) When the user log in I need to update  that information.
  def current_user
    return @current_user if defined?(@current_user)
    @current_user = current_user_session && current_user_session.record
  end

  Can you point me to the right direction? Thanks a lot
0
 
LVL 2

Author Comment

by:lusfernandos
ID: 34217367
Just to add more information about what I am trying to accomplish.
First my login screen has the fields: user, password and role. This means that a user can have several role, however it will login as a specific role.
The role that the user is logged in needs to be checked in the CanCan and now I need to have it saved somehow to my User Model.
This role is just related to the current session, so I believe I just need to add a virtual attribute, I don't actually need to save this info to the database (right?)
Currently I am storing the current_user_role in the session ...
  def current_user_role=(user_role)
    logger.debug "current_user_role (set) --> = #{user_role}"
    session[:user_role] = user_role
    @current_user_role = user_role
    logger.debug "current_user_role (set) #{session[:user_role]}<--"
  end

Open in new window

Hopefully now it is more clear ...
0
Gigs: Get Your Project Delivered by an Expert

Select from freelancers specializing in everything from database administration to programming, who have proven themselves as experts in their field. Hire the best, collaborate easily, pay securely and get projects done right.

 
LVL 12

Expert Comment

by:JESii
ID: 34217951
I don't have a specific answer off the top of my head, but here are some thoughts that might be of help to you.

I've used AuthLogic, but always had problems extending it or getting it to play nice with other things I needed to do. I'm going to try Devise on my next project as I hear it's easier to work with: https://github.com/plataformatec/devise

For AuthLogic & CanCan, I've found the following which might help.

1. https://github.com/rainly/authcan_easyroller#readme  - has combined AuthLogic, CanCan, and EasyRoles into a single engine that you can install that seems to have everything you need

2. http://www.agileweboperations.com/role-based-permissions-for-your-ruby-on-rails-application - Is a gem to do authentication and authorization

3. http://www.aeonscope.net/2010/09/21/authlogic-template-100/ - has a basic Rails application template that includes AuthLogic, CanCan and other basic components
0
 
LVL 2

Author Closing Comment

by:lusfernandos
ID: 34232574
I was able to add the user_role to the Users model.
0
 
LVL 12

Expert Comment

by:JESii
ID: 34232911
Good, lusfernandos... glad that worked out; that's pretty much the standard way to handle a situation like this. And thanks for the points!
0
 
LVL 2

Author Comment

by:lusfernandos
ID: 34232956
Thanks, Hope that you help me next time as well :)
0

Featured Post

Live: Real-Time Solutions, Start Here

Receive instant 1:1 support from technology experts, using our real-time conversation and whiteboard interface. Your first 5 minutes are always free.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
website framework question 2 397
E-commerce system. How do I add credit card? Does Visa prorvide a API? 4 419
Learning Ruby - write data to postgreSQL 2 421
Rails URL Rewrite 1 417
In Ruby, Call or invoke a API DLL library is easily via Win32API class, win32-api gem or other gems. For general DLL API call, there are quite a few references, some good tips list below: http://www.rubytips.org/2008/05/13/accessing-windows-api-fro…
Recently I spent hours debugging an issue in a Rails project where ActiveRecord was causing MySQL errors trying to create a User object of a class at the top level of a Single Table Inheritance model structure.  It turns out `.create` behaves differ…
This Micro Tutorial demonstrates using Microsoft Excel pivot tables, how to reverse engineer competitors' marketing strategies through backlinks.
Nobody understands Phishing better than an anti-spam company. That’s why we are providing Phishing Awareness Training to our customers. According to a report by Verizon, only 3% of targeted users report malicious emails to management. With compan…

785 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question