ruby on rails - Filtering archives with access groups with cancancan -


the user log in , able access archive if group user can view archive. archive can viewed many groups. groups , users compose them, determined administrator. how see if logged in user can see archive?

i'm using cancancan gem use skill, tried filter this:

can :read, archive, group: {id: user.group_ids} can :read, archive, group: {archive.joins(:groups).ids} can :read, archive, id: {archive.joins(:groups).ids} can :read, archive, id => {archive.joins(:groups).ids} can :read, archive, :id => {archive.where(group_user:(id: user.group_ids).pluck(:id))} can :read, archive, :group_users {:id => user.group_user_ids }     module ability      can :read, archive |a|        a.archive_group.include?(user.archive_group)      end    end

but none of above succeeded.

my schema:

  create_table "archives", force: :cascade |t|     t.string   "name"     t.datetime "created_at", null: false     t.datetime "updated_at", null: false   end    create_table "archives_groups", id: false, force: :cascade |t|     t.integer "archive_id", null: false     t.integer "group_id",   null: false   end    create_table "groups", force: :cascade |t|     t.string   "name"     t.datetime "created_at", null: false     t.datetime "updated_at", null: false   end    create_table "groups_users", id: false, force: :cascade |t|     t.integer "group_id", null: false     t.integer "user_id",  null: false   end    create_table "users", force: :cascade |t|     t.string   "name"     t.integer  "kind"     t.datetime "created_at", null: false     t.datetime "updated_at", null: false   end

models:

class user < activerecord::base   # include default devise modules. others available are:   # :confirmable, :lockable, :timeoutable , :omniauthable   devise :database_authenticatable, :registerable,          :recoverable, :rememberable, :trackable, :validatable     enum kind: [:admin, :user]     has_and_belongs_to_many :groups end  class group < activerecord::base     has_and_belongs_to_many :users     has_and_belongs_to_many :archives end  class archive < activerecord::base     has_and_belongs_to_many :groups end

for ability.rb can use if , call methods model (user)

class ability   include cancan::ability    def initialize(user)     if user       can :read, archive if user.has_group_membership?(:id)     end   end end

inside user.rb, create method archive_id params, compare loop if user group ids archive id

def has_group_membership?(archive_id)   token = false   @archive = archive.find(archive_id)   self.groups.each |group|     # loop group user has      @archive.groups.each |ar_group|       # loop group archive has       if group.name.to_sym == ar_group.name.to_sym         # compare symbol (faster string)         token = true         break       end     end   end   return token end

Comments

Post a Comment

Popular posts from this blog

python - Selenium remoteWebDriver (& SauceLabs) Firefox moseMoveTo action exception -

while performing simple hover test on firefox through selenium (3.4.0) python bindings (3.4.3) using of available os in saucelabs (except linux, latest available firefox version old), performing following actionchain: hover = actionchains(driver) hover.move_to_element(elm_men_menu).perform() it throws following error: taceback: file [...] in testhover hover.perform() file "/usr/local/lib/python2.7/dist-packages/selenium/webdriver/common/action_chains.py", line 80, in perform action() file "/usr/local/lib/python2.7/dist-packages/selenium/webdriver/common/action_chains.py", line 290, in <lambda> command.move_to, {'element': to_element.id})) file "/usr/local/lib/python2.7/dist-packages/selenium/webdriver/remote/webdriver.py", line 256, in execute self.error_handler.check_response(response) file "/usr/local/lib/python2.7/...
Read more

html - How to custom Bootstrap grid height? -

why bootstrap grid has height 591.067 ? did height came ? .main-post { padding: 20px; background-color: #fff; border: 1px solid #d8d8d8; margin-bottom: 100px; } .main-post .post-categories { margin-bottom: 10px } .main-post h3 { margin: 0 0 10px; color: #777; letter-spacing: -1px; font-weight: bold } .main-post .post-author, .main-post .post-date, .main-post .post-comments { font-size: 12px } .main-post img { display: block; margin: 10px 0; } .main-post .post-summary { line-height: 1.7; color: #888 } .main-post { color: #999 } <div class="col-sm-6"> <div class="main-post"> <h3 class="post-title"> <a href="#"> post title </a> </...
Read more

transpose - Maple isnt executing function but prints function term -

im using maple im in worksheetmode tried using maple input , 2d input , want transpose matrix a: := `<|>`(`<,>`(1, .5, -2), `<,>`(.5, 9/4+b, 5+3*b), `<,>`(-2, 5+3*b, 18+9*b+4*a)); b:= transpose(a); when exectute sheet dont translated values, there same input. matrix looks same input matrix plus function term. you can see picture in following link: why arent functions executed? meanwhile b:=a^+ doing right way , transposed matrix. other functions return function body instead needed values... if using 2d input mode (the default) space you've got between transpose , bracketed (b) interpreted multiplcation. rid of such space. also, either load package @ start of document like, with(linearalgebra): before calling transpose command package, or call it's full name like, linearalgebra:-transpose(b);
Read more