You could combine Ezra’s acl plugin with the new Edge Rails nested
accomplish this. How is left as an exercise for the reader.
You can learn more about the acl plugin here:
and the nested scope stuff here:
[mailto:firstname.lastname@example.org] On Behalf Of Larry W.
Sent: Saturday, March 04, 2006 6:07 AM
Subject: [Rails] authorization framework?
There are a number of good authentication frameworks for rails - has
developed a generic authorization framework?
I’m thinking of something that included the concept of roles, mapped
to both actions and users and could be used to wrap actions before their
Extra good would be some way to check data permissions (as in, “yes you
perform the ‘Edit Dog’ action but only for beagles and chessies”), but i
don’t know if it’s possible to do that well in a general way.