Currently, I have 3 models
User
Group
Permission
Users and Groups have a HABTM relationship and Groups and Permissions
have a HABTM relationship.
For purposes of authorization, I need to know if a user belongs to a
particular group that has a particlar permission to determine if they
can perform an operation.
What’s the best way to go about this?
On Tue, Apr 28, 2009 at 10:10 AM, DVG [email protected] wrote:
particular group that has a particlar permission to determine if they
can perform an operation.
Have the user ask its groups if any of them have the permission in
question:
target_permission = Permission.find(…)
user.groups.any? do |group|
group.permissions.include?(target_permission)}
end
This forum is not affiliated to the Ruby language, Ruby on Rails framework, nor any Ruby applications discussed here.
Sponsor our Newsletter | Privacy Policy | Terms of Service | Remote Ruby Jobs