Last Updated: February 25, 2016
·
569
· rafaelcgo

CanCan Checking Destroy Abilities

#ruby
#rails

Have you ever noticed that CanCan does not perform the ability check on the destroy action of the controllers, even if you authorize_resource ?

You need to add, inside your destroy action, an explicit authorization check, just like:

def destroy
  authorize! :destroy, @event
  ...
end

Check the link for more info:
https://github.com/ryanb/cancan/issues/626

#ruby
#rails

Written by Rafael Oliveira

Say Thanks
Respond

Related protips

Open a rails form with Twitter Bootstrap modals

87.7K
19

Rails - filter using join model on has_many through

63.86K
9

Documenting Rails-based REST API using Swagger UI

55.13K
5

Have a fresh tip? Share with Coderwall community!

Post
Post a tip
Best #Ruby Authors
projectcleverweb
287.6K
#ruby
#javascript
#css
danielwestendorf
161.7K
#ruby
#Javascript
#CoffeeScript
mcansky
137.1K
#ruby
#JavaScript
#Shell
knoopx
111.3K
#ruby
#JavaScript
#CoffeeScript
stevennunez
99.74K
#ruby
#JavaScript
#CoffeeScript
Related Tags
#ruby
#rails
Sponsored by
#native_company#
#native_desc#
#native_cta#
Filed Under
Ruby Development Tips
Ruby on Rails Development Tips
Awesome Job
See All Jobs
Post a job for only $299
Thanks to our sponsor
Sponsored by #native_company# — Learn More
#native_title# #native_desc#
#native_cta#