Last Updated: February 25, 2016
·
2.517K
· brendon

Integrate Inherited Resources with Authority

#rails
#inherited_resources
#authority

Authority is a great authorisation framework for Rails apps. It's very simple by default but also copes well with more complicated scenarios. I strongly suggest you check it out.

Inherited Resources is also a great timesaver when your controllers mainly contain the boilerplate code that we've all come to know and love.

Here's how to get them to work together.

NOTE: This is a working document. As I write my app I'm sure this integration will become more complex, but for now it works well. Please let me know if you can see any room for enhancements. I'm also relying on ActiveSupport::Concern to simplify the module. I store my concerns in a directory called concerns under app. I've called this one inherited_resources_with_authority.rb and you may need to modify your autoload_paths in application.rb to load files from this folder.

module InheritedResourcesWithAuthority

    extend ActiveSupport::Concern

    included do
        inherit_resources
        authorize_actions_for :resource_class

        alias_method_chain :resource, :authority
        alias_method_chain :build_resource, :authority
        alias_method_chain :update_resource, :authority
    end

    protected

    def resource_with_authority
        resource_without_authority
        authorize_action_for(get_resource_ivar)
    end

    def build_resource_with_authority
        build_resource_without_authority
        authorize_action_for(get_resource_ivar)
    end

    def update_resource_with_authority(object, attributes)
        object.assign_attributes(*attributes)
        authorize_action_for(object)
        object.save
    end

end

We're basically chaining important inherited_resources' abstract methods and inserting our authorisation code where necessary. The last one is the trickiest as we can't call the original method that we're chaining on to so we have to duplicate some of inherited_resources' code here.

To use this concern simply call include InheritedResourcesWithAuthority from your controller.

Note that you must not use the class inheritance method of activating inherited_resources on your controller as we're already using the other method in this concern.

#rails
#inherited_resources
#authority

Written by Brendon Muir

Say Thanks
Respond

Related protips

Rails 4: How to partials & AJAX, dead easy

193.1K
27

Ruby on Rails 4 - Authentication with Facebook and OmniAuth.

100.7K
51

Open a rails form with Twitter Bootstrap modals

88.01K
19

Have a fresh tip? Share with Coderwall community!

Post
Post a tip
Best #Rails Authors
sebastialonso
225.2K
#rails
#CSS
#JavaScript
sergiotapia
142.8K
#rails
#Ruby
#Elixir
jamesdullaghan
91.03K
#rails
#JavaScript
#Ruby
edokun_
88.01K
#rails
#Ruby
#Python
rorykoehler
80.91K
#rails
#Postgres
#Coffeescript
Related Tags
#rails
#inherited_resources
#authority
Sponsored by
#native_company#
#native_desc#
#native_cta#
Filed Under
Ruby on Rails Development Tips
Awesome Job
See All Jobs
Post a job for only $299
Thanks to our sponsor
Sponsored by #native_company# — Learn More
#native_title# #native_desc#
#native_cta#