h00s
Reputation: 109
CanCan, defining abilites with deeply nested resources
I have problem with defining abilites when resources are deeply nested. I have these classes: Teacher, Division, Student, Absence and User (Teacher and Student belongs to Devise User model):
#Teacher
has_many :divisions
#Division
belongs_to :teacher
#Student
belongs_to :division
has_many :absences
#Absence
belongs_to :student
There is no problem when I want to ensure that Teacher can manage only Students that belongs to his division:
#This works
if user.teacher?
can :manage, Student, division: { teacher_id: user.teacher.id }
end
Problem occurrs when I want to ensure that Teacher can manage Absences that belongs to Students from his divisions:
#This doesn't work and returns PG::Error: ERROR: column students.divisions does not exist
can :manage, Absence, student: { division: { teacher_id: user.teacher.id } }
Any suggestions for defining ability for this nested resources?
Upvotes: 1
Views: 278
Answers (1)
pclowser
Reputation: 36
This should work:
if user.teacher?
can :manage, Absence do |absence|
absence.student.division.teacher_id == user.teacher.id
end
end
The cancan wiki: Defining Abilities with Blocks
Upvotes: 2
Related Questions
- Is there any way to access the parent object in a Cancan nested resource ability?
- How to work with optionally nested resources and cancan?
- Rails 3 CanCan nested Resources
- Inherited Resources and CanCan 3 levels nesting
- CanCan gem with nested resources and :find_by
- CanCan, nested resources and using methods
- CanCan deeply nested resources
- CanCan, setting up a nested resource?
- CanCan - How to correctly set a nested resource ability
- Rails cancan authorizing nested resources