Conditional CanCanCan Abilities
I have a ClientServer that has many ClientApplications. I want users to only be able to destroy Servers that are associated with them. Every ClientApplication object has an application_owner_email that is matched against the current_user. If the emails match, they should have destroy permission for the associated Server.
In the abilities.rb, I have the following
if user.has_role?(:application_owner)
can :destroy, ClientServer.all.each do |server|
server.client_applications.each do |app|
app.application_owner_email == user.email
end
end
But this isn't working. I have set up similar conditions. For instance, the below condition works fine:
can :destroy, ClientApplication.all.each do |app|
app.application_owner_email == user.email
end
A user can only destroy ClientApplications where they are the application_owner.
Any help on this would be appreciated.
ruby-on-rails ruby cancancan
asked Nov 12 at 17:43
Coder_Nick
160111
add a comment |
I have a ClientServer that has many ClientApplications. I want users to only be able to destroy Servers that are associated with them. Every ClientApplication object has an application_owner_email that is matched against the current_user. If the emails match, they should have destroy permission for the associated Server.
In the abilities.rb, I have the following
if user.has_role?(:application_owner)
can :destroy, ClientServer.all.each do |server|
server.client_applications.each do |app|
app.application_owner_email == user.email
end
end
But this isn't working. I have set up similar conditions. For instance, the below condition works fine:
can :destroy, ClientApplication.all.each do |app|
app.application_owner_email == user.email
end
A user can only destroy ClientApplications where they are the application_owner.
Any help on this would be appreciated.
ruby-on-rails ruby cancancan
asked Nov 12 at 17:43
Coder_Nick
160111
Do you mean that user can destroy a server if all applications on thatserverare owned by them?
– Vasfed
Nov 12 at 17:54
add a comment |
I have a ClientServer that has many ClientApplications. I want users to only be able to destroy Servers that are associated with them. Every ClientApplication object has an application_owner_email that is matched against the current_user. If the emails match, they should have destroy permission for the associated Server.
In the abilities.rb, I have the following
if user.has_role?(:application_owner)
can :destroy, ClientServer.all.each do |server|
server.client_applications.each do |app|
app.application_owner_email == user.email
end
end
But this isn't working. I have set up similar conditions. For instance, the below condition works fine:
can :destroy, ClientApplication.all.each do |app|
app.application_owner_email == user.email
end
A user can only destroy ClientApplications where they are the application_owner.
Any help on this would be appreciated.
ruby-on-rails ruby cancancan
asked Nov 12 at 17:43
Coder_Nick
160111
I have a ClientServer that has many ClientApplications. I want users to only be able to destroy Servers that are associated with them. Every ClientApplication object has an application_owner_email that is matched against the current_user. If the emails match, they should have destroy permission for the associated Server.
In the abilities.rb, I have the following
if user.has_role?(:application_owner)
can :destroy, ClientServer.all.each do |server|
server.client_applications.each do |app|
app.application_owner_email == user.email
end
end
But this isn't working. I have set up similar conditions. For instance, the below condition works fine:
can :destroy, ClientApplication.all.each do |app|
app.application_owner_email == user.email
end
A user can only destroy ClientApplications where they are the application_owner.
Any help on this would be appreciated.
ruby-on-rails ruby cancancan
ruby-on-rails ruby cancancan
asked Nov 12 at 17:43
Coder_Nick
160111
asked Nov 12 at 17:43
Coder_Nick
160111
edited Nov 12 at 17:56
asked Nov 12 at 17:43
Coder_Nick
160111
asked Nov 12 at 17:43
Coder_Nick
160111
asked Nov 12 at 17:43
Coder_Nick
160111
160111
Do you mean that user can destroy a server if all applications on thatserverare owned by them?
– Vasfed
Nov 12 at 17:54
add a comment |
Do you mean that user can destroy a server if all applications on thatserverare owned by them?
– Vasfed
Nov 12 at 17:54
Do you mean that user can destroy a server if all applications on that
server are owned by them?– Vasfed
Nov 12 at 17:54
Do you mean that user can destroy a server if all applications on that
server are owned by them?– Vasfed
Nov 12 at 17:54
add a comment |
1 Answer
1
active
oldest
votes
Enumerable#each returns object self, you probably want .all? or .any?:
can :destroy, ClientServer do |server|
server.client_applications.all?{|app| app.application_owner_email == user.email }
end
Note that all? returns true for empty array.
Also note that abilities with blocks cannot generate scopes and are usually slower.
answered Nov 12 at 17:59
Vasfed
7,940102633
add a comment |
Your Answer
StackExchange.ifUsing("editor", function () {
StackExchange.using("externalEditor", function () {
StackExchange.using("snippets", function () {
StackExchange.snippets.init();
});
});
}, "code-snippets");
StackExchange.ready(function() {
var channelOptions = {
tags: "".split(" "),
id: "1"
};
initTagRenderer("".split(" "), "".split(" "), channelOptions);
StackExchange.using("externalEditor", function() {
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled) {
StackExchange.using("snippets", function() {
createEditor();
});
}
else {
createEditor();
}
});
function createEditor() {
StackExchange.prepareEditor({
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: true,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: 10,
bindNavPrevention: true,
postfix: "",
imageUploader: {
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
},
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
});
}
});
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fstackoverflow.com%2fquestions%2f53267426%2fconditional-cancancan-abilities%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
1 Answer
1
active
oldest
votes
1 Answer
1
active
oldest
votes
active
oldest
votes
active
oldest
votes
Enumerable#each returns object self, you probably want .all? or .any?:
can :destroy, ClientServer do |server|
server.client_applications.all?{|app| app.application_owner_email == user.email }
end
Note that all? returns true for empty array.
Also note that abilities with blocks cannot generate scopes and are usually slower.
answered Nov 12 at 17:59
Vasfed
7,940102633
add a comment |
Enumerable#each returns object self, you probably want .all? or .any?:
can :destroy, ClientServer do |server|
server.client_applications.all?{|app| app.application_owner_email == user.email }
end
Note that all? returns true for empty array.
Also note that abilities with blocks cannot generate scopes and are usually slower.
answered Nov 12 at 17:59
Vasfed
7,940102633
add a comment |
Enumerable#each returns object self, you probably want .all? or .any?:
can :destroy, ClientServer do |server|
server.client_applications.all?{|app| app.application_owner_email == user.email }
end
Note that all? returns true for empty array.
Also note that abilities with blocks cannot generate scopes and are usually slower.
answered Nov 12 at 17:59
Vasfed
7,940102633
Enumerable#each returns object self, you probably want .all? or .any?:
can :destroy, ClientServer do |server|
server.client_applications.all?{|app| app.application_owner_email == user.email }
end
Note that all? returns true for empty array.
Also note that abilities with blocks cannot generate scopes and are usually slower.
answered Nov 12 at 17:59
Vasfed
7,940102633
answered Nov 12 at 17:59
Vasfed
7,940102633
answered Nov 12 at 17:59
Vasfed
7,940102633
answered Nov 12 at 17:59
Vasfed
7,940102633
7,940102633
add a comment |
add a comment |
Thanks for contributing an answer to Stack Overflow!
- Please be sure to answer the question. Provide details and share your research!
But avoid …
- Asking for help, clarification, or responding to other answers.
- Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
Some of your past answers have not been well-received, and you're in danger of being blocked from answering.
Please pay close attention to the following guidance:
- Please be sure to answer the question. Provide details and share your research!
But avoid …
- Asking for help, clarification, or responding to other answers.
- Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fstackoverflow.com%2fquestions%2f53267426%2fconditional-cancancan-abilities%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Do you mean that user can destroy a server if all applications on that
serverare owned by them?– Vasfed
Nov 12 at 17:54