Authorisation with Pundit

Posted by Denny at 21:06 on Tue, 10 Dec 2019

I got a solid start on the authorisation/ACL code merged in today, between Pundit-powered authorisation for admin controllers and Pundit tweaks.

I did look at CanCanCan too, which seems like the slightly more popular choice, but that research confirmed the impression I'd got from working with each of them briefly before - Pundit's approach to things just seems to make more sense to me. It feels more explicit - less 'magicky' - and I'd really like to feel like I have a reasonable grasp on how my auth code is working :) So, Pundit it is!

Tags: pundit auth authorisation authorization cancancan acl admin area

« Store user profile pics on AWS S3 Bump All The Things! »


No comments found