There is Cancancan, probably it would work with rails 4.2. It must be compatible with cancan, so it should be easy to adapt bridge to work with cancancan.
I don't know pundit but you could write a pundit bridge, similar to cancan one. Or you can use activescaffold security, creating authorized_for_action? instance and class methods in your models. El Martes, 6 de enero de 2015 10:10:26 Jean-Laurent Picard escribió: > Hi everybody, > > I began a project requiring a lot of CRUD operations on many interconnected > models (about 35 models now - still growing). > I made the first prototypes with AS (it's the first time I use AS), and it > works fantastically well. Congratulations and thanks, Sergio, for the > fantastic work. > > I'm now working trying to implement the security layer. It's going to be a > bit complex, with dynamic and fine-granularity authorization. > Cancan is not Rails 4.2 friendly, and it seems its development is now > halted. > Pundit is increasingly popular, and I'm interested on some of its concepts > (especially "Policy Scopes") but it seems that it's logic does not match > AS's security layer very well. And I can't find any evidence that anybody > used used Pundit with AS anywhere. > > So, three questions: > - How did you implement security with AS using Rails 4.2 ? > - Anybody had success using Pundit ? > - Any recommendation for fine-granularity authorization ? > > Thanks for your time, > Jean-Laurent -- You received this message because you are subscribed to the Google Groups "ActiveScaffold : Ruby on Rails Gem" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at http://groups.google.com/group/activescaffold. For more options, visit https://groups.google.com/d/optout.
