CanCanCommunity/cancancan

Issues

• Support Postgresql json/jsonb columns

  #875 opened a month ago by 23tux
  0

• inconsistent behaviour with Hash subjects

  #811 opened 2 years ago by christian-toscano
  1

• accessible_by permanently modifies a rule's conditions via normalize_conditions, causing can? to fail

  #876 opened a month ago by rockorequin
  0

• STI ability overwrites previously defined STI rules

  #874 opened a month ago by 23tux
  0

• Missing tag for version 3.6.1?

  #873 opened 2 months ago by fcheung
  0

• STI parent access denied after adding cannot on child

  #768 opened 3 years ago by gryphon
  3

• `can :create, Model` with association conditions and validations

  #870 opened 4 months ago by newfylox
  2

• Support loading resources from replica database with Rails 6.1 multi-database feature

  #868 opened 5 months ago by sunnybogawat
  0

• Index action can be configured with custom query params. but Rspec matcher only expect ClassName

  #867 opened 5 months ago by asad-ali-bhatti
  0

• Attributes are ignored for read actions in controller helpers

  #865 opened 5 months ago by afn
  0

• SQLite3::SQLException: no such column: teams_memberships.id (ActiveRecord::StatementInvalid)

  #861 opened 6 months ago by dominikb
  0

• Allow a user to change itself but not its role

  #857 opened 7 months ago by marino-mrc
  1

• Abilities with accepts_nested_attributes

  #774 opened 3 years ago by hidr0
  2

• Possible breaking change with handling of `nil` conditions in 3.5.0

  #821 opened 2 years ago by CJStadler
  2

• undefined method `filter_map' in RulesCompressor#simplify

  #851 opened 9 months ago by Svashta
  3

• Question: custom where_condition syntax on specific tables/columns

  #850 opened 9 months ago by Gbeschbacher
  1

• can? should return false when there are no attributes that the current user can perform action on

  #816 opened 2 years ago by michaelcohenunsw
  1

• Resource Loader gets ignored with Whitespace-Only ID in URL (e.g., "\n")

  #835 opened a year ago by Federico-G
  1

• Add own SQL strategy

  #844 opened 10 months ago by 23tux
  1

• Support Rails's `attribute` in Cancancan's `permitted_attributes`

  #838 opened 9 months ago by kalsan
  1

• Can't apply rules to `create` action without affecting `new` because of aliasing

  #832 opened a year ago by durierem
  13

• Authorisation of nested resource fails, if conditional cannot rule defined

  #848 opened 9 months ago by dmwtf
  0

• Multiple hash definitions results in invalid SQL

  #846 opened 10 months ago by afn
  0

• restricting associated records, does it work?

  #845 opened 10 months ago by acesuares
  2

• Creating resource failes when association is polymorphic and singleton.

  #830 opened 2 years ago by ccfz
  0

• Rules for STI subclasses apply to parent classes in accessible_by

  #771 opened 3 years ago by sam-carlberg
  4

• Extra table alias is being generated, but then ignored in the final stage of an accessible_by query

  #827 opened 2 years ago by walterdavis
  1

• Granting read permission on intermediate STI table prevents any records being returned

  #810 opened 2 years ago by owst
  4

• Why are merged rules still bound to the merged Ability class?

  #825 opened 2 years ago by niuage
  0

• How to define ability action name that is same as the default action aliases?

  #824 opened 2 years ago by s101d1
  0

• Association is renamed in SQL and results in unknown column error

  #790 opened 3 years ago by 23tux
  2

• STI normalizer fails when existing rule conditions are relation

  #794 opened 2 years ago by adzap
  2

• Polymorphic associations do not support computing the class

  #793 opened 2 years ago by chubchenko
  12

• `can?` unnecessarily loads relationships in memory when it could leverage `accessible_by`

  #812 opened 2 years ago by oboxodo
  1

• Selective permissions on STI sub-classes not respected by accessible_by

  #809 opened 2 years ago by owst
  1

• Deep conditions nesting on sqlite => stack overflow

  #805 opened 2 years ago by NikolaiKircher
  0

• cancancan is chaninging my get request ID

  #803 opened 2 years ago by aamirk2244
  1

• Controller helper loads everything for show/edit

  #746 opened 3 years ago by Sharparam
  1

• Gemspec does not have Rails version dependency for various version of the gem

  #802 opened 2 years ago by kiransajeev
  0

• Nil values on enums fails to authorize

  #800 opened 3 years ago by patodevilla
  0

• Running dangerous :show permission when the resource name is passed and mismatch the controller name

  #791 opened 3 years ago by enmanuelm19
  3

• undefined method `#{parent_name}=' for singleton associations

  #795 opened 3 years ago by heaven
  0

• RulesCompressor is too aggressive

  #783 opened 3 years ago by c960657
  2

• ActiveRecord still used

  #742 opened 3 years ago by brilnius
  5

• [BUG] Application crashes on Ruby 3

  #770 opened 3 years ago by mike927
  2

• Change Authorization Model

  #789 opened 3 years ago by danieljgp2
  1

• Extension: Multiple scoped rule definitions

  #788 opened 3 years ago by Taeir
  0

• authorize! no longer returns the authorized resource

  #787 opened 3 years ago by walterdavis
  0

• :destroy ability seems to misbehave

  #782 opened 3 years ago by stasou
  1

• Upgrade from 2.x to 3.x Guide

  #734 opened 3 years ago by bueti
  2