Issues
- 1
Abilities with accepts_nested_attributes
#774 opened by hidr0 - 12
Can't apply rules to `create` action without affecting `new` because of aliasing
#832 opened by durierem - 1
- 0
- 0
- 4
- 1
Extra table alias is being generated, but then ignored in the final stage of an accessible_by query
#827 opened by walterdavis - 4
Granting read permission on intermediate STI table prevents any records being returned
#810 opened by owst - 0
- 0
- 2
- 0
- 2
- 12
- 2
STI parent access denied after adding cannot on child
#768 opened by gryphon - 0
can? should return false when there are no attributes that the current user can perform action on
#816 opened by michaelcohenunsw - 1
`can?` unnecessarily loads relationships in memory when it could leverage `accessible_by`
#812 opened by oboxodo - 0
inconsistent behaviour with Hash subjects
#811 opened by christian-toscano - 1
- 1
- 0
- 1
cancancan is chaninging my get request ID
#803 opened by aamirk2244 - 1
Controller helper loads everything for show/edit
#746 opened by Sharparam - 0
Gemspec does not have Rails version dependency for various version of the gem
#802 opened by kiransajeev - 0
Nil values on enums fails to authorize
#800 opened by patodevilla - 3
Running dangerous :show permission when the resource name is passed and mismatch the controller name
#791 opened by enmanuelm19 - 0
- 2
RulesCompressor is too aggressive
#783 opened by c960657 - 5
ActiveRecord still used
#742 opened by brilnius - 2
Dynamically modify hash can ability
#710 opened by arthurwozniak - 10
Slowness with cancancan 3.2+
#716 opened by mathieujobin - 2
[BUG] Application crashes on Ruby 3
#770 opened by mike927 - 9
PG::UndefinedTable: ERROR: missing FROM-clause entry for table for Polymorphic Relationship
#696 opened by dalezak - 1
Change Authorization Model
#789 opened by danieljgp2 - 0
Extension: Multiple scoped rule definitions
#788 opened by Taeir - 0
- 1
:destroy ability seems to misbehave
#782 opened by stasou - 1
Cancancan Wiki is gone
#732 opened by hsonthach - 3
When authorize_resource is called before loading the instance, it grants access to unauthorized actions
#719 opened by duarme - 2
Upgrade from 2.x to 3.x Guide
#734 opened by bueti - 1
Working with large collections
#733 opened by dmke - 5
global access to an attribute appears to grant global access to the the object as well
#728 opened by nevinera - 7
Handling soft-deletes
#700 opened by gingerlime - 0
Override loading is not preventing CanCanCan from loading it again if the previous load was nil
#731 opened by pjmartorell - 0
Assign access permissions to a model according to the role of the current_user
#729 opened by francofer7 - 1
Version 3.2.2
#715 opened by reedstonefood - 7
load_and_authorize_resource is not working properly after a before_action find
#703 opened by Babbz75 - 0
Cannot use MySQL UUID through binary type
#690 opened by kaspernj - 3
- 0