Bug related to :manage and using multiple operations in permission definition

Question

Bug related to :manage and using multiple operations in permission definition

vittorius opened this issue 9 years ago · 4 comments

Hey there. I've spotted a couple of cases where behavior doesn't seem logical:

role :admin, proc { |user| user.admin? } do
  can :manage, Merchant # can? :edit @merchant is AccessDenied, :read is OK
end

role :admin, proc { |user| user.admin? } do
  can [:manage], Merchant # can? :edit @merchant is AccessDenied, :read is AccessDenied
end

role :admin, proc { |user| user.admin? } do
  can [:manage, :edit], Merchant # can? :edit @merchant is AccessDenied, :read is AccessDenied
end

❓ ❓ ❓

Answer 1 · 2015-12-04T10:47:26.000Z

can :manage is only a shortcut right now, it doesn't work with other attributes or inside an array, but this is worth improving so your examples can work, too :)

Answer 2 · 2015-12-04T10:48:01.000Z

role :admin, proc { |user| user.admin? } do
  can :manage, Merchant # can? :read @merchant is OK
  can :edit, Merchant # can? :edit @merchant is OK
end

Answer 3 · 2015-12-04T10:48:26.000Z

OK, will take into account. I'm your beta tester for today 😄

Answer 4 · 2015-12-04T10:48:48.000Z

Yeah, see this: https://github.com/chaps-io/access-granted/blob/master/lib/access-granted/role.rb#L71-L75

So when you provide other permissions in separate can calls it will work :)

OK, will take into account. I'm your beta tester for today 😄

I appreciate that! :D