Feedback from Anuj

[darth-dodo]

Check out policies for authorization instead of Permission/Role concept

• https://blog.eq8.eu/article/policy-object.html
• https://crypt.codemancers.com/posts/2018-07-29-leveraging-pundit/

Form objects versus Service objects

Check out Strategy pattern for DRYing up the toggle_favorite in the controllers given that a new behaviour is coming in the Account/Expense Log/Category