How can I design the app, so that any logged in user can edit/remove
his details only if he wishes to do so and can only view others'
I am trying to say that users should be recognized by his unique
username/email id and as per that he should be assigned the writing
privileges on his records only.
CanCan is probably the most popular access control solution for Rails. It
can easily accomplish what you describe, and more. It works fine with
Devise. You can probably do what you want with just Devise, but I would
really recommend CanCan - and it is really not that difficult to implement.
Here is a good rails cast for it: . There has
been a a lot of capability added since that was recorded, so be sure to
look at the latest release notes for CanCan on github.

You received this message because you are subscribed to the Google Groups "Ruby on Rails: Talk" group.
To view this discussion on the web visit
To post to this group, send email to
To unsubscribe from this group, send email to
For more options, visit this group at

Search Discussions

Discussion Posts


Related Discussions

Discussion Navigation
viewthread | post
posts ‹ prev | 3 of 3 | next ›
Discussion Overview
grouprubyonrails-talk @
postedFeb 7, '12 at 4:31p
activeFeb 9, '12 at 2:56a

3 users in discussion

Don: 1 post Pallav_bfs: 1 post Gerbdla: 1 post



site design / logo © 2022 Grokbase