Fine grained Authorization within the Teams
Hi,
i want to have some fine grained authorization/access control within the members of my team.
For example, the first user who registers an account invites his team members and can give each team member access to content which only belongs to him. Like a coach can give only one team member access to a trainings or nutrition plan.
I looked into the Pundit Gem but as far as i understand it is more about grouping people and give the whole group access. But this makes no sense in this case, because everyone has different macros or workouts.
There is a possibility to creates Scopes but i havn't fully understand how this works. Maybe this approached is also a bit over the top, and it is easier with reference to the user_id or something.
Would be cool if someone can point me in the right direction with some documentation!
i want to have some fine grained authorization/access control within the members of my team.
For example, the first user who registers an account invites his team members and can give each team member access to content which only belongs to him. Like a coach can give only one team member access to a trainings or nutrition plan.
I looked into the Pundit Gem but as far as i understand it is more about grouping people and give the whole group access. But this makes no sense in this case, because everyone has different macros or workouts.
There is a possibility to creates Scopes but i havn't fully understand how this works. Maybe this approached is also a bit over the top, and it is easier with reference to the user_id or something.
Would be cool if someone can point me in the right direction with some documentation!
1) I have different roles, like admin, member, and viewer with different abilities to do things. Take viewers for example, for the team that they've been invited to, they can view assets, and they can like and comment on them. But they can't create any assets.
2) I have plans that I've created around the subscriptions, I was wondering if I could use pundit for this too. I don't quite understand Pundit's scopes here, but will look into these. It'd be helpful to hear what you did.
Thanks
Notifications
You’re not receiving notifications from this thread.