Comments for steffenbartsch http://steffenbartsch.com/blog Security, Usability, Rails Tue, 26 Apr 2011 13:05:27 +0000 hourly 1 http://wordpress.org/?v=3.1.2 Comment on Rails Authorization Plugins by vladimir prieto http://steffenbartsch.com/blog/2008/08/rails-authorization-plugins/comment-page-1/#comment-8127 vladimir prieto Tue, 26 Apr 2011 13:05:27 +0000 http://stffn.wordpress.com/?p=11#comment-8127 been checking one by one on the list, and the most part of it is outdated/left/does'nt exist. this list must definitely be updated! been checking one by one on the list, and the most part of it is outdated/left/does’nt exist.

this list must definitely be updated!

]]> Comment on Rails Authorization Plugins by Tilo http://steffenbartsch.com/blog/2008/08/rails-authorization-plugins/comment-page-1/#comment-8050 Tilo Sat, 16 Apr 2011 15:20:04 +0000 http://stffn.wordpress.com/?p=11#comment-8050 +1 for updating this really useful list, and adding Can Can :-) It would be good to provide an example or tutorial on how to integrate declarative_authorization with devise +1 for updating this really useful list, and adding Can Can :-)

It would be good to provide an example or tutorial on how to integrate declarative_authorization with devise

]]> Comment on Rails Authorization Plugins by sermojohn http://steffenbartsch.com/blog/2008/08/rails-authorization-plugins/comment-page-1/#comment-5558 sermojohn Mon, 06 Sep 2010 22:38:47 +0000 http://stffn.wordpress.com/?p=11#comment-5558 Hi, some people have asked for a plug-in that could keep the roles assignment in the database, so that the role management can be dynamically configured. Is anyone aware of a good plug-in that implements this requirement? Many thanx in advance! Hi,

some people have asked for a plug-in that could keep the roles assignment in the database, so that the role management can be dynamically configured. Is anyone aware of a good plug-in that implements this requirement?

Many thanx in advance!

]]> Comment on Rails Authorization Plugins by Julien Palmas http://steffenbartsch.com/blog/2008/08/rails-authorization-plugins/comment-page-1/#comment-5098 Julien Palmas Wed, 26 May 2010 13:12:05 +0000 http://stffn.wordpress.com/?p=11#comment-5098 Hi, Looks like you haven't added Cancan yet to your list. That would be a great plus to this already very good reference page. Thanks in advance ;-) Hi,

Looks like you haven’t added Cancan yet to your list.
That would be a great plus to this already very good reference page.

Thanks in advance ;-)

]]> Comment on declarative_authorization 0.4 by Steffen Bartsch http://steffenbartsch.com/blog/2009/11/declarative_authorization-0-4/comment-page-1/#comment-4807 Steffen Bartsch Thu, 15 Apr 2010 07:28:48 +0000 http://steffenbartsch.com/blog/?p=139#comment-4807 You are right. Now it's correct. You are right. Now it’s correct.

]]> Comment on declarative_authorization 0.4 by Matt Schick http://steffenbartsch.com/blog/2009/11/declarative_authorization-0-4/comment-page-1/#comment-4805 Matt Schick Thu, 15 Apr 2010 02:11:33 +0000 http://steffenbartsch.com/blog/?p=139#comment-4805 Not to nitpick, but you're missing a closing curly brace in your first example for your improved DSL, it should be as follows: has_permission_on :companies, :to => :read do if_attribute :branches => { :manager => { :last_name => is { user.last_name } } } if_permitted_to :read, :branches end Not to nitpick, but you’re missing a closing curly brace in your first example for your improved DSL, it should be as follows:

has_permission_on :companies, :to => :read do
if_attribute :branches => {
:manager => { :last_name => is { user.last_name } } }
if_permitted_to :read, :branches
end

]]> Comment on Rails Authorization Plugins by Choosing an authorization framework for rails « Jabberwocky http://steffenbartsch.com/blog/2008/08/rails-authorization-plugins/comment-page-1/#comment-4343 Choosing an authorization framework for rails « Jabberwocky Fri, 26 Feb 2010 19:40:08 +0000 http://stffn.wordpress.com/?p=11#comment-4343 [...] I’m aware there are quite a few other plugins out there. If you found another one and you’re very happy about it, please share. Tagged [...] [...] I’m aware there are quite a few other plugins out there. If you found another one and you’re very happy about it, please share. Tagged [...]

]]> Comment on Rails Authorization Plugins by Brad Langhorst http://steffenbartsch.com/blog/2008/08/rails-authorization-plugins/comment-page-1/#comment-4314 Brad Langhorst Wed, 24 Feb 2010 21:08:14 +0000 http://stffn.wordpress.com/?p=11#comment-4314 It seems that none of these plugins allow for dynamic permission setting (where an admin can grant permission on specific objects to roles in a live system). Did I miss something? Why not store the permissions in a table rather than in a file? It seems that none of these plugins allow for dynamic permission setting (where an admin can grant permission on specific objects to roles in a live system).

Did I miss something?

Why not store the permissions in a table rather than in a file?

]]> Comment on Rails Authorization Plugins by Luca B. http://steffenbartsch.com/blog/2008/08/rails-authorization-plugins/comment-page-1/#comment-4109 Luca B. Sat, 06 Feb 2010 20:46:26 +0000 http://stffn.wordpress.com/?p=11#comment-4109 + 1 for adding CanCan to the list: it is actually really usable, and could manage simple to complex scenarios (thank you, Ryan Bates) + 1 for adding CanCan to the list: it is actually really usable, and could manage simple to complex scenarios
(thank you, Ryan Bates)

]]> Comment on declarative_authorization 0.4 by Steffen Bartsch http://steffenbartsch.com/blog/2009/11/declarative_authorization-0-4/comment-page-1/#comment-3723 Steffen Bartsch Thu, 31 Dec 2009 09:32:44 +0000 http://steffenbartsch.com/blog/?p=139#comment-3723 For usage questions, please turn to the mailing list http://groups.google.com/group/declarative_authorization/ Actually, this should just work. Maybe you have an error elsewhere in your code. For usage questions, please turn to the mailing list http://groups.google.com/group/declarative_authorization/

Actually, this should just work. Maybe you have an error elsewhere in your code.

]]>