如何使用Pundit Gem检索所有用户策略和范围?我需要返回一个带有所有用户策略的json对象,以检查前端javascript模板中的权限。
使用CanCanCan gem,我可以执行以下操作:
class Ability
include CanCan::Ability
# ....
def to_list
rules.map do |rule|
object = { actions: rule.actions, subject: rule.subjects.map{ |s| s.is_a?(Symbol) ? s : s.name } }
object[:conditions] = rule.conditions unless rule.conditions.blank?
object[:inverted] = true unless rule.base_behavior
object
end
end
end
是否可以对Pundit做同样的事情?
答案 0 :(得分:2)
我有相同的要求,每次调查我得到以下代码:
def index
classes = [Admin, BusNumber, Ticket, :ticket_statistics]
permissions = { }
classes.each do |clazz|
policy = Pundit.policy(current_admin, clazz)
policy.public_methods(false).sort.each do |m|
result = policy.send m
permissions["#{clazz}.#{m}"] = result
end
end
render json: permissions
end
current_admin是获取当前登录用户的方法,代码给出以下结果
{
"Admin.create?": true,
"Admin.disable?": true,
"Admin.enable?": true,
"Admin.index?": true,
"Admin.show?": true,
"Admin.update?": true,
"BusNumber.create?": true,
"BusNumber.destroy?": true,
"BusNumber.index?": true,
"BusNumber.update?": true,
"Ticket.index?": true,
"Ticket.refund_by_admin?": true,
"Ticket.show?": true,
"ticket_statistics.overall?": true
}