ruby on rails - Allowing additional parameters for admin accounts -


I have many models in which the normal user should not be able to change, but administrators should (for example) This is not my problem domain), normal users should not be able to change the post ' user_id , but administrators should be allowed to do this. / P>

It is very easy to handle at the view level - I can show the field whether a user is a administrator or not - but I am not sure how to control it in the strong parameter handling of the controller. The only solution I can come up with (and the solution), repeat yourself again, you try not to put in the train: 

  def post_params If the administrator? Params.require (: post) .permit (: title ,: text ,: date ,: user_id) Other parameters.Require (: post) .permit (: title,: text, date) end end   
 Is this a better way to handle?

I do not think anything wrong with your current implementation being said that, if you have a different If you want to reuse these attribute permissions in the Controller (such as an API :: Post Controller), one of the methods would be to subtly put the code in its class. This approach is used in Ryan Bates ( Note: Pro Account Required ). 

  # app / model / permission_update RB category permit & lt; Struct.new (: params, user) def post if user & amp; Amp; User.admin? Params.require (: post) .permit (: title,: text, date ,: user_id) Other parameters. You request this code to be  ApplicationController  
 
 
 >  # app / controllers / application_controller.rb def can get the permission from the inside of the institute.

And then use it in any controller where you need permission logic without repeating the argument. 

  # app / controller /posts_controller.rb def update @ post = post.fund (params [: id]) if @ post.update_attributes (permission_update.log) ... and ... What's the best thing about this solution is that you want to modify it by modifying the  allowed  class to dry your thoughts Can also be used. 
 
  # app / models / allowed_params.rb Class Permission Perm & lt; Struct.new (Parameters, User) DRF Post Params.Require (Post). Permit (* Post_Aditbut) and Diff Post_Attags if user & amp; Amp; User.admin? [: Title, Text, Date ,: user_id] and [: title,: text, date] end end end  
 
 and  permission_pagues  As a visual assistant 
 
  # app / controller / application_controller.rb def permissionPermate @ permited_prem = = Permitted Perm New (Parameters, Current_user) End Assistant: Method: Permission_param  
 
 Finally, use it to show / hide the form field within your view. 
 
  # app / views / posts / edit.html.erb & lt;% If Permission is granted then para_key: User_id% & gt; # User_id field & lt;% end% & gt; Show

Comments

Post a Comment

Popular posts from this blog

python - Overriding the save method in Django ModelForm -

I'm having trouble overriding a ModelForm save method. I get this error I'm: Exception type: TypeErier Exception Value: Save () found an unexpected keyword argument 'committed' My intentions include a form 3 fields Submit several values ​​for, then create an object for each combination of those areas, and to save each object file models.py class collarsult type (models.Model): id = model. AutoField (db_column = 'icontact_result_code_type_id', primary_key = true) callResult = models.ForeignKey ( 'CallResult', db_column = 'icontact_result_code_id') campaign = models.ForeignKey ( 'campaign', db_column = 'icampaign_id') CALLTYPE = models.ForeignKey ( 'CALLTYPE', db_column = 'icall_type_id') agent = models.BooleanField (db_column = 'bagent', default = true) teamLeader = models.BooleanField (db_column = 'bTeamLeader', default = true) active = models.BooleanField (db_column = Django.form...
Read more

html - CSS autoheight, but fit content to height of div -

I have a div in which there are three children- div in the left and middle div: float: left while true: float: true because it is my layout Actually will spoil, I've used ClearFix Hack: .cf {zoom: 1; }. Cf: First,. Cf: {content: ""; Display: Table; }. Cf: After {clear: both; } It still works, but I want to be the right div an indicator. So it should fill 100% of the parent unit of height. How can I complete this? PS is the full code: & Lt; / Div & gt; & Lt; Div class = "mobile_content" & gt; & Lt; H5 & gt; {{Data.titel}} & lt; / H5> & Lt; Table & gt; & Lt; TR & gt; & Lt; Th & gt; Komponist: & lt; / Th & gt; & Lt; TD & gt; {{Data.komponist}} & lt; / TD & gt; & Lt; / TR & gt; & Lt; TR & gt; & Lt; Th & gt; Instrument: & lt; / Th & gt; & Lt; TD & gt; {{Data.instrumente}} & lt; / TD & gt; & Lt; / TR & gt;...
Read more

qt - How to prevent QAudioInput from automatically boosting the master volume to 100%? -

I have been trying to use Qt5 multimedia to record audio with QAudioInput, however, when I see If QAudioInput is started, it increases the master volume of my sound device to 100%. How can I prevent QAudioInput from changing the master volume? My current development platform is Linux with PalsAdio (with flat audio disabled). How can I use QAudioInput : QAudioDeviceInfo device_info = QAudioDeviceInfo :: defaultInputDevice (); QAudio format format; Format.setSampleRate (44100); Format.setChannelCount (1); Format.setSampleSize (16); Format.setCodec ("Audio / PCM"); Format.setSampleType (QAudioFormat :: SignedInt); Format.setByteOrder (QAudioFormat :: LittleEndian); Std :: cout & lt; & Lt; Device_info.deviceName (). ToUtf8 (). ConstData () & lt; & Lt; Std :: endl; QAudioInput * default_device = new QAudioInput (device_info, format); QIODevice * default_io_device = default_device-> Start (); a QAudioInput.setVolume () method is not you I ...
Read more