http://blog.wolfman.com/articles/2006/05/20/role-based-authentication-admin-page en-us 40 A programmers Blog about Ruby, Rails and a few other issues <p>This is an example of an admin page for the Rails Recipes book Role Based Authentication, using a tree control and checkboxes for HABTM.</p> <p>I used the <a href="http://www.silverstripe.com/downloads/tree/">Silverstripe tree control</a> to render two trees, on the left a list of all Roles and what Rights they have. On the right a tree with all controllers and a checkbox for each action for each controller, under that a set of checkboxes that allow you to apply the selected rights to the selected Roles.</p> <p>This technique seems a good match where the lists are hierarchical so it can cut down on the screen real-estate for very large lists.</p> <p>Example code...</p> <p>In the model:</p> <ul> <li>The Rights class has_and_belongs_to_many :roles</li> <li>The Roles class has_and_belongs_to_many :rights</li> </ul> <p>I setup the data by creating hashes in the controller which are available to the view...</p> <p>In roles_controller.rb...</p> <div class="typocode"><pre><code class="typocode_ruby "><span class="keyword">def </span><span class="method">edit</span> <span class="comment"># roll everything up into a hierarchical tree structure</span> <span class="comment"># top level is hash of roles</span> <span class="comment"># next level is hash of permissions with controller as key and array of actions as value</span> <span class="attribute">@role_tree</span><span class="punct">=</span> <span class="punct">{}</span> <span class="ident">roles</span><span class="punct">=</span> <span class="constant">Role</span><span class="punct">.</span><span class="ident">find_all</span> <span class="ident">roles</span><span class="punct">.</span><span class="ident">each</span> <span class="keyword">do</span> <span class="punct">|</span><span class="ident">r</span><span class="punct">|</span> <span class="ident">ph</span><span class="punct">=</span> <span class="punct">{}</span> <span class="ident">rights</span><span class="punct">=</span> <span class="ident">r</span><span class="punct">.</span><span class="ident">rights</span> <span class="ident">rights</span><span class="punct">.</span><span class="ident">each</span> <span class="keyword">do</span> <span class="punct">|</span><span class="ident">p</span><span class="punct">|</span> <span class="ident">ph</span><span class="punct">[</span><span class="ident">p</span><span class="punct">.</span><span class="ident">controller</span><span class="punct">]</span> <span class="punct">||=</span> <span class="punct">[]</span> <span class="ident">ph</span><span class="punct">[</span><span class="ident">p</span><span class="punct">.</span><span class="ident">controller</span><span class="punct">]</span> <span class="punct">&lt;&lt;</span> <span class="ident">p</span><span class="punct">.</span><span class="ident">action</span> <span class="keyword">end</span> <span class="attribute">@role_tree</span><span class="punct">[</span><span class="ident">r</span><span class="punct">.</span><span class="ident">name</span><span class="punct">]</span> <span class="punct">=</span> <span class="ident">ph</span> <span class="keyword">end</span> <span class="comment"># creates a tree of controllers with the actions for each controller</span> <span class="comment"># top level is hash of controllers</span> <span class="comment"># next level is an array of actions</span> <span class="attribute">@rights_tree</span><span class="punct">=</span> <span class="punct">{}</span> <span class="ident">rights</span><span class="punct">=</span> <span class="constant">Right</span><span class="punct">.</span><span class="ident">find_all</span> <span class="ident">rights</span><span class="punct">.</span><span class="ident">each</span> <span class="keyword">do</span> <span class="punct">|</span><span class="ident">r</span><span class="punct">|</span> <span class="ident">name</span><span class="punct">=</span> <span class="ident">r</span><span class="punct">.</span><span class="ident">controller</span> <span class="attribute">@rights_tree</span><span class="punct">[</span><span class="ident">name</span><span class="punct">]</span> <span class="punct">||=</span> <span class="punct">[]</span> <span class="attribute">@rights_tree</span><span class="punct">[</span><span class="ident">name</span><span class="punct">]</span> <span class="punct">&lt;&lt;</span> <span class="ident">r</span><span class="punct">.</span><span class="ident">action</span> <span class="keyword">end</span> <span class="keyword">end</span></code></pre></div> <p>The view (edit.rhtml) is simple... </p> <pre><code>&lt;h1&gt;Role and Rights Editor&lt;/h1&gt; &lt;table cellspacing="10" cellpadding="20%"&gt; &lt;tr&gt; &lt;th align="left"&gt;Roles&lt;/th&gt; &lt;th align="left"&gt;Rights&lt;/th&gt; &lt;tr&gt; &lt;td valign="top"&gt;&lt;%= render_role_tree(@role_tree) %&gt;&lt;/td&gt; &lt;td&gt;&lt;%= start_form_tag :action =&gt; 'edit' %&gt; &lt;%= render_rights_tree(@rights_tree) %&gt; &lt;p&gt; The checked items above will replace the Rights of the following Roles:&lt;br&gt; &lt;% @role_tree.each_key do |role| %&gt; &lt;%= check_box_tag "role", role %&gt; &lt;%= role %&gt; &lt;% end %&gt; &lt;p&gt; &lt;%= submit_tag "Allocate to selected Roles" %&gt; &lt;%= end_form_tag %&gt; &lt;/td&gt; &lt;/table&gt; </code></pre> <p>This part goes in helpers, and creates the html for the two trees this is specific for the silverstripe tree control...</p> <div class="typocode"><pre><code class="typocode_ruby "><span class="keyword">module </span><span class="module">RoleHelper</span> <span class="keyword">def </span><span class="method">render_role_tree</span><span class="punct">(</span><span class="ident">tree</span><span class="punct">)</span> <span class="ident">ret</span> <span class="punct">=</span> <span class="punct">'</span><span class="string"></span><span class="punct">'</span> <span class="ident">ret</span> <span class="punct">+=</span> <span class="punct">&quot;</span><span class="string">&lt;ul class='tree'&gt;</span><span class="punct">&quot;</span> <span class="ident">tree</span><span class="punct">.</span><span class="ident">each_key</span> <span class="keyword">do</span> <span class="punct">|</span><span class="ident">r</span><span class="punct">|</span> <span class="ident">ret</span> <span class="punct">+=</span> <span class="punct">'</span><span class="string">&lt;li&gt;&lt;a href=&quot;#&quot;&gt;</span><span class="punct">'</span> <span class="punct">+</span> <span class="ident">r</span> <span class="punct">+</span> <span class="punct">'</span><span class="string">&lt;/a&gt;</span><span class="punct">'</span> <span class="comment"># list roles</span> <span class="ident">h</span><span class="punct">=</span> <span class="ident">tree</span><span class="punct">[</span><span class="ident">r</span><span class="punct">]</span> <span class="comment"># get hash of controllers/[actions]</span> <span class="keyword">unless</span> <span class="ident">h</span><span class="punct">.</span><span class="ident">empty?</span> <span class="ident">ret</span> <span class="punct">+=</span> <span class="punct">'</span><span class="string">&lt;ul&gt;</span><span class="punct">'</span> <span class="ident">h</span><span class="punct">.</span><span class="ident">each_key</span> <span class="keyword">do</span> <span class="punct">|</span><span class="ident">c</span><span class="punct">|</span> <span class="ident">ret</span> <span class="punct">+=</span> <span class="punct">'</span><span class="string">&lt;li&gt;&lt;a href=&quot;#&quot;&gt;</span><span class="punct">'</span> <span class="punct">+</span> <span class="ident">c</span> <span class="punct">+</span> <span class="punct">'</span><span class="string">&lt;/a&gt;</span><span class="punct">'</span> <span class="comment"># list controllers</span> <span class="ident">a</span><span class="punct">=</span> <span class="ident">h</span><span class="punct">[</span><span class="ident">c</span><span class="punct">]</span> <span class="keyword">unless</span> <span class="ident">a</span><span class="punct">.</span><span class="ident">empty?</span> <span class="ident">ret</span> <span class="punct">+=</span> <span class="punct">'</span><span class="string">&lt;ul&gt;</span><span class="punct">'</span> <span class="ident">a</span><span class="punct">.</span><span class="ident">each</span> <span class="keyword">do</span> <span class="punct">|</span><span class="ident">an</span><span class="punct">|</span> <span class="ident">ret</span> <span class="punct">+=</span> <span class="punct">'</span><span class="string">&lt;li&gt;&lt;a href=&quot;#&quot;&gt;</span><span class="punct">'</span> <span class="punct">+</span> <span class="ident">an</span> <span class="punct">+</span> <span class="punct">'</span><span class="string">&lt;/a&gt;&lt;/li&gt;</span><span class="punct">'</span> <span class="comment"># list actions</span> <span class="keyword">end</span> <span class="ident">ret</span> <span class="punct">+=</span> <span class="punct">'</span><span class="string">&lt;/ul&gt;</span><span class="punct">'</span> <span class="keyword">end</span> <span class="ident">ret</span> <span class="punct">+=</span> <span class="punct">'</span><span class="string">&lt;/li&gt;</span><span class="punct">'</span> <span class="keyword">end</span> <span class="ident">ret</span> <span class="punct">+=</span> <span class="punct">'</span><span class="string">&lt;/ul&gt;</span><span class="punct">'</span> <span class="keyword">end</span> <span class="ident">ret</span> <span class="punct">+=</span> <span class="punct">'</span><span class="string">&lt;/li&gt;</span><span class="punct">'</span> <span class="keyword">end</span> <span class="ident">ret</span> <span class="punct">+=</span> <span class="punct">'</span><span class="string">&lt;/ul&gt;</span><span class="punct">'</span> <span class="ident">ret</span> <span class="keyword">end</span> <span class="keyword">def </span><span class="method">render_rights_tree</span><span class="punct">(</span><span class="ident">tree</span><span class="punct">)</span> <span class="ident">ret</span> <span class="punct">=</span> <span class="punct">'</span><span class="string"></span><span class="punct">'</span> <span class="ident">ret</span> <span class="punct">+=</span> <span class="punct">&quot;</span><span class="string">&lt;ul class='tree'&gt;</span><span class="punct">&quot;</span> <span class="ident">tree</span><span class="punct">.</span><span class="ident">each_key</span> <span class="keyword">do</span> <span class="punct">|</span><span class="ident">r</span><span class="punct">|</span> <span class="ident">ret</span> <span class="punct">+=</span> <span class="punct">&quot;</span><span class="string">&lt;li&gt;&lt;a href=<span class="escape">\&quot;</span>#<span class="escape">\&quot;</span>&gt;<span class="expr">#{r}</span>&lt;/a&gt;</span><span class="punct">&quot;</span><span class="comment"># list controllers</span> <span class="ident">aa</span><span class="punct">=</span> <span class="ident">tree</span><span class="punct">[</span><span class="ident">r</span><span class="punct">]</span> <span class="comment"># get array of actions</span> <span class="keyword">unless</span> <span class="ident">aa</span><span class="punct">.</span><span class="ident">empty?</span> <span class="ident">ret</span> <span class="punct">+=</span> <span class="punct">'</span><span class="string">&lt;ul&gt;</span><span class="punct">'</span> <span class="ident">ret</span> <span class="punct">+=</span> <span class="punct">&quot;</span><span class="string">&lt;li&gt;&lt;a href=<span class="escape">\&quot;</span>#<span class="escape">\&quot;</span> onclick=<span class="escape">\&quot;</span>checkAll('right[<span class="expr">#{r}</span>][]'); return false;<span class="escape">\&quot;</span>&gt;Check All&lt;/a&gt;</span><span class="punct">&quot;</span> <span class="ident">aa</span><span class="punct">.</span><span class="ident">each</span> <span class="keyword">do</span> <span class="punct">|</span><span class="ident">a</span><span class="punct">|</span> <span class="ident">ret</span> <span class="punct">+=</span> <span class="punct">'</span><span class="string">&lt;li&gt;</span><span class="punct">'</span> <span class="punct">+</span> <span class="punct">&quot;</span><span class="string">&lt;input type=<span class="escape">\&quot;</span>checkbox<span class="escape">\&quot;</span> name=<span class="escape">\&quot;</span>right[<span class="expr">#{r}</span>][]<span class="escape">\&quot;</span> value=<span class="escape">\&quot;</span><span class="expr">#{a}</span><span class="escape">\&quot;</span> /&gt;</span><span class="punct">&quot;</span> <span class="punct">+</span> <span class="ident">a</span> <span class="punct">+</span> <span class="punct">'</span><span class="string">&lt;/li&gt;</span><span class="punct">'</span> <span class="comment"># list actions</span> <span class="keyword">end</span> <span class="ident">ret</span> <span class="punct">+=</span> <span class="punct">'</span><span class="string">&lt;/ul&gt;</span><span class="punct">'</span> <span class="keyword">end</span> <span class="ident">ret</span> <span class="punct">+=</span> <span class="punct">'</span><span class="string">&lt;/li&gt;</span><span class="punct">'</span> <span class="keyword">end</span> <span class="ident">ret</span> <span class="punct">+=</span> <span class="punct">'</span><span class="string">&lt;/ul&gt;</span><span class="punct">'</span> <span class="ident">ret</span> <span class="keyword">end</span> <span class="keyword">end</span></code></pre></div> <p>the action handler in the controller for the post basically goes through all the selected checkboxes and sets the relevant habtms.</p> <div class="typocode"><pre><code class="typocode_ruby "><span class="keyword">def </span><span class="method">edit</span> <span class="keyword">if</span> <span class="ident">request</span><span class="punct">.</span><span class="ident">post?</span> <span class="comment">#p params</span> <span class="keyword">unless</span> <span class="ident">params</span><span class="punct">['</span><span class="string">role</span><span class="punct">'].</span><span class="ident">nil?</span> <span class="ident">a_roles</span><span class="punct">=</span> <span class="ident">params</span><span class="punct">['</span><span class="string">role</span><span class="punct">']</span> <span class="ident">a_rights</span><span class="punct">=</span> <span class="ident">params</span><span class="punct">['</span><span class="string">right</span><span class="punct">']</span> <span class="keyword">unless</span> <span class="ident">a_rights</span><span class="punct">.</span><span class="ident">nil?</span> <span class="ident">a_roles</span><span class="punct">.</span><span class="ident">each</span> <span class="punct">{</span> <span class="punct">|</span><span class="ident">ar</span><span class="punct">|</span> <span class="ident">role</span><span class="punct">=</span> <span class="constant">Role</span><span class="punct">.</span><span class="ident">find_by_name</span><span class="punct">(</span><span class="ident">ar</span><span class="punct">)</span> <span class="keyword">unless</span> <span class="ident">role</span><span class="punct">.</span><span class="ident">nil?</span> <span class="ident">role</span><span class="punct">.</span><span class="ident">rights</span><span class="punct">.</span><span class="ident">clear</span> <span class="ident">a_rights</span><span class="punct">.</span><span class="ident">each</span> <span class="punct">{</span> <span class="punct">|</span><span class="ident">controller</span><span class="punct">,</span> <span class="ident">aa</span><span class="punct">|</span> <span class="ident">aa</span><span class="punct">.</span><span class="ident">each</span> <span class="punct">{</span> <span class="punct">|</span><span class="ident">action</span><span class="punct">|</span> <span class="ident">right</span><span class="punct">=</span> <span class="constant">Right</span><span class="punct">.</span><span class="ident">find_by_controller_and_action</span><span class="punct">(</span><span class="ident">controller</span><span class="punct">,</span> <span class="ident">action</span><span class="punct">)</span> <span class="keyword">unless</span> <span class="ident">right</span><span class="punct">.</span><span class="ident">nil?</span> <span class="ident">role</span><span class="punct">.</span><span class="ident">rights</span> <span class="punct">&lt;&lt;</span> <span class="ident">right</span> <span class="keyword">else</span> <span class="ident">puts</span> <span class="punct">&quot;</span><span class="string">Right <span class="expr">#{controller}</span>/<span class="expr">#{action}</span> not found</span><span class="punct">&quot;</span> <span class="keyword">end</span> <span class="punct">}</span> <span class="punct">}</span> <span class="keyword">else</span> <span class="ident">puts</span> <span class="punct">&quot;</span><span class="string">Role <span class="expr">#{ar}</span> not found</span><span class="punct">&quot;</span> <span class="keyword">end</span> <span class="punct">}</span> <span class="ident">flash</span><span class="punct">[</span><span class="symbol">:notice</span><span class="punct">]=</span> <span class="punct">'</span><span class="string">rights updated</span><span class="punct">'</span> <span class="keyword">else</span> <span class="ident">flash</span><span class="punct">[</span><span class="symbol">:warning</span><span class="punct">]=</span> <span class="punct">'</span><span class="string">no rights were selected</span><span class="punct">'</span> <span class="keyword">end</span> <span class="keyword">else</span> <span class="ident">flash</span><span class="punct">[</span><span class="symbol">:warning</span><span class="punct">]=</span> <span class="punct">'</span><span class="string">You need to select the role to allocate to</span><span class="punct">'</span> <span class="keyword">end</span> <span class="keyword">end</span> <span class="keyword">end</span> </code></pre></div> <h3>Checking and unchecking all the boxes</h3> <p>This is done with a little bit of javascript.</p> <p>The view code looks like...</p> <pre><code> &amp;lt;a href="#" onclick="checkAll('permissions_&lt;%= controller_id %&gt;[]'); return false;"\&gt;all&amp;lt;/a&gt; &amp;lt;a href="#" onclick="uncheckAll('permissions_&lt;%= controller_id %&gt;[]'); return false;"\&gt;none&amp;lt;/a&gt; </code></pre> <p>The java script is...</p> <pre><code>function checkAll(name) { boxes = document.getElementsByName(name) for (i = 0; i &lt; boxes.length; i++) boxes[i].checked = true ; } function uncheckAll(name) { boxes = document.getElementsByName(name) for (i = 0; i &lt; boxes.length; i++) boxes[i].checked = false ; } </code></pre> <p><p></p> <h3>Automatically adding Rights.</h3> <p>Lastly the question of how to get all those Rights into the table? I liked the approach of the <a href="http://rails-engines.org/user_engine">UserEngine</a> so I borrowed it from them (thanks:), Add this to the app/models/right.rb file, then whenever you need to get all the new actions and controllers populated call Right.synchronize_with_controllers from the console, (or create a button on your admin page to do it). Here is the code...</p> <div class="typocode"><pre><code class="typocode_ruby "> <span class="keyword">class </span><span class="class">Right</span> <span class="punct">&lt;</span> <span class="constant">ActiveRecord</span><span class="punct">::</span><span class="constant">Base</span> <span class="ident">has_and_belongs_to_many</span> <span class="symbol">:roles</span> <span class="ident">validates_presence_of</span> <span class="symbol">:controller</span><span class="punct">,</span> <span class="symbol">:action</span><span class="punct">,</span> <span class="symbol">:name</span> <span class="ident">validates_uniqueness_of</span> <span class="symbol">:name</span> <span class="comment"># Ensure that the table has one entry for each controller/action pair</span> <span class="keyword">def </span><span class="method">self.synchronize_with_controllers</span> <span class="comment"># weird hack. otherwise ActiveRecord has no idea about the superclass of any</span> <span class="comment"># ActionController stuff...</span> <span class="ident">require</span> <span class="constant">RAILS_ROOT</span> <span class="punct">+</span> <span class="punct">&quot;</span><span class="string">/app/controllers/application</span><span class="punct">&quot;</span> <span class="comment"># Load all the controller files</span> <span class="ident">controller_files</span> <span class="punct">=</span> <span class="constant">Dir</span><span class="punct">[</span><span class="constant">RAILS_ROOT</span> <span class="punct">+</span> <span class="punct">&quot;</span><span class="string">/app/controllers/**/*_controller.rb</span><span class="punct">&quot;]</span> <span class="comment"># we need to load all the controllers...</span> <span class="ident">controller_files</span><span class="punct">.</span><span class="ident">each</span> <span class="keyword">do</span> <span class="punct">|</span><span class="ident">file_name</span><span class="punct">|</span> <span class="ident">require</span> <span class="ident">file_name</span> <span class="comment">#if /_controller.rb$/ =~ file_name</span> <span class="keyword">end</span> <span class="comment"># Find the actions in each of the controllers, and add them to the database</span> <span class="ident">subclasses_of</span><span class="punct">(</span><span class="constant">ApplicationController</span><span class="punct">).</span><span class="ident">each</span> <span class="keyword">do</span> <span class="punct">|</span><span class="ident">controller</span><span class="punct">|</span> <span class="ident">controller</span><span class="punct">.</span><span class="ident">public_instance_methods</span><span class="punct">(</span><span class="constant">false</span><span class="punct">).</span><span class="ident">each</span> <span class="keyword">do</span> <span class="punct">|</span><span class="ident">action</span><span class="punct">|</span> <span class="keyword">next</span> <span class="keyword">if</span> <span class="ident">action</span> <span class="punct">=~</span> <span class="punct">/</span><span class="regex">return_to_main|component_update|component</span><span class="punct">/</span> <span class="keyword">if</span> <span class="ident">find_all_by_controller_and_action</span><span class="punct">(</span><span class="ident">controller</span><span class="punct">.</span><span class="ident">controller_path</span><span class="punct">,</span> <span class="ident">action</span><span class="punct">).</span><span class="ident">empty?</span> <span class="constant">self</span><span class="punct">.</span><span class="ident">new</span><span class="punct">(</span><span class="symbol">:name</span> <span class="punct">=&gt;</span> <span class="punct">&quot;</span><span class="string"><span class="expr">#{controller}</span>.<span class="expr">#{action}</span></span><span class="punct">&quot;,</span> <span class="symbol">:controller</span> <span class="punct">=&gt;</span> <span class="ident">controller</span><span class="punct">.</span><span class="ident">controller_path</span><span class="punct">,</span> <span class="symbol">:action</span> <span class="punct">=&gt;</span> <span class="ident">action</span><span class="punct">).</span><span class="ident">save!</span> <span class="ident">logger</span><span class="punct">.</span><span class="ident">info</span> <span class="punct">&quot;</span><span class="string">added: <span class="expr">#{controller}</span> - <span class="expr">#{controller.controller_path}</span>, <span class="expr">#{action}</span></span><span class="punct">&quot;</span> <span class="keyword">end</span> <span class="keyword">end</span> <span class="comment"># The following thanks to Tom Styles </span> <span class="comment"># Then check to make sure that all the rights for that controller in the database</span> <span class="comment"># still exist in the controller itself</span> <span class="constant">self</span><span class="punct">.</span><span class="ident">find</span><span class="punct">(</span><span class="symbol">:all</span><span class="punct">,</span> <span class="symbol">:conditions</span> <span class="punct">=&gt;</span> <span class="punct">['</span><span class="string">controller = ?</span><span class="punct">',</span> <span class="ident">controller</span><span class="punct">.</span><span class="ident">controller_path</span><span class="punct">]).</span><span class="ident">each</span> <span class="keyword">do</span> <span class="punct">|</span><span class="ident">right_to_go</span><span class="punct">|</span> <span class="keyword">unless</span> <span class="ident">controller</span><span class="punct">.</span><span class="ident">public_instance_methods</span><span class="punct">(</span><span class="constant">false</span><span class="punct">).</span><span class="ident">include?</span><span class="punct">(</span><span class="ident">right_to_go</span><span class="punct">.</span><span class="ident">action</span><span class="punct">)</span> <span class="ident">right_to_go</span><span class="punct">.</span><span class="ident">destroy</span> <span class="keyword">end</span> <span class="keyword">end</span> <span class="keyword">end</span> <span class="keyword">end</span> <span class="keyword">end</span> </code></pre></div> Sat, 20 May 2006 13:19:00 -0700 urn:uuid:f2a07b6bcdd4c725c3d9d3c5478e66fd Jim Morris http://blog.wolfman.com/articles/2006/05/20/role-based-authentication-admin-page Rails ruby rails RBAC http://blog.wolfman.com/articles/trackback/2 <p>i have this running on rails 2.1</p> <p>the only modifications to work are:</p> <p>in roles_controller.rb change this roles= Role.find_all to this roles= Role.find(:all)</p> <p>and this rights= Right.find_all to this rights= Right.find(:all)</p> Tue, 01 Jul 2008 17:11:51 -0700 urn:uuid:ff89c320-3956-484a-a018-46e8d69ac6c4 http://blog.wolfman.com/articles/2006/05/20/role-based-authentication-admin-page#comment-222 <p>Its quite possible as this was written for quite an old version of rails, and has not been tested with any newer versions.</p> <p>If someone wants to update it, I'm sure others would appreciate it.</p> Wed, 13 Feb 2008 21:35:05 -0800 urn:uuid:9578f9fb-0309-4420-97c0-be791c5f9dea http://blog.wolfman.com/articles/2006/05/20/role-based-authentication-admin-page#comment-200 So I tried doing this, and I realize the post is almost 18 months old or something, I'm just curious. when I put this in my Rights model, I get the following error. Right.synchronize_with_controllers NoMethodError: undefined method `synchronize_with_controllers' for # if I create a Right object I get; rights = Right.new = # rights.synchronize_with_controllers NoMethodError: undefined method `find_all_by_controller_and_action' for # So I posted this in the Role object, added in the appropriate Model references "Right.find_all_by... " and I was able to run it. Has something changed in Rails? Wed, 13 Feb 2008 12:42:10 -0800 urn:uuid:738e69c8-ddbd-4145-9fc8-6e870853d0a3 http://blog.wolfman.com/articles/2006/05/20/role-based-authentication-admin-page#comment-199 <p>I had all kinds of troubles with loading the modules in order to get subclasses_of to work properly, not sure if this is because Rails was changed in the latest release or because we use subfolders for some controllers. Anyway, in the end I went for another approach, where I just get each controller class by parsing the controller files:</p> <pre> # Load all the controller files controller_files = Dir[RAILS_ROOT + /app/controllers/**/*_controller.rb"] controllers = [] # we need to load all the controllers... controller_files.each do |file_name| match = file_name.match(/\/app\/controllers\/(([a-z_]+)\/?[a-z_]+).rb$/) name = match[1].camelize controllers &#60;&#60; eval(name) end </pre> <p>Hopefully this will be helpful for other people.</p> Tue, 27 Feb 2007 01:16:06 -0800 urn:uuid:f9e821b7-b21a-4a10-a8cf-260404654607 http://blog.wolfman.com/articles/2006/05/20/role-based-authentication-admin-page#comment-63 <p>For complete numpties I would have liked to know exactly where the view code javascript went ... Also, to help, other numpties Type "ruby/script console" in your command prompt at the project root, this will launch irb. Then enter Right.synchronize_with_controllers to preload controllers into the rights table.</p> Thu, 01 Feb 2007 11:24:52 -0800 urn:uuid:7032d752-2ddb-4fe2-a841-150202ca809d http://blog.wolfman.com/articles/2006/05/20/role-based-authentication-admin-page#comment-54 <p>I have to agree its rather ugly, I don't even remember writing it! It must have been a bad day. Tree walking code is usually ugly unless you use recursion, so I guess one day I'll refactor it.</p> Sun, 10 Dec 2006 19:33:19 -0800 urn:uuid:e5b47f67-eb3d-491b-9f24-65d8a4271cb8 http://blog.wolfman.com/articles/2006/05/20/role-based-authentication-admin-page#comment-27 <p>Umm .... That piece of code sure looks ugly. Linus Torvalds once said in a heated debated regarding indentation "If your code has more than 3 level deep indentations, it's f**ked up." I gotta agree with him on that one. You need to rework your code. Otherwise, it's a helpful piece.</p> Sun, 10 Dec 2006 18:38:56 -0800 urn:uuid:2faf53b9-4ea4-4580-bbdf-7aaadba3488d http://blog.wolfman.com/articles/2006/05/20/role-based-authentication-admin-page#comment-26 <p>Excellent thanks, I'll add it to the example.</p> Fri, 15 Sep 2006 21:45:37 -0700 urn:uuid:fc27182f-8b73-44a6-8761-9aac2dc47d66 http://blog.wolfman.com/articles/2006/05/20/role-based-authentication-admin-page#comment-17 <p>Great stuff, I've made a slight amendment to the code that automatically populates the Right's table, so that it removes any actions that have been tidied up in the controllers. Here it is, I've chopped off the top and bottom to keep it tidy...</p> <pre><code> # Find the actions in each of the controllers, and add them to the database subclasses_of(ApplicationController).each do |controller| controller.public_instance_methods(false).each do |action| next if action =~ /return_to_main|component_update|component/ if find_all_by_controller_and_action(controller.controller_path, action).empty? self.new(:name =&gt; "#{controller}.#{action}", :controller =&gt; controller.controller_path, :action =&gt; action).save! logger.info "added: #{controller} - #{controller.controller_path}, #{action}" end end # Then check to make sure that all the rights for that controller in the database # still exist in the controller itself self.find(:all, :conditions =&gt; ['controller = ?', controller.controller_path]).each do |right_to_go| unless controller.public_instance_methods(false).include?(right_to_go.action) right_to_go.destroy end end end </code></pre> <p>Feel free to include this in the tutorial. I'm now calling this function just before the rights page is displayed so I've always got an upto date set of rights to deal with.</p> Fri, 15 Sep 2006 18:19:28 -0700 urn:uuid:6f6c3493-d68c-4639-b29a-b6807f7aad0a http://blog.wolfman.com/articles/2006/05/20/role-based-authentication-admin-page#comment-39 <p>Awesome. This is going to save me a bunch of time. Thanks for putting this together.</p> Sun, 04 Jun 2006 11:33:11 -0700 urn:uuid: http://blog.wolfman.com/articles/2006/05/20/role-based-authentication-admin-page#comment-29