Multi tenant rails app with devise -


i'm trying build multi tenanted app in which different banks separated subdomain. part working fine. there 1 more level of multitenancy bank products.

  • each bank has multiple products
  • a devise user can belong on product
  • this means have register twice 2 products of same bank though under same subdomain(client requirement can't change)
  • because of can have same email address 2 products. uniqueness scoped product_id
  • so have select product while signing in , signing up

this how i'm trying implement above solution

around_filter :scope_current_bank, :scope_current_product before_filter :authenticate_user!  helper_method :current_bank, :current_product  def current_bank   @current_bank = bank.find_by_subdomain!(request.subdomains.first) end  def current_product   if user_signed_in?     @current_product = current_bank.products.find_by_id(params[:product_id])   else     @current_product = current_user.product   end end  def scope_current_bank   bank.current_id = current_bank.id   yield ensure   bank.current_id = nil end  def scope_current_product   product.current_id = (current_product.id rescue nil)   yield ensure   product.current_id = nil end

now problem while user sigining in, scope_current_product method calls user_signed_in?, fails because product_id nil. enters else block after expect call authenticate_user! before_filter not happen authentication done. message saying authentication failed.

is way call authenticate_user again?

although not direct answer, give ideas:

authorization

perhaps should @ - is there difference between authentication , authorization? - there's good railscast this

i think issue comes down idea need authenticate user once (login / logout), should authorize user work different resources

code

a devise user can belong on product - recommend this:

#app/models/product_user.rb class productuser < activerecord::base     belongs_to :product     belongs_to :user end  #app/models/product.rb class product < activerecord::base     has_many :product_users     has_many :users, through: :product_users end  #app/models/user.rb class user < activerecord::base     has_many :product_users     has_many :products, through: :product_users end

this typical has_many :through association:

@user.products @product.users

cancan

it means can use cancan this:

class ability   include cancan::ability    def initialize(user)     user ||= user.new # guest user (not logged in)     if user       can :manage, product, users.exists?(user.id)     else       can :read, :all     end   end end

this allows control products user can edit / access. code needs tweaked, hope shows value of authorization on trying multiple authentications


Comments

Post a Comment

Popular posts from this blog

Android layout hidden on keyboard show -

i have strange problem layout. when tap on edittext , keyboard shown edittext stay on bottom , when tap on to hide keyboard , keyboard hides , edittext go should when want input text. when tap again, keyboard shown , edittext goes down behind keyboard... <relativelayout android:layout_width="match_parent" android:layout_height="match_parent" > <scrollview android:layout_width="match_parent" android:layout_height="fill_parent" android:above="@+id/rl_commands"> <textview android:layout_width="match_parent" android:layout_height="wrap_content"/> </scrollview> <relativelayout android:layout_width="match_parent android:layout_height="24dp" android:id="@+id/rl_commands" android:alignparentbottom="true">
Read more

google app engine - 403 Forbidden POST - Flask WTForms -

i have flask application running on google app engine. trying submit form built using wtform , keep getting following error. 403 forbidden: don't have permission access requested resource. either read-protected or not readable server. location.html (part of code) <form method=post action="/home/location"> .... <button type="submit" class="btn btn-primary" value="submit"> directions </button> </form> main.py @app.route('/home/location', methods=['post', 'get']) def location(): form = cfcdirections.direction(request.form) print(request.method) if request.method == 'post' , form.validate(): print("after if") directions = cfcdirections() street_no = directions.no street = directions.street suburb = directions.suburb postcode = directions.postcode
Read more

c - Why would PK11_GenerateRandom() return an error -8023? -

i looking through internet trying find source of pk11_generaterandom() function see why function fail. have program uses function when moved new flavor of linux, fails after forking ( fork() ) since not believe there problem nss, suspect doing incorrectly disregarded in older versions of linux new 1 there issue. the openssl package same on 'good' , 'bad' server: openssl 0.9.8e-fips-rhel5 01 jul nss rpm differs though. 'good' has nss-3.12.2.0-2.el5 and bas has version nss-3.15.3-4.el5_10 the 'good' server uses quite obsolete linux: linux 2.6.18-128.el5 #1 smp wed jan 21 08:45:05 est 2009 x86_64 x86_64 x86_64 gnu/linux enterprise linux enterprise linux server release 5.3 (carthage) red hat enterprise linux server release 5.3 (tikanga) the 'bad' server newer: linux bad 2.6.18-371.4.1.el5 #1 smp wed jan 29 11:05:49 pst 2014 x86_64 x86_64 x86_64 gnu/linux oracle linux server release 5.10 red hat enterprise linux server release
Read more