Rails multi level model security
- by rballz
I have the need to do the following in Rails to mirror a desktop application:
a User and an Office 'owns' a record, if you don't own the record on a user or office level you're kicked into the public realm.
user gets read,write,delete to the model record
office gets read/write/delete to the model record
other or public gets read/write/delete to…