Skip to content
This repository has been archived by the owner on Dec 12, 2021. It is now read-only.

The can? and cannot? call cannot be used with a raw sql 'can' definition. #1023

Open
meetwudi opened this issue Dec 25, 2014 · 9 comments
Open

The can? and cannot? call cannot be used with a raw sql 'can' definition. #1023

meetwudi opened this issue Dec 25, 2014 · 9 comments

Comments

@meetwudi
Copy link

My shop model and user have many-to-many relationship. Only the user belongs to the shop can manage the shop.

I followed instructions here in order to use scope.

shop.rb
scope :user_owns, ->(user_id) { joins(:shops_users).where(:shops_users => {:user_id => user_id}) }
ability.rb
can :manage, Shop, Shop.user_owns(user.id)

But I got

The can? and cannot? call cannot be used with a raw sql 'can' definition. The checking code cannot be determined for :index Shop(id: integer, name: string, description: string, description_detail: text, created_at: datetime, updated_at: datetime, feature_image_file_name: string, feature_image_content_type: string, feature_image_file_size: integer, feature_image_updated_at: datetime)

Is it a bug? I totally followed the documentation.
@evilbikes79
Copy link

having the same issue...

@Senjai
Copy link

Senjai commented Jul 23, 2015

Are you using can? to check? or accessible_by?

@evilbikes79
Copy link

I am not using any calls to "Can?"

I have the following code in my Customer.rb model

scope :for_provider, -> (provider_id) { where("provider_id = ? OR id IN (SELECT customer_id FROM customers_providers WHERE provider_id = ?)", provider_id, provider_id) }

and the following code in my Ability.rb

can action, Customer, Customer.for_provider

@Senjai
Copy link

Senjai commented Jul 23, 2015

Where does the exception occur.

MyAbility.new(user).can action, Customer, Customer.for_provider(some_id) ?

This looks like something in your application is checking for a permission on a customer, with an instance of customer, that cannot be authorized with sql since you already have that instnace.

@shubhpatel108
Copy link

@tjwudi @evilbikes79 I had the same issue recently. This is what I found (I realize this is an old issue but it's never too late to share the solution):
Instead of writing
can :manage, Shop, Shop.user_owns(user.id)
write
can :manage, Shop, id: Shop.user_owns(user.id).map { |shop| shop.id }

@kenjione
Copy link

@shubhpatel108 good solution, but better to use pluck instead of map method.

@qx
Copy link

qx commented Mar 30, 2017

@ryanb the document is need to be update!

@Senjai
Copy link

Senjai commented Mar 31, 2017

@qx This extension is no longer maintained.

@maddiedierker maddiedierker mentioned this issue May 18, 2018
Merged
@simonfranzen
Copy link

be aware of "plucking" and "mapping" a large amount of data. it could lead to memory bloat

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
7 participants
@qx @evilbikes79 @kenjione @simonfranzen @Senjai @shubhpatel108 @meetwudi