Home/ Questions/Q 6696189
In Process

The Archive Base Latest Questions

Editorial Team
  • 0
Asked: 2026-05-26T06:18:43+00:00

I have a database table for users which contains common fields like password, email

  • 0

I have a database table for users which contains common fields like password, email etc. And there is also a field named level which defines user level such as member, editor or admin.

There is also some fields that specific for members, editors and admins which others don’t need. So I think I should create separated tables for user types.

And here’s the problem; how should I approach this problem if I want to follow Rails way? Both in terms of database design and associations.

Share

Leave an answer

You must login to add an answer.

Need An Account,

1 Answer

  1. Editorial Team

    seems you are looking for a role-based authorization system, coupled with specific attributes for each role. One way to achieve this would be with a data model looking like this :

    .-------.1    *.------------.*     1.-------.
| users |<-----| user_roles |------>| roles |
'-------'      '------------'       '-------'
                     |
     .---------------+---------------------.
     |0..1           |0..1                 |0..1
 .--------.  .----------------------.  .----------.
 | points |  | some_other_attribute |  | room_ids |
 '--------'  '----------------------'  '----------'

    this way, you ensure that all attributes related to a specific role are deleted if that role is removed from the user (by cascade delete).

    You will have, though, to ensure that all your attributes models enforce validation rules like this :

    class Point < ActiveRecord:Base
    validates :relevant_association?

  def relevant_association?
    user_role.role.title == "Admin"
  end
end

    if your user can only have one role, you can simplify this by adding a role field on the model, and then write validation rules on optional attributes (that belong_to a user) accordingly. Still,the former model offers more potential for future adjustments (creating a new role is just creating a new record).

    I’m not an expert on this matter though, so you can also continue to seek out inspiration ; the declarative_authorization gem provides an explanation of its data model that you may find interesting, too:

                         includes                   includes
                      .--.                        .---.
                      |  v                        |   v
.------.  can_play  .------.  has_permission  .------------.  requires  .----------.
| User |----------->| Role |----------------->| Permission |<-----------| Activity |
'------' *        * '------' *              * '------------' 1        * '----------'
                                                    |
                                            .-------+------.
                                         1 /        | 1     \ *
                               .-----------.   .---------.  .-----------.
                               | Privilege |   | Context |  | Attribute |
                               '-----------'   '---------'  '-----------'
    • 0