Sign Up to our social questions and Answers Engine to ask questions, answer people’s questions, and connect with other people.
Login to our social questions & Answers Engine to ask questions answer people’s questions & connect with other people.
Lost your password? Please enter your email address. You will receive a link and will create a new password via email.
Please briefly explain why you feel this question should be reported.
Please briefly explain why you feel this answer should be reported.
Please briefly explain why you feel this user should be reported.
I have a web application with users and their documents. Each user can have many documents:
user.rb:
has_many :documents document.rb:
belongs_to :user document_controller.rb:
def index @documents = Document.find(:all) end I am using the restful_authentication plugin. Here is my question: How do I get the controller to only show documents that belongs to each user? Right now it shows all the documents for all the users.
I am using the latest version of Rails.
Take a look here in the rails API in the Association Join Models section.
However be aware Restful authentication won’t control access in order to limit the users to only their own records particularly with restful routes. They can still view other users’ records by entering values in the urls once they are logged in.
For that you might want to look into Restful ACL