From Free Software Directory
Jump to: navigation, search

Simple authorization for Rails.

CanCan is an authorization solution for Ruby on Rails. This restricts what a given user is allowed to access throughout the application. It is completely decoupled from any role based implementation and focuses on keeping permission logic in a single location (the Ability class) so it is not duplicated across controllers, views, and database queries. This assumes you already have authentication (such as Authlogic or Devise) that provides a current_user method which CanCan relies on. See Changing Defaults if you need different behavior.


LicenseVerified byVerified onNotes
License:ExpatKelly Hopkins12 August 2010

Leaders and contributors

Ryan Bates Maintainer

Resources and communication

Software prerequisites

This entry (in part or in whole) was last reviewed on 12 August 2010.


Permission is granted to copy, distribute and/or modify this document under the terms of the GNU Free Documentation License, Version 1.3 or any later version published by the Free Software Foundation; with no Invariant Sections, no Front-Cover Texts, and no Back-Cover Texts. A copy of the license is included in the page “GNU Free Documentation License”.

The copyright and license notices on this page only apply to the text on this page. Any software or copyright-licenses or other similar notices described in this text has its own copyright notice and license, which can usually be found in the distribution or license text itself.