Built with Rails  

ACLs in REST APIs

Agathe Begault Nicolas Lenepveu @gayahel @nlenepveu

2 © 2010-2013 Ifeelgoods. All rights reserved.

ü  ‘Allow’ and ‘Deny’ halves to control access

ü  Major source of Spaghetti code

ü  Must be repeated

ü  Dirty code

ü  Quickly unreadable

3 © 2010-2013 Ifeelgoods. All rights reserved.

Available solutions:

ü  No Gem with declarative way

ü  Missing functionalities

Needs:

ü  ACL with roles

ü  Custom assertions

4 © 2010-2013 Ifeelgoods. All rights reserved.

Gem which handles:

ü  ACL enforcement at the Resource level

ü  Declarative ACL with standard data structure

Advantages:

ü  ACL related logic out of controller code

ü  Testing is easy

ü  Human readable

5 © 2010-2013 Ifeelgoods. All rights reserved.

How to setup privileges according to roles:

6 © 2010-2013 Ifeelgoods. All rights reserved.

How to add custom assertions:

7 © 2010-2013 Ifeelgoods. All rights reserved.

ü  github.com/ifeelgoods/simple_acl

ü  gem ‘simple_acl’

ü  include SimpleAcl module in your top controller

ü  Add filter:

ü  Unauthorization handling:

© 2010-2013 Ifeelgoods. All rights reserved.

Our team Our team is strong, passionate and always innovating to provide you the best.

Our product A powerful dashboard that allows you to manage your promotion campaigns.

© 2010-2013 Ifeelgoods. All rights reserved.

10 © 2010-2013 Ifeelgoods. All rights reserved.

Ifeelgoods 702 Marshall street Redwood City 94025 CA

Ifeelgoods 349 5th Avenue New York NY 10016

Ifeelgoods 24 rue Tronchet 75008 Paris

We love Open Source: ü  AWS ü  NGINX ü  Ruby ü  Rails ü  AngularJS

Patches: ü  Doorkeeper ü  Aspec ü  …

The Ifeelgoods company is headquartered in Silicon Valley with locations in New York and Paris.

Come join us ! ifeelgoods.com/about-us/careers/