[openstreetmap/openstreetmap-website] Blocked user cannot log on to community.osm.org (Issue #3522)
Andy Allan
notifications at github.com
Mon Apr 11 16:26:17 UTC 2022
I was considering whether we can move these authorization checks out of the authentication method (since authorization != authentication) and into the abilities (since we're already using CanCanCan as our authorization framework).
The topic I haven't explored yet is how easy it will be to get the error messages correct, since if a user cannot edit it would be nice to know why (e.g. database offline, user block, user not yet active etc) and return an appropriate error message.
--
Reply to this email directly or view it on GitHub:
https://github.com/openstreetmap/openstreetmap-website/issues/3522#issuecomment-1095271444
You are receiving this because you are subscribed to this thread.
Message ID: <openstreetmap/openstreetmap-website/issues/3522/1095271444 at github.com>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openstreetmap.org/pipermail/rails-dev/attachments/20220411/731ab3f3/attachment-0001.htm>
More information about the rails-dev
mailing list