Am Freitag, 30. April 2010 schrieb John Joseph Bachir:
> As far as i can tell, has_pemission_on :foos expects Foo to be a model, and
> not an arbitrary FooController.
>
> 1. Is this correct?
> 2. If so, how do I set authorizatio rules on my no-model controller?
Generally, the context like :foos is just an identifier. Out of convention,
the context is often linked to a model. That helps as e.g.
filter_resource_access may then automatically load objects.
Still, you may explicitly set a different context than the controller name for
filter_resource_access etc. Alternatively, you can use filter_access_to
without object loading with a context that has no corresponding model.
Steffen