Red Rails screen instead of flash message: CanCan::AccessDenied in RailsAdmin::MainController#dashboard
I use Devise, CanCanCan and rails_admin. With accessibility everything is OK, but I fail to get a flash message and redirect to root_path and getting the screen below. Any ideas, hints on how I could get flash message instead of this? Other flash messages, both alerts and notifications display OK. Thanks a lot.
My ApplicationController is:
class ApplicationController < ActionController::Base
protect_from_forgery with: :exception
before_action :authenticate_user!
def after_sign_in_path_for(resource)
stored_location_for(resource) || welcome_path_url
end
rescue_from CanCan::AccessDenied do |exception|
respond_to do |format|
format.json { head :forbidden, content_type: 'text/html' }
format.html { redirect_to main_app.root_url, notice: exception.message }
format.js { head :forbidden, content_type: 'text/html' }
end
end
end
rails_admin.rb
RailsAdmin.config do |config|
### Popular gems integration
## == Devise ==
config.authenticate_with do
warden.authenticate! scope: :user
end
config.current_user_method(&:current_user)
## == CancanCan ==
# config.authorize_with :cancancan
config.authorize_with do
redirect_to main_app.root_path unless current_user.superuser ==true
end
<....>
end
ability.rb
class Ability
include CanCan::Ability
def initialize(user)
# Define abilities for the passed in user here. For example:
#
user ||= User.new # guest user (not logged in)
if user.superuser?
can :manage, :all
cannot :access, :rails_admin
cannot :manage, :dashboard
end
if user.office?
cannot :access, :rails_admin
cannot :manage, :dashboard
can :read, :all
end
end
end
EDIT: The working answer is marked. Also I should define status variable like this:
def status
@user_role ||= User.new(read_attribute(:user_role))
end
in my User model.
Solution
It seems RailsAdmin::MainController isn't derived from ApplicationController you defined on the app to catch the exceptions raised on its subclass.
You need to explicitly add the config to use another parent controller like below. Please find the related gem documentation here:
# in config/initializers/rails_admin.rb
config.parent_controller = 'ApplicationController'
This stack overflow answer as well might help you.
- Ruby on Rails production log rotation
- Remove null bytes for every ActiveRecord string attributes
- Rails 5: How to remove a column from a database?
- What exactly is a web framework?
- Rails: NameError: uninitialized constant
- rails + docker + sidekiq + Error connecting to Redis on 127.0.0.1:6379 (Errno::ECONNREFUSED)
- Ruby on Rails update triggered ArgumentError in Mailer functions
- devise and language by multiple domain
- header and footer in Prawn PDF
- Is there a fix for the "Could not find *gem* in any of the sources" error that doesn't involve deleting Gemfile.lock?
- MacOs (M1 Arm64) unable to load Nokogiri - Using system default Ruby
- Rails migration bulk updates for change_column_default
- Rack app error handling request { GET /vite-dev/@vite/client }
- Rails fixtures :has_many and :belongs_to
- Rails ActionMailer preview in production
- Change default size of text input in Simple Form
- How to query records that have an ActiveStorage attachment?
- How to disable pager in rails console so entire result prints to console?
- Herkou Redis - certificate verify failed (self signed certificate in certificate chain)
- How to make Rails.logger.debug print hash more readable
- Custom method as ID
- Unable to resolve specifier 'popper' imported from | Dropdown of bootstrap in Rails 7 with importmap doesn't work
- Rails link to file in public folder
- tailwind.css not being generated in a Rails 7 project in Heroku
- Delete multiple hash keys
- How to sort Rails Active Model serializers' response
- Installing Bootstrap 3 on Rails App
- Why do I sometimes get a Type Error "no implicit conversion of StringIO into String" here? Ruby/Rails
- Rails: Serializing deeply nested associations with active_model_serializers
- Any view layer objects exist in Ruby on rails?