can [:list, :rss, :view, :comments], DiaryEntry
+ can [:search, :search_latlon, :search_ca_postcode, :search_osm_nominatim,
+ :search_geonames, :search_osm_nominatim_reverse, :search_geonames_reverse], :geocoder
+
if user
can :weclome, :site
# https://github.com/CanCanCommunity/cancancan/wiki/Defining-Abilities
end
+ # If a user provides no tokens, they've authenticated via a non-oauth method
+ # and permission to access to all capabilities is assumed.
def has_capability?(token, cap)
- token && token.read_attribute(cap)
+ token.nil? || token.read_attribute(cap)
end
end