10/08/2025 –, TR209
Has your has_access? method morphed from a straightforward guard into a tangled mess? While most Rails applications rely on Pundit, truly complex systems demand a more robust approach. In this talk, we’ll dive into implementing a tuple-based authorization model—an approach leveraged by Google and other large-scale applications—right within Rails. Learn how to tackle intricate permission scenarios without migrating to an external authorization system.
Developers with experience in Ruby on Rails
Niveau de difficulté:Intermediate
Yatish Mehta has worked with Ruby on Rails for more than 15 years. He has used Rails in many situations, ranging from being the CTO of a small startup to enterprise SaaS going through an IPO as one of the largest Rails monoliths.
He is currently the Tech Lead at Asana for Authorization, making sure users can set the right permissions on their projects and tasks.