Ruby on rails more elegant way to authenticate that users can edit only their own content

Question

I currently authenticate that users can edit their own content only by:

@posts = current_user.posts.find(params[:id])

Is t

Answer 1

CanCan is another gem that offers authorization functionality. It's all managed in one ruby file and can then be incorporated into controllers with one line. There's also a number of view helpers so you can use <% if can? :update, @article %> in your views.