Reducing the load of ability.rb in cancan

About

Asked 4/2, 2012 at 21:55 Answered 17/8, 2012 at 6:35

Solved ruby-on-rails ruby-on-rails-3 query-optimization cancan

I have a large ability file that decides what exactly users can do by searching from a table of 'Roles'. Each role corresponds to something a particular user can do, for example, being able to add a project or being able to edit the main company record.

At the moment, every controller action that runs load_and_authorize_resource goes through >30 statements like:

ability.rb (>30 times)
Role.where("user_id = ? AND role = ? AND roleable_type = ? AND roleable_id IS NULL", user.id, "delete", "task").last.present? ? (can :destroy, Task) : nil

This is a horribly inefficient solution because the server is running >30 queries before it even does anything.

The best way to do this would only be to run the queries that need running based on what the controller and view require. Is there a way to do this?

Phi answered 4/2, 2012 at 21:55 Comment(4)

Uh oh, I'm going to have to audit my own cancan usage. Out of curiosity, does it do it in both dev and production environments? – Esterify 4/2, 2012 at 22:23

It's hard for me to grok what all is going on in your associations with that one line. But perhaps you could eager load all of a user's roles with something like User.includes(:roles).find(@user.id). Then one SQL query will hold the user's roles in memory for you to process. – Readership 5/2, 2012 at 3:22

@Readership - I'll try your suggestion and see if it reduces the number of queries. Basically, each 'role' gives a user a specific permission - this allows user abilities to be infinitely customizable (but it does, as you can see, result in some fiddly performance situations). – Phi 5/2, 2012 at 7:39

Seconding @danneu's suggestion – Chard 3/8, 2012 at 20:30

It's partly the way you wrote the role tests. Instead of writing > 30 times:

Role.where("user_id = ? AND role = ? AND roleable_type = ? AND roleable_id IS NULL", user.id, "delete", "task").last.present? ? (can :destroy, Task) : nil

You can instead query for all of a users roles at once:

@user_roles = user.roles.all

Then individually test for each role:

can :destroy, Task if @user_roles.detect {|u| u["role"] == "delete" && u["roleable_type"]=="task" }

Because all roles are read into memory in a single query, you don't have 30 queries.

Principalities answered 17/8, 2012 at 6:35 Comment(0)

Hot tags

Godot Unity Godot Help Programming Godot 4.X GUI GDScript 3D 2D Physics CSharp Godot 3.X VR XR Projects C++

Recommended topics

Hot tags