Skip to content

Commit

Permalink
Add caution message for working with roles with devise invitable
Browse files Browse the repository at this point in the history
  • Loading branch information
@damienlethiec @scambra
damienlethiec authored and scambra committed Aug 9, 2024
1 parent a0fcb37 commit 12b5f08
Showing 1 changed file with 2 additions and 0 deletions.
2 changes: 2 additions & 0 deletions README.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -312,6 +312,8 @@ authentication keys (like `email`)

Here is an example of the steps needed to add a first_name, last_name and role to invited Users.

Caution: Adding roles requires additional security measures, such as preventing a standard user from inviting an administrator. Implement appropriate access controls to ensure system security.

### Configuring your application controller to accept :first_name, :last_name, and :role for a User

Note: These modifications can be applied directly in the InvitationsController if not needed for other Devise actions.
Expand Down

0 comments on commit 12b5f08

Please sign in to comment.