master
class UserAuthorizer < ApplicationAuthorizer def self.creatable_by?(user) true end def updatable_by?(user) user == resource end end