I have a handful of doubts in an interesting scenario, I hope you can give me a little help.
I'm using the ng-token-auth package for authentication, for permissions control the package angular-permission , my Rails backend is configured with for devise_token_auth for authentication, pundit for authorization and rolify for multiplus profiles.
I need to deploy and configure for my frontend with roles and permissions using the package angular-permission , at this point I do not know the best way to do this.
Should I pass the rules and permissions along with the user's session? This issue explains a little as it should be.
I would like your opinion and experience.