open_in_new content_copy 
gem 'cancancan'

rails generate cancan:ability

//in controller
 load_and_authorize_resource
 
 //ability
 def initialize(user)
    user ||= User.new

    can :manage, :all, user_id: user.id if user.role == 'user'
    can :read, Recipe, public: true
  end