This is a 10 minute discussion on authentication concerns and the basics of how I use the cancan gem to make sure that only the right users have access to the correct data
