plutonium 0.33.1 → 0.34.0

data/lib/plutonium/ui/table/components/scopes_bar.rb

@@ -14,39 +14,9 @@ module Plutonium
                 "flex flex-wrap justify-between items-center gap-4 mb-4"
             ) do
               div(class: "flex flex-wrap items-center gap-2") do
-                name = "all"
-                if current_scope.blank?
-                  a(
-                    id: "#{name}-scope",
-                    href: current_query_object.build_url(scope: nil),
-                    class:
-                      "px-4 py-2 text-sm font-medium text-white bg-primary-700 border border-primary-700 rounded-lg hover:bg-primary-800 focus:z-10 focus:ring-2 focus:ring-primary-700 focus:text-white dark:bg-primary-600 dark:border-primary-600 dark:hover:bg-primary-700 dark:focus:ring-primary-800"
-                  ) { name.humanize }
-                else
-                  a(
-                    id: "#{name}-scope",
-                    href: current_query_object.build_url(scope: nil),
-                    class:
-                      "px-4 py-2 text-sm font-medium text-gray-500 bg-white border border-gray-300 rounded-lg hover:bg-gray-100 hover:text-gray-700 focus:z-10 focus:ring-2 focus:ring-gray-300 focus:text-gray-700 dark:bg-gray-800 dark:text-gray-400 dark:border-gray-600 dark:hover:text-white dark:hover:bg-gray-700 dark:focus:ring-gray-700 dark:focus:text-white"
-                  ) { name.humanize }
-                end
-
-                current_query_object.scope_definitions.each do |name, definition|
-                  if name == current_scope
-                    a(
-                      id: "#{name}-scope",
-                      href: current_query_object.build_url(scope: name),
-                      class:
-                        "px-4 py-2 text-sm font-medium text-white bg-primary-700 border border-primary-700 rounded-lg hover:bg-primary-800 focus:z-10 focus:ring-2 focus:ring-primary-700 focus:text-white dark:bg-primary-600 dark:border-primary-600 dark:hover:bg-primary-700 dark:focus:ring-primary-800"
-                    ) { name.humanize }
-                  else
-                    a(
-                      id: "#{name}-scope",
-                      href: current_query_object.build_url(scope: name),
-                      class:
-                        "px-4 py-2 text-sm font-medium text-gray-500 bg-white border border-gray-300 rounded-lg hover:bg-gray-100 hover:text-gray-700 focus:z-10 focus:ring-2 focus:ring-gray-300 focus:text-gray-700 dark:bg-gray-800 dark:text-gray-400 dark:border-gray-600 dark:hover:text-white dark:hover:bg-gray-700 dark:focus:ring-gray-700 dark:focus:text-white"
-                    ) { name.humanize }
-                  end
+                render_all_scope_button
+                current_query_object.scope_definitions.each_key do |name|
+                  render_scope_button(name)
                 end
               end
 
@@ -124,7 +94,42 @@ module Plutonium
 
           private
 
-          def current_scope = raw_resource_query_params[:scope]
+          def render_all_scope_button
+            active = all_scope_active?
+            a(
+              id: "all-scope",
+              href: current_query_object.build_url(scope: nil),
+              class: active ? active_scope_class : inactive_scope_class
+            ) { "All" }
+          end
+
+          def render_scope_button(name)
+            active = name.to_s == current_scope
+            a(
+              id: "#{name}-scope",
+              href: current_query_object.build_url(scope: name),
+              class: active ? active_scope_class : inactive_scope_class
+            ) { name.to_s.humanize }
+          end
+
+          def current_scope
+            # Use the effective scope (includes default when no selection)
+            current_query_object.selected_scope
+          end
+
+          def all_scope_active?
+            # Active if user explicitly selected "All" OR no scope param and no default
+            current_query_object.all_scope_selected? ||
+              (!raw_resource_query_params.key?(:scope) && current_query_object.default_scope_name.blank?)
+          end
+
+          def active_scope_class
+            "px-4 py-2 text-sm font-medium text-white bg-primary-700 border border-primary-700 rounded-lg hover:bg-primary-800 focus:z-10 focus:ring-2 focus:ring-primary-700 focus:text-white dark:bg-primary-600 dark:border-primary-600 dark:hover:bg-primary-700 dark:focus:ring-primary-800"
+          end
+
+          def inactive_scope_class
+            "px-4 py-2 text-sm font-medium text-gray-500 bg-white border border-gray-300 rounded-lg hover:bg-gray-100 hover:text-gray-700 focus:z-10 focus:ring-2 focus:ring-gray-300 focus:text-gray-700 dark:bg-gray-800 dark:text-gray-400 dark:border-gray-600 dark:hover:text-white dark:hover:bg-gray-700 dark:focus:ring-gray-700 dark:focus:text-white"
+          end
 
           def render?
             current_query_object.scope_definitions.present?

data/lib/plutonium/version.rb

@@ -1,5 +1,5 @@
 module Plutonium
-  VERSION = "0.33.1"
+  VERSION = "0.34.0"
   NEXT_MAJOR_VERSION = VERSION.split(".").tap { |v|
     v[1] = v[1].to_i + 1
     v[2] = 0

data/lib/tasks/release.rake

@@ -6,10 +6,25 @@ namespace :release do
     current_version = Plutonium::VERSION
     puts "Current version: #{current_version}"
 
+    # Find the tag to compare against
+    version_tag = "v#{current_version}"
+    tag_exists = system("git rev-parse #{version_tag} >/dev/null 2>&1")
+
+    unless tag_exists
+      # Fall back to most recent tag
+      version_tag = `git describe --tags --abbrev=0 2>/dev/null`.strip
+      if version_tag.empty?
+        puts "No tags found, comparing against initial commit"
+        version_tag = `git rev-list --max-parents=0 HEAD`.strip
+      else
+        puts "Tag v#{current_version} not found, comparing against #{version_tag}"
+      end
+    end
+
     # Check for breaking changes, features, or fixes since last tag
-    breaking = `git log v#{current_version}..HEAD --oneline | grep -i "BREAKING CHANGE"`.strip
-    features = `git log v#{current_version}..HEAD --oneline | grep "^[a-f0-9]* feat"`.strip
-    fixes = `git log v#{current_version}..HEAD --oneline | grep "^[a-f0-9]* fix"`.strip
+    breaking = `git log #{version_tag}..HEAD --oneline | grep -i "BREAKING CHANGE"`.strip
+    features = `git log #{version_tag}..HEAD --oneline | grep "^[a-f0-9]* feat"`.strip
+    fixes = `git log #{version_tag}..HEAD --oneline | grep "^[a-f0-9]* fix"`.strip
 
     major, minor, patch = current_version.split(".").map(&:to_i)
 
@@ -54,7 +69,7 @@ namespace :release do
     package_json_file = "package.json"
     if File.exist?(package_json_file)
       package_content = File.read(package_json_file)
-      updated_package = package_content.gsub(/"version":\s*"[\d.]+"/, %{"version": "#{version}"})
+      updated_package = package_content.gsub(/"version":\s*"[\d.]+"/, %("version": "#{version}"))
       File.write(package_json_file, updated_package)
       puts "✓ Updated #{package_json_file}"
     end

data/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@radioactive-labs/plutonium",
-  "version": "0.33.1",
+  "version": "0.34.0",
   "description": "Core assets for the Plutonium gem",
   "type": "module",
   "main": "src/js/core.js",

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: plutonium
 version: !ruby/object:Gem::Version
-  version: 0.33.1
+  version: 0.34.0
 platform: ruby
 authors:
 - Stefan Froelich
 autorequire:
 bindir: exe
 cert_chain: []
-date: 2026-01-14 00:00:00.000000000 Z
+date: 2026-01-18 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: zeitwerk
@@ -399,6 +399,26 @@ extensions: []
 extra_rdoc_files: []
 files:
 - "# Plutonium: The pre-alpha demo.md"
+- ".claude/skills/assets/SKILL.md"
+- ".claude/skills/connect-resource/SKILL.md"
+- ".claude/skills/controller/SKILL.md"
+- ".claude/skills/create-resource/SKILL.md"
+- ".claude/skills/definition-actions/SKILL.md"
+- ".claude/skills/definition-fields/SKILL.md"
+- ".claude/skills/definition-query/SKILL.md"
+- ".claude/skills/definition/SKILL.md"
+- ".claude/skills/forms/SKILL.md"
+- ".claude/skills/installation/SKILL.md"
+- ".claude/skills/interaction/SKILL.md"
+- ".claude/skills/model-features/SKILL.md"
+- ".claude/skills/model/SKILL.md"
+- ".claude/skills/nested-resources/SKILL.md"
+- ".claude/skills/package/SKILL.md"
+- ".claude/skills/policy/SKILL.md"
+- ".claude/skills/portal/SKILL.md"
+- ".claude/skills/resource/SKILL.md"
+- ".claude/skills/rodauth/SKILL.md"
+- ".claude/skills/views/SKILL.md"
 - ".cliff.toml"
 - ".node-version"
 - ".rspec"
@@ -486,8 +506,8 @@ files:
 - app/views/rodauth/webauthn_autofill.html.erb
 - app/views/rodauth/webauthn_remove.html.erb
 - app/views/rodauth/webauthn_setup.html.erb
-- brakeman.ignore
 - config.ru
+- config/brakeman.ignore
 - config/initializers/action_policy.rb
 - config/initializers/hotwire_turbo_monkey_patches.rb
 - config/initializers/pagy.rb
@@ -496,43 +516,35 @@ files:
 - docs/.vitepress/config.ts
 - docs/.vitepress/theme/custom.css
 - docs/.vitepress/theme/index.ts
-- docs/api-examples.md
-- docs/guide/claude-code-guide.md
-- docs/guide/deep-dive/authorization.md
-- docs/guide/deep-dive/multitenancy.md
-- docs/guide/deep-dive/resources.md
-- docs/guide/getting-started/01-installation.md
-- docs/guide/index.md
-- docs/guide/introduction/01-what-is-plutonium.md
-- docs/guide/introduction/02-core-concepts.md
-- docs/guide/tutorial/01-project-setup.md
-- docs/guide/tutorial/02-creating-a-feature-package.md
-- docs/guide/tutorial/03-defining-resources.md
-- docs/guide/tutorial/04-creating-a-portal.md
-- docs/guide/tutorial/05-customizing-the-ui.md
-- docs/guide/tutorial/06-adding-custom-actions.md
-- docs/guide/tutorial/07-implementing-authorization.md
+- docs/concepts/architecture.md
+- docs/concepts/auto-detection.md
+- docs/concepts/index.md
+- docs/concepts/packages-portals.md
+- docs/concepts/resources.md
+- docs/cookbook/blog.md
+- docs/cookbook/index.md
+- docs/cookbook/saas.md
+- docs/getting-started/index.md
+- docs/getting-started/installation.md
+- docs/getting-started/tutorial/01-setup.md
+- docs/getting-started/tutorial/02-first-resource.md
+- docs/getting-started/tutorial/03-authentication.md
+- docs/getting-started/tutorial/04-authorization.md
+- docs/getting-started/tutorial/05-custom-actions.md
+- docs/getting-started/tutorial/06-nested-resources.md
+- docs/getting-started/tutorial/07-customizing-ui.md
+- docs/getting-started/tutorial/index.md
+- docs/guides/adding-resources.md
+- docs/guides/authentication.md
+- docs/guides/authorization.md
+- docs/guides/creating-packages.md
+- docs/guides/custom-actions.md
+- docs/guides/index.md
+- docs/guides/multi-tenancy.md
+- docs/guides/nested-resources.md
+- docs/guides/search-filtering.md
+- docs/guides/theming.md
 - docs/index.md
-- docs/markdown-examples.md
-- docs/modules/action.md
-- docs/modules/authentication.md
-- docs/modules/configuration.md
-- docs/modules/controller.md
-- docs/modules/core.md
-- docs/modules/definition.md
-- docs/modules/display.md
-- docs/modules/form.md
-- docs/modules/generator.md
-- docs/modules/index.md
-- docs/modules/interaction.md
-- docs/modules/package.md
-- docs/modules/policy.md
-- docs/modules/portal.md
-- docs/modules/query.md
-- docs/modules/resource_record.md
-- docs/modules/routing.md
-- docs/modules/table.md
-- docs/modules/ui.md
 - docs/public/CLAUDE.md
 - docs/public/android-chrome-192x192.png
 - docs/public/android-chrome-512x512.png
@@ -554,10 +566,29 @@ files:
 - docs/public/tutorial/plutonium-posts-detail-customized.png
 - docs/public/tutorial/plutonium-posts-detail.png
 - docs/public/tutorial/plutonium-publish-post.png
+- docs/reference/assets/index.md
+- docs/reference/controller/index.md
+- docs/reference/definition/actions.md
+- docs/reference/definition/fields.md
+- docs/reference/definition/index.md
+- docs/reference/definition/query.md
+- docs/reference/generators/index.md
+- docs/reference/index.md
+- docs/reference/interaction/index.md
+- docs/reference/model/features.md
+- docs/reference/model/index.md
+- docs/reference/policy/index.md
+- docs/reference/portal/index.md
+- docs/reference/views/forms.md
+- docs/reference/views/index.md
 - esbuild.config.js
 - exe/pug
 - gemfiles/rails_7.gemfile
 - gemfiles/rails_7.gemfile.lock
+- gemfiles/rails_8.0.gemfile
+- gemfiles/rails_8.0.gemfile.lock
+- gemfiles/rails_8.1.gemfile
+- gemfiles/rails_8.1.gemfile.lock
 - lib/active_model/validations/array_validator.rb
 - lib/active_model/validations/attached_validator.rb
 - lib/active_model/validations/url_validator.rb
@@ -633,6 +664,7 @@ files:
 - lib/generators/pu/pkg/package/templates/app/presenters/resource_presenter.rb.tt
 - lib/generators/pu/pkg/package/templates/app/query_objects/resource_query_object.rb.tt
 - lib/generators/pu/pkg/package/templates/lib/engine.rb.tt
+- lib/generators/pu/pkg/portal/USAGE
 - lib/generators/pu/pkg/portal/portal_generator.rb
 - lib/generators/pu/pkg/portal/templates/app/controllers/concerns/controller.rb.tt
 - lib/generators/pu/pkg/portal/templates/app/controllers/dashboard_controller.rb.tt
@@ -646,6 +678,7 @@ files:
 - lib/generators/pu/pkg/portal/templates/app/views/package/dashboard/index.html.erb
 - lib/generators/pu/pkg/portal/templates/config/routes.rb.tt
 - lib/generators/pu/pkg/portal/templates/lib/engine.rb.tt
+- lib/generators/pu/res/conn/USAGE
 - lib/generators/pu/res/conn/conn_generator.rb
 - lib/generators/pu/res/conn/templates/.keep
 - lib/generators/pu/res/conn/templates/app/controllers/resource_controller.rb.tt
@@ -659,6 +692,7 @@ files:
 - lib/generators/pu/res/model/templates/create_table_migration.rb.tt
 - lib/generators/pu/res/model/templates/model.rb.tt
 - lib/generators/pu/res/model/templates/module.rb.tt
+- lib/generators/pu/res/scaffold/USAGE
 - lib/generators/pu/res/scaffold/scaffold_generator.rb
 - lib/generators/pu/res/scaffold/templates/.keep
 - lib/generators/pu/res/scaffold/templates/controller.rb.tt
@@ -719,6 +753,7 @@ files:
 - lib/generators/pu/rodauth/templates/app/views/rodauth_mailer/webauthn_authenticator_added.text.erb
 - lib/generators/pu/rodauth/templates/app/views/rodauth_mailer/webauthn_authenticator_removed.text.erb
 - lib/generators/pu/rodauth/templates/config/initializers/rodauth.rb.tt
+- lib/generators/pu/rodauth/templates/config/initializers/url_options.rb
 - lib/generators/pu/rodauth/templates/db/migrate/create_rodauth.rb.tt
 - lib/generators/pu/rodauth/templates/db/migrate/install_rodauth.rb.tt
 - lib/generators/pu/rodauth/templates/lib/tasks/rodauth_admin.rake.tt
@@ -732,6 +767,8 @@ files:
 - lib/generators/pu/service/sidekiq/templates/app/sidekiq/sidekiq_job.rb
 - lib/generators/pu/service/sidekiq/templates/config/initializers/sidekiq.rb
 - lib/generators/pu/service/sidekiq/templates/config/sidekiq.yml
+- lib/generators/pu/skills/sync/USAGE
+- lib/generators/pu/skills/sync/sync_generator.rb
 - lib/plutonium.rb
 - lib/plutonium/action/README.md
 - lib/plutonium/action/base.rb

data/brakeman.ignore

@@ -1,28 +0,0 @@
-{
-  "ignored_warnings": [
-    {
-      "warning_type": "Cross-Site Request Forgery",
-      "warning_code": 7,
-      "fingerprint": "1cb8570b8c91f38317cdf909e01e7016359846174f427e86011633c344d30fc3",
-      "check_name": "ForgerySetting",
-      "message": "`protect_from_forgery` should be called in `Plutonium::Resource::Controller`",
-      "file": "lib/plutonium/resource/controller.rb",
-      "line": 10,
-      "link": "https://brakemanscanner.org/docs/warning_types/cross-site_request_forgery/",
-      "code": null,
-      "render_path": null,
-      "location": {
-        "type": "controller",
-        "controller": "Plutonium::Resource::Controller"
-      },
-      "user_input": null,
-      "confidence": "High",
-      "cwe_id": [
-        352
-      ],
-      "note": "Tests confirm csrf tokens are being verified. False flag."
-    }
-  ],
-  "updated": "2024-02-24 17:32:51 +0000",
-  "brakeman_version": "6.1.2"
-}

data/docs/api-examples.md

@@ -1,49 +0,0 @@
----
-outline: deep
----
-
-# Runtime API Examples
-
-This page demonstrates usage of some of the runtime APIs provided by VitePress.
-
-The main `useData()` API can be used to access site, theme, and page data for the current page. It works in both `.md` and `.vue` files:
-
-```md
-<script setup>
-import { useData } from 'vitepress'
-
-const { theme, page, frontmatter } = useData()
-</script>
-
-## Results
-
-### Theme Data
-<pre>{{ theme }}</pre>
-
-### Page Data
-<pre>{{ page }}</pre>
-
-### Page Frontmatter
-<pre>{{ frontmatter }}</pre>
-```
-
-<script setup>
-import { useData } from 'vitepress'
-
-const { site, theme, page, frontmatter } = useData()
-</script>
-
-## Results
-
-### Theme Data
-<pre>{{ theme }}</pre>
-
-### Page Data
-<pre>{{ page }}</pre>
-
-### Page Frontmatter
-<pre>{{ frontmatter }}</pre>
-
-## More
-
-Check out the documentation for the [full list of runtime APIs](https://vitepress.dev/reference/runtime-api#usedata).

data/docs/guide/claude-code-guide.md

@@ -1,74 +0,0 @@
----
-title: Claude Code Guide for Plutonium Development
----
-
-<script setup>
-import { withBase } from 'vitepress'
-</script>
-
-# Claude Code Guide for Plutonium Development
-
-This page provides comprehensive development guidance for building Plutonium applications effectively. This guide is designed to help AI assistants and developers understand the framework's patterns and best practices.
-
-## Quick Start
-
-**Download the CLAUDE.md File**: <a :href="withBase('/CLAUDE.md')" target="_blank">📄 CLAUDE.md</a>
-
-**Or download directly from your terminal**:
-
-::: code-group
-
-```bash [Unix/Linux/macOS/WSL]
-curl -o CLAUDE.md https://radioactive-labs.github.io/plutonium-core/CLAUDE.md
-```
-
-```cmd [Windows]
-curl -o CLAUDE.md https://radioactive-labs.github.io/plutonium-core/CLAUDE.md
-```
-
-:::
-
-## Using This Guide
-
-Claude Code uses CLAUDE.md files for project-specific context:
-
-1. **Download the guide**: Right-click the link above and "Save As" to download the `CLAUDE.md` file
-2. **Place in your project root** as `CLAUDE.md`
-3. **Claude Code automatically loads** this file for project context
-4. **Enhance with your own instructions** by adding project-specific details
-
-The guide provides comprehensive patterns and examples for building Plutonium applications with AI assistance.
-
-## What's Included
-
-The CLAUDE.md guide contains comprehensive guidelines for:
-
-### 🏗️ **Framework Architecture**
-- Resource-oriented development patterns
-- Package architecture (Feature & Portal packages)
-- Component-based UI with Phlex
-- Business logic through Interactions
-
-### 📝 **Resource Development**
-- **Auto-detection philosophy** - Field types are automatically detected from models
-- **Definition patterns** - Only override when needed
-- **Policy-based authorization** - Fine-grained permissions
-- **Interaction-driven business logic** - Encapsulated operations
-
-### 🔧 **Development Patterns**
-- **Generator commands** for scaffolding
-- **Authentication setup** with Rodauth
-- **Multi-tenancy** with entity scoping
-- **Query objects** for filtering and search
-
-### 🎨 **UI Customization**
-- **Component architecture** with Phlex
-- **Custom display blocks** with `phlexi_tag`
-- **Conditional rendering** with context awareness
-- **Layout customization** patterns
-
-### ⚡ **Best Practices**
-- **Performance optimization** techniques
-- **Security guidelines** and defaults
-- **Code organization** principles
-- **Development workflow** recommendations

data/docs/guide/deep-dive/authorization.md

@@ -1,189 +0,0 @@
-# Deep Dive: Authorization
-
-Plutonium provides a robust authorization system built on top of [Action Policy](https://actionpolicy.evilmartians.io/). It's designed to be secure by default while offering fine-grained control over every aspect of your application's access control.
-
-## Core Principles
-
-Authorization in Plutonium is handled by **Policy** classes. Every resource should have a corresponding policy that inherits from `Plutonium::Resource::Policy`.
-
-A policy's primary job is to answer the question: "Can the current `user` perform this `action` on this `record`?"
-
-```ruby
-class PostPolicy < Plutonium::Resource::Policy
-  # Can the user see a list of posts?
-  def index?
-    true # Everyone can see the list
-  end
-
-  # Can the user update this specific post?
-  def update?
-    # `record` is the post instance.
-    # `user` is the current authenticated user.
-    record.author == user || user.admin?
-  end
-
-  # ... other permissions
-end
-```
-
-## Secure by Default: The Permission Chain
-
-Plutonium policies are secure by default. If a permission is not explicitly granted, it's denied. This is achieved through a clear inheritance chain.
-
-::: code-group
-```ruby [Core Permissions]
-# These are the base permissions.
-# They both default to `false`. You MUST override them.
-def create?
-  false
-end
-
-def read?
-  false
-end
-```
-```ruby [Derived Permissions]
-# These permissions inherit from the core ones.
-# You can override them for more granular control.
-def update?
-  create?
-end
-
-def destroy?
-  create?
-end
-
-def index?
-  read?
-end
-
-def show?
-  read?
-end
-```
-:::
-
-::: danger Always Define Core Permissions
-Because `create?` and `read?` default to `false`, you must define them in your policy to grant any access. If `create?` is `false`, then `update?` and `destroy?` will also be `false` unless you explicitly override them.
-:::
-
-## Attribute & Association Permissions
-
-Beyond actions, policies also control access to a resource's data at a granular level.
-
-### Attribute Permissions
-
-Attribute permissions control which fields a user can see or submit in a form. They follow a similar inheritance chain.
-
-::: code-group
-```ruby [Read Attributes]
-# Controls which fields are returned for `index` and `show` actions.
-def permitted_attributes_for_read
-  # By default, auto-detects all columns in development,
-  # but MUST be overridden for production.
-end
-```
-```ruby [Create/Update Attributes]
-# Controls which fields are allowed in `create` and `update` actions.
-def permitted_attributes_for_create
-  # By default, auto-detects columns (minus some system ones)
-  # in development, but MUST be overridden for production.
-end
-
-def permitted_attributes_for_update
-  # Inherits from `permitted_attributes_for_create` by default.
-  permitted_attributes_for_create
-end
-```
-:::
-
-::: warning Override in Production
-The default auto-detection for attributes only works in development to speed up initial scaffolding. You **must** override `permitted_attributes_for_create` and `permitted_attributes_for_read` in your policies for them to work in production.
-:::
-
-### Association Permissions
-
-By default, no associations are permitted. You must explicitly list which related resources can be included.
-
-```ruby
-class PostPolicy < Plutonium::Resource::Policy
-  def permitted_associations
-    [:comments, :author]
-  end
-end
-```
-
-## Scoping: Filtering Collections
-
-A policy's `relation_scope` is used to filter down a collection of records to only what the current user should see. This is applied automatically on `index` pages.
-
-::: code-group
-```ruby [Simple Scope]
-class PostPolicy < Plutonium::Resource::Policy
-  relation_scope do |relation|
-    if user.admin?
-      relation # Admins see all posts
-    else
-      # Others only see their own posts or published posts
-      relation.where(author: user).or(relation.where(published: true))
-    end
-  end
-end
-```
-```ruby [Multi-Tenant Scope]
-class PostPolicy < Plutonium::Resource::Policy
-  relation_scope do |relation|
-    # `super` applies the portal's entity scoping first
-    # e.g., `relation.associated_with(current_organization)`
-    relation = super(relation)
-
-    # Then, apply additional logic
-    if user.admin?
-      relation
-    else
-      relation.where(published: true)
-    end
-  end
-end
-```
-:::
-
-## Authorization Context
-
-Policies have access to a `context` object. By default, Plutonium provides two:
-
--   **`user`**: The current authenticated user. This is **required**.
--   **`entity_scope`**: The current portal's multi-tenancy record (e.g., the current `Organization`). This is optional.
-
-You can add your own custom context objects for more complex scenarios.
-
-::: details Adding Custom Context
-Imagine you have a separate `Ability` system that you also want to check.
-
-**1. Define the context in the Policy:**
-```ruby
-class PostPolicy < ResourcePolicy
-  authorize :ability, allow_nil: true
-
-  def promote?
-    # You can now use `ability` in your permission checks
-    user.admin? && ability&.can?(:promote, record)
-  end
-end
-```
-
-**2. Provide the context from the Controller:**
-```ruby
-class PostsController < ResourceController
-  # This tells the policy how to find the `ability` object.
-  authorize :ability, through: :current_ability
-
-  private
-
-  def current_ability
-    # Your custom logic to find the ability object
-    Ability.new(user)
-  end
-end
-```
-:::