I am making and web app in Ruby on Rails. The question I have is - if I installed devise do I need to install pundit as well to control user access?
I am talking about simple access to a current user profile or the only author of the article can edit or remove it.
Would I need Pundit for that?
No you don't have to use Pundit for your situation.
Devise sets up simple authentication system for you. Pundit uses policy to set up complicated access control.
In your situation, you could simply check if @post.author == current_user.
On the other hand, you can also use Pundit's def update authorize @post end.