I am a the point now where I have to add user authentification to my application. Anyone can point me toward an easy to use / secure library? I know about ActiveRBAC and was wondering if there is anything else that I should consider. Thanks! -- Posted via http://www.ruby-forum.com/.
What are you requirements?
I like to keep it simple, so check out the rails recipe book for really simple, or acts_as_authenticated for the next step up in complexity, but less complex than most of the others. Alain Pilon wrote:> I am a the point now where I have to add user authentification to my > application. > > Anyone can point me toward an easy to use / secure library? I know about > ActiveRBAC and was wondering if there is anything else that I should > consider. > > Thanks! >
Hi, I am doing a ASP kind of application. I havent figured out the hosting server, but it will probably be a Linux box. I need to be able to manage roles/permission/groups. People are going to pay for the service, so it has to be very secure. Its my first time developping a "seriously" secure application. Hence the reason I want to use a popular framework. Any other things I need to consider? Thanks -- Posted via http://www.ruby-forum.com/.
I tend to agree with Jim. I usually roll my own (authentication that is) and I''ve also used acts_as_authenticated, which "just works" and is straightforward. There''s a ton of options out there, you''ll just have to evaluate them and see if they match up to your requirements. Michael
I found that this one was pretty easy/straightforward to implement. http://penso.info/rails/auth_generator/ -- Posted via http://www.ruby-forum.com/.
The rails recipe book also has an RBAC that is very simple to implement, I slipped that into my app on top of acts_as_authenticated in a few hours. I also like Bill Katz''s approach, although I have not implemented it (http://www.billkatz.com/authorization). I have posted a recipe for an admin page for managing Rights and Roles on my blog, http://blog.wolfman.com/articles/2006/05/20/role-based-authentication-admin-page Alain Pilon wrote:> Hi, > > I am doing a ASP kind of application. I havent figured out the hosting > server, but it will probably be a Linux box. > > I need to be able to manage roles/permission/groups. People are going to > pay for the service, so it has to be very secure. Its my first time > developping a "seriously" secure application. Hence the reason I want to > use a popular framework. > > Any other things I need to consider? > > Thanks >
Sorry my blog link was not working (I changed the date which changed the link!) It now works and is http://blog.wolfman.com/articles/2006/05/20/role-based-authentication-admin-page Jim Morris wrote:> The rails recipe book also has an RBAC that is very simple to implement, I slipped that > into my app on top of acts_as_authenticated in a few hours. > > I also like Bill Katz''s approach, although I have not implemented it > (http://www.billkatz.com/authorization). > > I have posted a recipe for an admin page for managing Rights and Roles on my blog, > http://blog.wolfman.com/articles/2006/05/20/role-based-authentication-admin-page > > > Alain Pilon wrote: >> Hi, >> >> I am doing a ASP kind of application. I havent figured out the hosting >> server, but it will probably be a Linux box. >> >> I need to be able to manage roles/permission/groups. People are going to >> pay for the service, so it has to be very secure. Its my first time >> developping a "seriously" secure application. Hence the reason I want to >> use a popular framework. >> >> Any other things I need to consider? >> >> Thanks >> > _______________________________________________ > Rails mailing list > Rails@lists.rubyonrails.org > http://lists.rubyonrails.org/mailman/listinfo/rails > > >
I prefer to write it for each application. I just did a writeup on basic user authentication. It covers some of the patterns that I''ve been using for authentication: http://www.aidanf.net/rails_user_authentication_tutorial cheers, AF On 5/29/06, Alain Pilon <mantat@videotron.ca> wrote:> > I am a the point now where I have to add user authentification to my > application. > > Anyone can point me toward an easy to use / secure library? I know about > ActiveRBAC and was wondering if there is anything else that I should > consider. > > Thanks! > > -- > Posted via http://www.ruby-forum.com/. > _______________________________________________ > Rails mailing list > Rails@lists.rubyonrails.org > http://lists.rubyonrails.org/mailman/listinfo/rails >-- ------------------------------- http://www.aidanf.net ------------------------------- -------------- next part -------------- An HTML attachment was scrubbed... URL: http://wrath.rubyonrails.org/pipermail/rails/attachments/20060530/9851b46d/attachment-0001.html