Closed. This question is opinion-based. It is not currently accepting answers.
Want to improve this question? Update the question so it can be answered with facts and citations by editing this post.
Closed 6 years ago.
Improve this question
What are the most popular practices for developing authtentication systems that will are used for a simple login and logout system. Are developing custom authentication systems more popular or is it to use gems like devise, clearance, authlogic? The authentication system I am looking to build is pretty simple. So, I'd like to know what is the most popular solution when developing authentication systems?
You can roll out a basic authentication with bcrypt (good resource here). Bcrypt serves the purpose if your authentication system is not that complex and is limited to a few data models (say login to /admin section).
If you are looking for out of the box stable gem, devise is the standard choice with good community around it and the gem is stable with multiple releases and plays out well with other gems (admin gems like rails_admin, activeadmin) as it handles everything from data migrations to session controllers with few configurations.
Devise is the far more popular than others. It will fit if you need thorough customizable authentication. And it's not so hard to use so you can choose it when you need some simple authentication solution.
Related
Closed. This question does not meet Stack Overflow guidelines. It is not currently accepting answers.
We don’t allow questions seeking recommendations for books, tools, software libraries, and more. You can edit the question so it can be answered with facts and citations.
Closed 5 years ago.
Improve this question
I've been a rails developer for a while and familiar with devise gem for authentication and kaminari gem for pagination.
As you know, these two gems are almost essential for building a rails web application.
Now, I would start to build a web application using Phoenix.
Is there any hex to borrow the power of authentication and pagination on Phoenix like devise and kaminari on Rails?
For authentication you can use combination of Guardian, bcrypt_elixir and comeonin. For the pagination you can use kerosine or scrivener.
It seems that there have been some structural changes on Phoenix 1.3. You can check this tutorial out for authentication. Also there is this canary module for authorization. It seems similar to cancan gem in rails.
However, no idea for a kaminari look-like module as I'm also a beginner in Elixin / Phoenix framework.
Two battle proven and most solid choices for me are - Guardian for JWT based auth and Scrivener as pagination engine.
However, in Phoenix both functionalities are quite easy to handle manually without external libs and this is what I would suggest the most.
Closed. This question is opinion-based. It is not currently accepting answers.
Want to improve this question? Update the question so it can be answered with facts and citations by editing this post.
Closed 8 years ago.
Improve this question
out of interest - is devise usable for large scale applications (e.g. Groupon) or better write your own authentication?
yes..devise in used in many large scale applications...moreover it has nothing to do much about scaling as devise will only be used to handle signin/signout/email verification/password management etc which can be also reffered as ONE TIME CONFIGURATION.so even if there are million users...it wont affect your performance as you would be dealing with only one table users.Recenlty i used devise for an application of online students association involving more than 40k on weekly basis..thats a proof
Spree uses devise for authentication, so a lot of the big e-comerce sites are actually running on devise, we never had any issues with it with any of our clients with large user bases. I used other gems from Plataformatec as well, and they are pretty solid. Good luck with your project!
Closed. This question is opinion-based. It is not currently accepting answers.
Want to improve this question? Update the question so it can be answered with facts and citations by editing this post.
Closed 9 years ago.
Improve this question
I was wondering what is the best way to handle authentication and what is the process in a RoR app? I am looking to obtain a users email address and password of some number of characters. I stumbled across Devise, would this help?
I am fairly new to the RoR world.
Thanks.
I personally use Devise for all my projects and I think it's the most popular auth solution for Rails (and Ruby toolbox search seens to confirm that)
Big advantage of Devise is that it works with Omniauth which has plugins to most popular 3rd party auth solutions (Google, Facebook, Github, etc)
Devise gem is usually used, here is a screencast on it: http://railscasts.com/episodes/209-introducing-devise
also you can do it from scratch if you only need some simple logic, here is another screencast on that topic: http://railscasts.com/episodes/250-authentication-from-scratch
hope it helps
Pick Your Poison
There are quite a few different ways to provide authentication in Rails, from rolling your own to using any number of publicly-available gems. There's no one right answer; you'll just need to make a selection based on the features you need, as well as the tools that you think will be the most well-supported.
Closed. This question is opinion-based. It is not currently accepting answers.
Want to improve this question? Update the question so it can be answered with facts and citations by editing this post.
Closed 8 years ago.
Improve this question
I've been building Rails Application Prototypes and Loving it. I'm aware that there are many pre-build libraries to utilize in projects.
While, I'm not a fan of using plugins for managing login and user authentication, which is core part of the app, aside from that what other chores can be dealt with plugins/gems, like pagination etc.
What do you use in your day to day rails development.
There are times when using freely available plugins/gems (libraries) may not be suitable but since it is quite trivial to review the code of these, in the long run you will find that many of these gems can be quite handy. A lot of these are also actively kept up to date by the community and this is also an important point as Rails in particular has been evolving at a fairly rapid pace.
For example, Devise has been around for quite sometime and if you look at the amount of support this tends to translate into a commensurate number of blog articles and how-to's on the web; even here on SO Devise in particular gets many questions. It also has many modules that you can incorporate within your app, or just disable if you do not require their functionality.
Rather than going into the benefits of plugins, I suggest you visit http://rubygems.org/ as it let's you go through the various gems based on their particular functionality.
Personally, I use Devise as well as authentication from scratch, Omniauth, Kaminari (pagination), CanCan for ACL and quite a bit more. This is the Gemfile from one of my recent apps and it should give you a decent idea of what I use.
Being familiar with popular gems is quite handy as it means rather than having to 're-invent the wheel', when it simply comes to getting the job done... you do have options - especially when it's not the sole purpose of your app. Certainly though, if you're up to creating custom plugins or decide to pull out reusable code into plugins, do share them with the community.
Hope this helps!
Closed. This question does not meet Stack Overflow guidelines. It is not currently accepting answers.
We don’t allow questions seeking recommendations for books, tools, software libraries, and more. You can edit the question so it can be answered with facts and citations.
Closed 7 years ago.
Improve this question
Where can I dig up a Ruby or Ruby on Rails library for SAML 2.0 SSO. I have a set of enterprise applications that are to be built but need to have federated login from a central authentication system. I have used SAML 1.1 and SAML 2.0 in a Microsoft .Net environment but have yet to see a library that handles both SAML Providers and Consumers for Ruby on Rails. Can someone point me in the right direction or tell me if I need to build the library myself?
I played with this one once: https://github.com/onelogin/ruby-saml
It might be what you're looking for.
AssureBridge SSOExchange is a service that supports SAML 1.1 and 2.0. It is available with a simple Ruby connector that integrates simply into Ruby apps without the need for the developer to know any SAML. It typically requires only a few lines of code in you r application.
Check it out at: http://www.assurebridge.com/integrations/
The best places to look are Ruby Toolbox and Rubygems.org - if it's not there, you may try Github, but your chances are slim now.
My rule is: estimate how long it would take you to build it yourself. If you have spend a reasonable amount of time (say, 10%) on finding an existing solution, but none is out there (or working), then code it yourself.