How to develop an authentication/authorization plugin that I can use for multiple projects
48 views
Skip to first unread message
Mati M.
May 21, 2013, 3:08:37 PM5/21/13
to rubyonra...@googlegroups.com
I am a newbie for RoR but I liked it so far. For the current project I
already developed an authenticaion page where the user will be
authenticated before and after login. I know that I will be doing more
projects on RoR in the coming weeks as well and I don't want to copy
paste my codes to enable authentication in my projects. How can I create
an authentication system where I can use it in multiple projects. Are
there any plugins already been developed?
You should also consider that, the authentication system also be on
call (it should be listening everytime the user goes from one page to
another page by checking if s/he is authorized and also the session
haven't expired yet and so on.). That means I still need the
authentication/authorization system to be there even after login. And
how do I integrate it with other ruby projects I will be working on. I
hope it makes sense.
The database where users will be authorized might be the same or
different based on the projects.
Thank you
--
Posted via http://www.ruby-forum.com/.
already developed an authenticaion page where the user will be
authenticated before and after login. I know that I will be doing more
projects on RoR in the coming weeks as well and I don't want to copy
paste my codes to enable authentication in my projects. How can I create
an authentication system where I can use it in multiple projects. Are
there any plugins already been developed?
You should also consider that, the authentication system also be on
call (it should be listening everytime the user goes from one page to
another page by checking if s/he is authorized and also the session
haven't expired yet and so on.). That means I still need the
authentication/authorization system to be there even after login. And
how do I integrate it with other ruby projects I will be working on. I
hope it makes sense.
The database where users will be authorized might be the same or
different based on the projects.
Thank you
--
Posted via http://www.ruby-forum.com/.
Robert Walker
May 21, 2013, 3:21:43 PM5/21/13
to rubyonra...@googlegroups.com
Mati M. wrote in post #1109763:
FYI: Most newcomers, and veterans alike, don't typically reinvent the
authentication wheel. They instead use one of the excellent
authentication gems that already exist.
https://github.com/plataformatec/devise
https://github.com/intridea/omniauth
> You should also consider that, the authentication system also be on
> call (it should be listening everytime the user goes from one page to
> another page by checking if s/he is authorized and also the session
> haven't expired yet and so on.). That means I still need the
> authentication/authorization system to be there even after login. And
> how do I integrate it with other ruby projects I will be working on. I
> hope it makes sense.
>
> The database where users will be authorized might be the same or
> different based on the projects.
You're really talking about two separate things here. Authentication and
Authorization. I personally use OmniAuth for authentication and CanCan
for authorization. To me this is an excellent combination for most of my
needs.
https://github.com/ryanb/cancan
> I am a newbie for RoR but I liked it so far. For the current project I
> already developed an authenticaion page where the user will be
> authenticated before and after login. I know that I will be doing more
> projects on RoR in the coming weeks as well and I don't want to copy
> paste my codes to enable authentication in my projects. How can I create
> an authentication system where I can use it in multiple projects. Are
> there any plugins already been developed?
http://guides.rubygems.org/make-your-own-gem/
> already developed an authenticaion page where the user will be
> authenticated before and after login. I know that I will be doing more
> projects on RoR in the coming weeks as well and I don't want to copy
> paste my codes to enable authentication in my projects. How can I create
> an authentication system where I can use it in multiple projects. Are
> there any plugins already been developed?
FYI: Most newcomers, and veterans alike, don't typically reinvent the
authentication wheel. They instead use one of the excellent
authentication gems that already exist.
https://github.com/plataformatec/devise
https://github.com/intridea/omniauth
> You should also consider that, the authentication system also be on
> call (it should be listening everytime the user goes from one page to
> another page by checking if s/he is authorized and also the session
> haven't expired yet and so on.). That means I still need the
> authentication/authorization system to be there even after login. And
> how do I integrate it with other ruby projects I will be working on. I
> hope it makes sense.
>
> The database where users will be authorized might be the same or
> different based on the projects.
Authorization. I personally use OmniAuth for authentication and CanCan
for authorization. To me this is an excellent combination for most of my
needs.
https://github.com/ryanb/cancan
Mati M.
May 21, 2013, 3:38:00 PM5/21/13
to rubyonra...@googlegroups.com
Thanks Robert.
So can I use https://github.com/ryanb/cancan for both authentication
and authorization ? Or do I have to use 2 gems?
Thanks
So can I use https://github.com/ryanb/cancan for both authentication
and authorization ? Or do I have to use 2 gems?
Thanks
Mati M.
May 21, 2013, 3:38:33 PM5/21/13
to rubyonra...@googlegroups.com
>
> You're really talking about two separate things here. Authentication and
> Authorization. I personally use OmniAuth for authentication and CanCan
> for authorization. To me this is an excellent combination for most of my
> needs.
>
> https://github.com/ryanb/cancan
> You're really talking about two separate things here. Authentication and
> Authorization. I personally use OmniAuth for authentication and CanCan
> for authorization. To me this is an excellent combination for most of my
> needs.
>
> https://github.com/ryanb/cancan
Thanks Robert.
So can I use https://github.com/ryanb/cancan for both authentication
and authorization ? Or do I have to use 2 gems?
Thanks
So can I use https://github.com/ryanb/cancan for both authentication
and authorization ? Or do I have to use 2 gems?
Thanks
Robert Walker
May 21, 2013, 4:35:42 PM5/21/13
to rubyonra...@googlegroups.com
Mati M. wrote in post #1109768:
current_user method by default (the name can be customized to whatever
your authentication system provides).
This is actually a good thing. It's just good programming practice, in
general, to separate concerns this way.
>>
>> You're really talking about two separate things here. Authentication and
>> Authorization. I personally use OmniAuth for authentication and CanCan
>> for authorization. To me this is an excellent combination for most of my
>> needs.
>>
>> https://github.com/ryanb/cancan
>
> Thanks Robert.
>
> So can I use https://github.com/ryanb/cancan for both authentication
> and authorization ? Or do I have to use 2 gems?
CanCan is agnostic about authentication. It assumes you have a
>> You're really talking about two separate things here. Authentication and
>> Authorization. I personally use OmniAuth for authentication and CanCan
>> for authorization. To me this is an excellent combination for most of my
>> needs.
>>
>> https://github.com/ryanb/cancan
>
> Thanks Robert.
>
> So can I use https://github.com/ryanb/cancan for both authentication
> and authorization ? Or do I have to use 2 gems?
current_user method by default (the name can be customized to whatever
your authentication system provides).
This is actually a good thing. It's just good programming practice, in
general, to separate concerns this way.
Wins Lin
May 22, 2013, 3:37:46 PM5/22/13
to rubyonra...@googlegroups.com
Cancan has 166 open issues on Github
Robert Walker
May 22, 2013, 4:08:02 PM5/22/13
to rubyonra...@googlegroups.com
Wins Lin wrote in post #1109864:
Are you saying CanCan is broken?
> Cancan has 166 open issues on Github
The Linux Kernel currently has 1789 open issues. So what's you point?
Are you saying CanCan is broken?
Robert Walker
May 22, 2013, 4:24:48 PM5/22/13
to rubyonra...@googlegroups.com
Robert Walker wrote in post #1109869:
smart ass, but I'm using CanCan and I really need to know if the current
1.6.10 version is really broken.
> Wins Lin wrote in post #1109864:
>> Cancan has 166 open issues on Github
>
> The Linux Kernel currently has 1789 open issues. So what's you point?
> Are you saying CanCan is broken?
BTW that was a serious question. Might have sounded like I was being a
>> Cancan has 166 open issues on Github
>
> The Linux Kernel currently has 1789 open issues. So what's you point?
> Are you saying CanCan is broken?
smart ass, but I'm using CanCan and I really need to know if the current
1.6.10 version is really broken.
Reply all
Reply to author
Forward
0 new messages