blind_index
SecureHeaders
| blind_index | SecureHeaders | |
|---|---|---|
| 7 | 2 | |
| 577 | 3,128 | |
| - | 0.2% | |
| 5.1 | 4.2 | |
| 3 months ago | 8 months ago | |
| Ruby | Ruby | |
| MIT License | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
blind_index
- Blind Index: Securely search encrypted database fields
-
Advanced Usages of Devise for Rails
The first step is to install the gem with bundle add authtrail. Additionally, since you'll be storing user-identifiable information such as emails and IP addresses in your app database, it's highly recommended that you encrypt this data in production using a combination of Lockbox and Blindindex gems.
-
Rails application boilerplate for fast MVP development
lockbox and blind_index for email fields encryption
-
Build an API in Rails with Authentication
Install lockbox and blind_index.
-
Question on encrypted content
and https://github.com/ankane/blind_index for the search function
- DB Encryption
-
Rails 7 introduces Active Record Encryption
While I haven't used this next feature, it can also be used with blind_index gem to allow some forms of searching encrypted columns based on blind index algorithms.
SecureHeaders
-
4 Essential Security Tools To Level Up Your Rails Security
The secure_headers gem will automatically apply several headers that are related to security. This includes:
-
Rails application boilerplate for fast MVP development
add secure_headers
What are some alternatives?
lockbox - Modern encryption for Ruby and Rails
Metasploit - Metasploit Framework
attr_encrypted - Generates attr_accessors that encrypt and decrypt attributes
Rack::Protection - NOTE: This project has been merged upstream to sinatra/sinatra
Devise - Flexible authentication solution for Rails with Warden.
BeEF - The Browser Exploitation Framework Project
authtrail - Track Devise login activity
Rack::ContentSecurityPolicy
Pundit - Minimal authorization through OO design and pure Ruby classes
RbNaCl - Ruby FFI binding to the Networking and Cryptography (NaCl) library (a.k.a. libsodium)
FriendlyId - FriendlyId is the “Swiss Army bulldozer” of slugging and permalink plugins for ActiveRecord. It allows you to create pretty URL’s and work with human-friendly strings as if they were numeric ids for ActiveRecord models.
Hashids - A small Ruby gem to generate YouTube-like hashes from one or many numbers. Use hashids when you do not want to expose your database ids to the user.