Clearance VS OmniAuth

https://github.com/thoughtbot/clearance It is simple and good. You can also customize it easily.

Clearance has been better for most of my projects. Its got a cleaner implementation that Devise, and comes with a generator that will optionally dump all of the basic routes and views into the standard locations which you can then edit at will.

I tend to suggest Clearance for Rails apps that need a more focused toolset. It may not do everything that Devise does, but it definitely works well with Rails 7. https://rubygems.org/gems/clearance/versions/2.5.0

I've found a much simpler/cleaner authentication gem is Clearance. Devise does just about everything, but Clearance is more opinionated so out of the box it does more of what you normally want.

...because some folks prefer clearance to devise! :-D

Clearance is a Rails authentication with email & password. It is intended to be small, simple, and well-tested. It has opinionated defaults but is intended to be easy to override. 3,321 stars by now

I've seen the Omniauth gem. But based on this gist it seems this gem is more suitable for web apps. Here is the quote from that gist.

In many cases, this convenient multi-provider authentication is powered by a library called OmniAuth. OmniAuth is a flexible and powerful authentication library for Ruby that allows you to integrate with multiple external providers.

Omniauthable: adds OmniAuth support.

:omniauthable is a special module in devise but it's also in charge of a very common feature: letting users log in by using a user's session from another website, e.g. Facebook, Google, Twitter, Github, etc. It's kind of delegating authentication work to those big tech companies. Nowadays, most companies follow OAuth's standards to build the authentication workflow (OAuth always means OAuth 2.0 in this article). However, each company may have different dialects when you communicate via OAuth. This module is called :omniauthable because devise has integrated with the gem omniauth, which provides a unified interface to realize the login process via OAuth.

If you want more details, the google authentication is one of many strategies for OmniAuth.

# https://github.com/omniauth/omniauth # https://github.com/settings/applications/new # echo > config/initializers/omniauth.rb # config/initializers/omniauth.rb Rails.application.config.middleware.use OmniAuth::Builder do provider :github, "GITHUB_ID", "GITHUB_SECRET" end

In general, even though the Hanami ecosystem lacks any "plug-and-play" solutions such as Devise, you can use many existing libraries not tightly coupled to Ruby on Rails. For authentication, you can use Warden, OmniAuth or Rodauth. For uploads there is Shrine. The pagination is built into ROM. Integration with exception catchers such as Rollbar is easy.

In this article, I show how to set up the rodauth-omniauth gem I had created in a Rails app, and customize the flow. This gem provides a much more integrated solution compared to Devise, in the sense that it implements the OmniAuth callback phase, automatically registering the user and/or logging them in, and persisting their external identities. It supports multiple providers, and essentially codifies this OmniAuth guide.

OmniAuth provides a standardized interface for authenticating with various external providers. Once the user authenticates with the provider, it's up to us developers to handle the callback and implement actual login and registration into the app. There is a wiki page laying out various scenarios that need to be handled if you want to support multiple providers, showing that it's by no means a trivial task.

My memory is failing me on the specifics, but I posted this issue on roda, which then led to this other issue in omniauth, plus 2 MRs on omniauth and rack-protection for doc updates.