devise-security
dumb-password-rules
devise-security | dumb-password-rules | |
---|---|---|
4 | 16 | |
569 | 2,975 | |
2.6% | -0.1% | |
6.6 | 6.9 | |
2 months ago | about 2 months ago | |
Ruby | Nunjucks | |
MIT License | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
devise-security
- Beware - Devise 4.9.1 and devise-security gem
-
Best authentication in 2022? Devise, Clearance, OAuth, anything else?
Rodauth is IMO the most feature-complete and the most stable. It ships with "enterprise"-grade features such as single session, session expiration, password expiration, password complexity requirements, disallowing common passwords, and disallowing password reuse (basically what devise-security extension provides).
-
Rails application boilerplate for fast MVP development
add devise-security
-
Devise only allow one session per user at the same time
An alternative implementation.... https://github.com/devise-security/devise-security/blob/master/lib/devise-security/models/session_limitable.rb
dumb-password-rules
-
Here's a roundup of the best UX and design links from the last few weeks, hope you find it useful! How to prioritise user problems, find better alternatives to dark patterns, understand hypotheses, manage difficult stakeholders, transcribe audio and draw the rest of the owl.
Dumb password rules – Naming and shaming the worst offenders.
-
Dumb Password Rules - a compilation of websites with dumb password rules
Yeah, someone updated their github readme, and they just said "there is an about page"
-
Show HN: A compilation of websites with dumb password rules
I'm glad you enjoy it! If you have any sites you like to add, please feel free to contribute. https://github.com/duffn/dumb-password-rules/blob/main/CONTR...
-
Paypal silently truncates passwords to 20 characters
https://github.com/duffn/dumb-password-rules has a list of sites with dumb password rules
-
Rund 230 Millionen Deezer-Datensätze geleakt
Gerade die "Großen" und vor allem Alle, die es schon vor dem Internet gab, sind oftmals ganz besonders beschissen in puncto Sicherheit. Siehe hierzu auch https://github.com/duffn/dumb-password-rules
- Passwortsicherheit bei HDI
-
The Stupidest Validation Rules
Related (about password rules):
https://github.com/duffn/dumb-password-rules
-
This is the worst password requirement I have ever seen
Dumb Password Rules
- Sending Spammers to Password Purgatory with MS Power Automate and CF Workers KV
- Ask HN: Website with worst UX or Registration experience
What are some alternatives?
graphql_devise - GraphQL interface on top devise_token_auth
weakpass - Weakpass collection of tools for bruteforce and hashcracking
Ahoy - Simple, powerful, first-party analytics for Rails
zxcvbn - Low-Budget Password Strength Estimation
Rack::Attack - Rack middleware for blocking & throttling
many-passwords - Default credentials list. 🐱💻 Leave a star if you like this project! (that motivates me)⭐️
Brakeman - A static analysis security vulnerability scanner for Ruby on Rails applications
scribble-diffusion - Turn your rough sketch into a refined image using AI
bullet - help to kill N+1 queries and unused eager loading
noya - The open design tools SDK. Try our new experimental wireframing tool! 👇
Pundit - Minimal authorization through OO design and pure Ruby classes
vscodium - binary releases of VS Code without MS branding/telemetry/licensing