devise-two-factor
Clearance
devise-two-factor | Clearance | |
---|---|---|
5 | 7 | |
1,186 | 3,672 | |
0.5% | 0.2% | |
6.0 | 6.2 | |
about 1 month ago | 5 days ago | |
Ruby | Ruby | |
MIT License | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
devise-two-factor
-
Rails Authentication for Compliance
Your authentication mechanism should include multiple factors, something the user knows and something the user has. If you are using Devise, you can use the devise-two-factor gem. If you have custom authentication, you can use the rotp gem to generate OTP codes and verify those during login.
-
Ask HN: Why doesn't MFA as a stand alone API exist?
In Ruby-on-Rails it's part of the authentication framework Devise https://github.com/tinfoil/devise-two-factor and related modules including creating QR codes, backup codes etc. PHP Laraval has similar libraries https://jetstream.laravel.com/2.x/features/two-factor-authen...
Auth0 and similar commercial companies might very good at marketing. Try replacing "API" with "library" or a programming language name.
> It's just not valuable enough for anyone to create
For a commercial API you need to charge $10 USD/month, or equivalent in terms of per-API-call, otherwise your service won't be profitable. You call 5 US cent already expensive, so I think you're right, it's not valuable enough.
-
I resurrected devise-otp from the dead
I've used https://github.com/tinfoil/devise-two-factor before – it's good to know there is a maintained alternative that implements the UI already and is compatible to Rails 7.
-
What's going on with Devise for Rails 7 ?!
Are you referring to the devise two factor authentication gem at https://github.com/tinfoil/devise-two-factor? If so, I have posted a ticket that modifies the gem to use the Rails 7 Active Record encryption capabilities and some folks have been asking if a pull request could be created for it. There is some discussion going on in the issue thread on how to proceed. See https://github.com/tinfoil/devise-two-factor/issues/192 for details.
-
Modern 2FA gem for Devise
devise-two-factor: https://github.com/tinfoil/devise-two-factor
Clearance
- Devise 🥳
-
What is used for authentication in Rails nowadays?
https://github.com/thoughtbot/clearance It is simple and good. You can also customize it easily.
-
Devise. love it or hate it?
Clearance has been better for most of my projects. Its got a cleaner implementation that Devise, and comes with a generator that will optionally dump all of the basic routes and views into the standard locations which you can then edit at will.
-
What's going on with Devise for Rails 7 ?!
I tend to suggest Clearance for Rails apps that need a more focused toolset. It may not do everything that Devise does, but it definitely works well with Rails 7. https://rubygems.org/gems/clearance/versions/2.5.0
-
Simple, secure, low maintenance auth that doesn’t rely on Facebook, Google etc?
I've found a much simpler/cleaner authentication gem is Clearance. Devise does just about everything, but Clearance is more opinionated so out of the box it does more of what you normally want.
-
Why am I having such a bad time with Rails?
...because some folks prefer clearance to devise! :-D
-
26 most popular Ruby/Rails repositories on GitHub in July-August 2020
Clearance is a Rails authentication with email & password. It is intended to be small, simple, and well-tested. It has opinionated defaults but is intended to be easy to override. 3,321 stars by now
What are some alternatives?
active_model_otp - Adds methods to set and authenticate against one time passwords (Two-Factor Authentication). Inspired in AM::SecurePassword
Devise - Flexible authentication solution for Rails with Warden.
rodauth-rails - Rails integration for Rodauth authentication framework
Sorcery - Magical Authentication
rotp - Ruby One Time Password library
JWT - A ruby implementation of the RFC 7519 OAuth JSON Web Token (JWT) standard.
authentication-zero - An authentication system generator for Rails applications.
Authlogic - A simple ruby authentication solution.
warden - General Rack Authentication Framework
Knock - Seamless JWT authentication for Rails API
pwned - 😱 An easy, Ruby way to use the Pwned Passwords API.
OmniAuth - OmniAuth is a flexible authentication system utilizing Rack middleware.