Devise
Doorkeeper
Our great sponsors
Devise | Doorkeeper | |
---|---|---|
92 | 6 | |
23,681 | 5,246 | |
0.3% | 0.2% | |
7.1 | 7.5 | |
9 days ago | 6 days ago | |
Ruby | Ruby | |
MIT License | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Devise
-
Heroku Build Failure: error:0308010C:digital envelope routines::unsupported
[changelog] https://github.com/heartcombo/devise/blob/main/CHANGELOG.md [upgrade guide] https://github.com/heartcombo/devise/wiki/How-To:-Upgrade-to-Devise-4.9.0-%5BHotwire-Turbo-integration%5D
-
Using Action Policy for a Ruby on Rails App: The Basics
As much as this article is about user authorization, there's something important we need to cover: user authentication. Without it, any authorization policies we try to define later on will be useless. But there is no need to write authentication from scratch. Let's use Devise.
-
12 Ruby Gems to make your Ruby coding smoother
With around 50 new gems released daily, it is common to use trending libraries for managing everyday tasks. You probably use Devise for authentication, Cancan for authorization, Kaminari for pagination, or run tests with Rspec.
-
An Introduction to Devise for Ruby on Rails
Devise is an authentication library built on top of Warden, a Rack-based authentication framework.
-
Metaprogramming in Ruby: Advanced Level
devise: An authentication library designed for Rails
-
On what side project you guys are working on?
I used Devise, this is a Ruby on Rails app
- Unleash Devise-Enabling All Modules
-
Need help filling in some knowledge gaps (Turbo Streams)
Have a look at the change log for 4.9.0 here where the PR I linked was actually released: https://github.com/heartcombo/devise/blob/main/CHANGELOG.md.
-
Authentication, Roles, and Authorization... oh my.
I keep going back and forth between Devise and something a little more friendly like authentication-zero gem for authentication.
Doorkeeper
-
Best way for user auth with a Rails API?
The doorkeeper gem.
-
Zitadel: The best of Auth0 and Keycloak combined
Disclosure: I work for FusionAuth.
Depends on what you are looking for.
If you want a standalone auth server, you can use FusionAuth in docker/docker-compose: https://fusionauth.io/docs/v1/tech/installation-guide/docker
You can also package up a library; most major languages have one or more OAuth/OIDC libraries: https://github.com/doorkeeper-gem/doorkeeper for Ruby, https://spring.io/projects/spring-security for Spring/Java, https://oauth2.thephpleague.com/ for PHP, https://pypi.org/project/oauthlib/ for Python.
https://oauth.net/code/ has a further selection of libraries in a variety of languages.
-
Authelia is an open-source authentication/authorization server with 2FA/SSO
One thing that is missing from this list is open source language specific libraries. Projects such as https://oauthlib.readthedocs.io/en/latest/oauth2/server.html and https://github.com/doorkeeper-gem/doorkeeper
Depending on your use case, for example if you only have one application, you might be better off running something embedded in your app, or independent but using the same runtime/deployment environment. Then, when you are ready to add another app or integration, you should be able to introduce a standalone auth system more easily if appropriate (because all your auth interactions should be relatively standardized). I'm a big fan of standalone auth systems as a way to simplify access control and give a single view of a user/customer, but you can also succeed using open source embedded libraries.
When the moment comes to introduce a standalone system, you should consider a few dimensions (this list pulled from a previous comment of mine: https://news.ycombinator.com/item?id=26360048 ):
* open source or not
What are some alternatives?
Sorcery - Magical Authentication
Rodauth - Ruby's Most Advanced Authentication Framework
Authlogic - A simple ruby authentication solution.
Clearance - Rails authentication with email & password.
OmniAuth - OmniAuth is a flexible authentication system utilizing Rack middleware.
Knock - Seamless JWT authentication for Rails API
JWT - A ruby implementation of the RFC 7519 OAuth JSON Web Token (JWT) standard.
OAuth2 - A Ruby wrapper for the OAuth 2.0 protocol.
Pundit - Minimal authorization through OO design and pure Ruby classes
Devise Token Auth - Token based authentication for Rails JSON APIs. Designed to work with jToker and ng-token-auth.