rodauth-model
webauthn-ruby
rodauth-model | webauthn-ruby | |
---|---|---|
2 | 5 | |
20 | 624 | |
- | 1.6% | |
5.4 | 5.9 | |
3 months ago | 2 months ago | |
Ruby | Ruby | |
MIT License | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
rodauth-model
-
Passkey Authentication with Rodauth
Finally, let's also modify the remove form to display nicknames instead of last used timestamps (we're using the Account#webauthn_keys association defined by rodauth-model):
-
What It Took to Build a Rails Integration for Rodauth
While I love this decoupling, it would still be nice to be able to at least create accounts and retrieve associations directly through the model. So, I created the rodauth-model gem, which provides an interface similar to Active Record's has_secure_password, and defines associations based on your Rodauth configuration (together with associated models).
webauthn-ruby
-
Passkey Authentication with Rodauth
Rodauth provides first class support for passkeys, implemented on top of the excellent webauthn-ruby gem. It enables using passkeys as a multifactor authentication method, or for passwordless login and registration. In addition to routes, views and database storage, it also provides the complete JavaScript part that interacts with Web Authentication API for zero configuration.
-
I’ve started discussion + work on updating Devise to support passkeys; we need contributors!
Would it make sense to leverage another gem like https://github.com/cedarcode/webauthn-ruby for this? Or are we thinking a completely devise internal implementation? Either way I’m interested in contributing to this movement for devise
-
Apple Passkey
I've used this gem for rails apps https://github.com/cedarcode/webauthn-ruby
-
Multi-Factor Authentication for Rails with WebAuthn and Devise
Luckily, there is a WebAuthn gem for Ruby (thanks!) that will do all the hard work for us. Just run bundle add webauthn.
-
Best practices for Two Factor Auth / 2FA in 2021?
All OTP-based 2FA methods are phishable. For real security, you should be looking at FIDO (U2F or WebAuthN)
What are some alternatives?
rodauth-demo-rails - Rodauth's demo site ported to Rails, showing Rodauth/Rails integration
webauthn-with-devise - The companion app for the article "Secure authentication for Rails with WebAuthn and Devise"
Rodauth - Ruby's Most Advanced Authentication Framework
devise-2fa - Devise 2FA with Time Based OTP/rfc6238 tokens and encrypted secrets.
Sequel - Sequel: The Database Toolkit for Ruby
fido2-net-lib - FIDO2 .NET library for FIDO2 / WebAuthn Attestation and Assertion using .NET
rodauth-oauth - (Mirror) Roda OAuth and OpenID provider plugin
devise-otp - Two Factors authentication for Devise using Time Based OTP/rfc6238 tokens.
rodauth-rails - Rails integration for Rodauth authentication framework
fido2 - Open-source FIDO server, featuring the FIDO2 standard. https://demo4.strongkey.com/getstarted/#/openapi/fido
Roda - Routing Tree Web Toolkit
webauthn-json - 🔏 A small WebAuthn API wrapper that translates to/from pure JSON using base64url.