Top 22 Ruby Authorization Projects
Minimal authorization through OO design and pure Ruby classesProject mention: Project management app users advice | reddit.com/r/rubyonrails | 2021-04-10
This is called “authorization”. pundit is a great library for it.
The authorization Gem for Ruby on Rails.Project mention: Using CanCanCan With StimulusReflex In Your Rails App | dev.to | 2021-03-22
If you are using CanCanCan for authorization and also want to use the magic of StimulusReflex for reactive page updates, these strategies will help you check user abilities in your reflexes.
Scout APM - Leading-edge performance monitoring starting at $39/month. Scout APM uses tracing logic that ties bottlenecks to source code so you know the exact line of code causing performance issues and can get back to building a great product faster.
Doorkeeper is an OAuth 2 provider for Ruby on Rails / Grape.Project mention: Authelia is an open-source authentication/authorization server with 2FA/SSO | news.ycombinator.com | 2021-03-10
One thing that is missing from this list is open source language specific libraries. Projects such as https://oauthlib.readthedocs.io/en/latest/oauth2/server.html and https://github.com/doorkeeper-gem/doorkeeper
Depending on your use case, for example if you only have one application, you might be better off running something embedded in your app, or independent but using the same runtime/deployment environment. Then, when you are ready to add another app or integration, you should be able to introduce a standalone auth system more easily if appropriate (because all your auth interactions should be relatively standardized). I'm a big fan of standalone auth systems as a way to simplify access control and give a single view of a user/customer, but you can also succeed using open source embedded libraries.
When the moment comes to introduce a standalone system, you should consider a few dimensions (this list pulled from a previous comment of mine: https://news.ycombinator.com/item?id=26360048 ):
* open source or not
Role management library with resource scoping
Yet another role-based authorization system for Rails
Authorization framework for Ruby/Rails applicationsProject mention: Rails: How to Reduce Friction at the Authorization Layer | reddit.com/r/ruby | 2021-03-15
At work, we've recently faced similar issues and moved to ActionPolicy as a result. It's designed slightly differently, but there is a lot of overlap with what John came up with.
Multi-role and whitelist based authorization gem for Rails (and not only Rails!)
Simple authorization gem for GraphQL :lock:
Scope-based authorization for Ruby on Rails. (by makandra)
🔐A Rails engine providing essential industry of Role-based access control.
Simple and lightweight authorization library for Rails
Add group and membership functionality to your Rails models
A set of RSpec matchers for testing Pundit authorisation policies.
Manage your Redis instance (see keys, memory used, connected client, etc...)
Makes role based authorization in Rails really simple. Wraps CanCan and RoleModel up with a smattering of syntactic sugar, some generators and scopes.
A toolkit to upgrade your next Rails application
Collects Puma web-server metrics from puma control panel
Service Object based on Either Monad
Kitty Policy Ruby Authorization Gem
Authorization mechanisms for Rails (by teknobingo)
What are some of the best open-source Authorization projects in Ruby? This list will help you: