Difference between revisions of "Ruby on Rails Authentication Cheatsheet"

Revision as of 14:35, 28 February 2018

Secure user authentication in ruby on rails is discussed here.

Implementing authentication in a typical Rails application is made easy and secure with devise gem.

Install it using:

   gem 'devise'

Then install it to the user model:

   rails generate devise:install

Next, specify which resources (routes) require authenticated access in your routes, config/routes.rb:

    Rails.application.routes.draw do
      authenticate :user do
        resources :something do  # these resource require authentication
         ...
        end
      end
  
      devise_for :users # sign-up/-in/out routes

      root to: 'static#home' # no authentication required
  
    end

To make authentication secure, enforce higher password complexity and allow TLS connections only.

You can try out this PoC, to learn more about it.

Revision as of 14:34, 28 February 2018 (view source) ZaurMolotnikov (talk \| contribs) (Created the cheat sheet) (Tag: Visual edit) ← Older edit		Revision as of 14:35, 28 February 2018 (view source) ZaurMolotnikov (talk \| contribs) (added a poc link) (Tag: Visual edit: Switched) Newer edit →
Line 30:		Line 30:

	To make authentication secure, enforce higher password complexity and allow TLS connections only.		To make authentication secure, enforce higher password complexity and allow TLS connections only.
		+
		+	You can try out [https://github.com/qutorial/revise this PoC], to learn more about it.

Difference between revisions of "Ruby on Rails Authentication Cheatsheet"

Revision as of 14:35, 28 February 2018

Navigation menu

Personal tools

Namespaces

Variants

Views

More

Search

Navigation

Reference

Tools