I am a the point now where I have to add user authentification to my application. Anyone can point me toward an easy to use / secure library? I know about ActiveRBAC and was wondering if there is anything else that I should consider. Thanks!
on 2006-05-29 04:26
on 2006-05-29 05:29
What are you requirements?
on 2006-05-29 06:31
I like to keep it simple, so check out the rails recipe book for really simple, or acts_as_authenticated for the next step up in complexity, but less complex than most of the others.
on 2006-05-29 13:37
Hi, I am doing a ASP kind of application. I havent figured out the hosting server, but it will probably be a Linux box. I need to be able to manage roles/permission/groups. People are going to pay for the service, so it has to be very secure. Its my first time developping a "seriously" secure application. Hence the reason I want to use a popular framework. Any other things I need to consider? Thanks
on 2006-05-29 21:06
I tend to agree with Jim. I usually roll my own (authentication that is) and I've also used acts_as_authenticated, which "just works" and is straightforward. There's a ton of options out there, you'll just have to evaluate them and see if they match up to your requirements. Michael
on 2006-05-29 22:00
I found that this one was pretty easy/straightforward to implement. http://penso.info/rails/auth_generator/
on 2006-05-29 22:41
The rails recipe book also has an RBAC that is very simple to implement, I slipped that into my app on top of acts_as_authenticated in a few hours. I also like Bill Katz's approach, although I have not implemented it (http://www.billkatz.com/authorization). I have posted a recipe for an admin page for managing Rights and Roles on my blog, http://blog.wolfman.com/articles/2006/05/20/role-b...
on 2006-05-30 10:16
Sorry my blog link was not working (I changed the date which changed the link!) It now works and is http://blog.wolfman.com/articles/2006/05/20/role-b...
on 2006-05-30 11:54
I prefer to write it for each application. I just did a writeup on basic user authentication. It covers some of the patterns that I've been using for authentication: http://www.aidanf.net/rails_user_authentication_tutorial cheers, AF