Description
An authentication generator for Rails 7. Generate all the files needed to create a feature rich authentication system that you control. No configuration needed.
Oh, it generates a test suite too.
๐ Rails MVP Authentication alternatives and similar gems
Based on the "Authentication and OAuth" category.
Alternatively, view rails_mvp_authentication alternatives based on common mentions on social networks and blogs.
-
Devise
Flexible authentication solution for Rails with Warden. -
OmniAuth
OmniAuth is a flexible authentication system utilizing Rack middleware. -
Doorkeeper
Doorkeeper is an OAuth 2 provider for Ruby on Rails / Grape. -
Authlogic
A simple ruby authentication solution. -
Devise Token Auth
Token based authentication for Rails JSON APIs. Designed to work with jToker and ng-token-auth. -
Clearance
Rails authentication with email & password. -
JWT
A ruby implementation of the RFC 7519 OAuth JSON Web Token (JWT) standard. -
OAuth2
A Ruby wrapper for the OAuth 2.0 protocol. -
-
-
Rodauth
Ruby's Most Advanced Authentication Framework -
Devise-JWT
JWT token authentication with devise and rails -
Authentication Zero
An authentication system generator for Rails applications. -
passwordless
๐ Authentication for your Rails app without the icky-ness of passwords -
Monban
Oath is rails authentication made simple. Previously known as Monban -
Shield
Authentication protocol for use in your routing and model context -
warden-github-rails
Use GitHub as authorization and more. Use organizations and teams as means of authorization by simply wrapping your rails routes in a block. Also useful to get a user's details through OAuth. -
OmniAuth Instagram Graph ย
OmniAuth strategy for Instagram Graph API. -
genkan
:door::running:Genkan is authentication engine for Rails
InfluxDB - Power Real-Time Data Analytics at Scale
* Code Quality Rankings and insights are calculated and provided by Lumnify.
They vary from L1 to L5 with "L5" being the highest.
Do you think we are missing an alternative of ๐ Rails MVP Authentication or a related project?
|
WorkOS - The modern identity platform for B2B SaaS
sponsored
workos.com
|
Popular Comparisons
-
๐ Rails MVP AuthenticationvsAuthentication Zero
-
๐ Rails MVP AuthenticationvsJWT
-
๐ Rails MVP AuthenticationvsDevise
-
๐ Rails MVP AuthenticationvsClearance
-
๐ Rails MVP AuthenticationvsOmniAuth
|
SaaSHub - Software Alternatives and Reviews
sponsored
www.saashub.com
|
README
๐ Rails MVP Authentication
An authentication generator for Rails 7. Based on the step-by-step guide on how to build your own authentication system in Rails from scratch.
๐ฌ Demo
๐ Installation
Add this line to your application's Gemfile:
gem "rails_mvp_authentication"
And then execute:
bundle
Or install it yourself as:
gem install rails_mvp_authentication
Then run the installation command:
rails g rails_mvp_authentication:install
Once installed make follow these steps:
- Run
bundle installto install bcrypt - Run
rails db:migrateto add theusersandactive_sessionstables - Add a root path in
config/routes.rb - Ensure you have flash messages in
app/views/layouts/application.html.erb
<p class="notice"><%= notice %></p>
<p class="alert"><%= alert %></p>
After completing these steps you can uninstall the gem:
bundle remove "rails_mvp_authentication" --install
๐ Features
- Requires a user to confirm their email address before they can log in.
- Allows a user to remain logged into the application even if they exit their browser.
- Allows a user to have multiple sessions. This gives users the ability to log out of all sessions at once. This also makes it easy to detect suspicious login activity.
- Allows a user to change their email address.
- Allows a user to recover their account if they forget their password.
- Requires users to submit their password anytime they're chaning their account information.
๐จ Usage
The following methods are automatically included in the corresponding generated files.
Controller Methods
authenticate_user!
Redirects the visitor to the login_path if they're not logged in. Useful for preventing an anonymous user from accessing a page intended for an authenticated user.
current_user
Returns an instance of User if there's one in the session. Othwerwise returns nil.
forget_active_session
Deletes the :remember_token cookie. For added security, the associated active_session should be deleted too.
login(user)
Resets the session and then creates a new active_session with on the user that was passed in. Stores the id of the active_session in the session. Returns the new active_session.
logout
Resets the session and deletes the associated active_session record.
user_signed_in?
Returns true if current_user does not return nil. Othwerwise returns false.
redirect_if_authenticated
Redirects the user to the root_path if the user is logged in. Useful for keeping a user from accessing a page intended for an anonymous user.
remember(active_session)
Creates a cookie to store the value of the remember_token from the active_session that was passed in.
View Helpers
current_user
Returns an instance of User if there's one in the session. Othwerwise returns nil.
user_signed_in?
Returns true if current_user does not return nil. Othwerwise returns false.
User Model
self.authenticate_by(attributes)
A copy of the authenticate_by class method that is set to ship in rails 7.1
confirm!
Sets the confirmed_at column to Time.current. Updates the email column if reconfirming a new email address. Returns true or false.
confirmed?
Returns true or false based on if the confirmed_at column is present.
confirmable_email
Returns the value of the email column if the unconfirmed_email column is empty. Otherwise, the value of unconfirmed_email is returned.
generate_confirmation_token
Generates a signed_id used in the confirmation mailer.
generate_password_reset_token
Generates a signed_id used in the password reset mailer.
send_confirmation_email!
Send a confirmation email to the user.
send_password_reset_email!
Send a password reset email to the user.
reconfirming?
Returns true if there's a value for unconfirmed_email. Otherwise false is returned.
unconfirmed?
Returns true if there's no value for confirmed_at. Otherwise false is returned.
unconfirmed_or_reconfirming?
Returns true if the user is unconfirmed or reconfirming a new email address. Otherwise false is returned.
Test Helpers
current_user
Returns an instance of User if there's one in the test session. Othwerwise returns nil.
login(user, remember_user: nil)
Creates a post request to the login_path. Simulates a real login.
logout
Deletes the current_active_session_id test session. Simulates a login.
โ๏ธ Benefits
What makes this gem different (not better) from devise, clearance, etc?
- This gem is less of an engine and more of a generator. It generates all necessary models, views, controllers, mailers, and migrations. This means you have complete control over your authentication system and don't have to worry about learning a new DSL or API.
- It also generates tests. That way you can ship with confidence if and when you decide to change how your authentication system works.
- It utilizes modern core features of Rails, such as ActiveSupport::CurrentAttributes and Active Record Signed Id, has_secure_password and has_secure_token.
- It stores the session in the database. This gives users the ability to log out of all sessions at once. This also makes it easy to detect suspicious login activity.
๐ Contributing
If you'd like to open a PR please make sure the following things pass:
bin/rails test
bundle exec standardrb
๐ License
The gem is available as open source under the terms of the MIT License.
*Note that all licence references and agreements mentioned in the ๐ Rails MVP Authentication README section above
are relevant to that project's source code only.