4 Repos
Complete systems for managing user identity, sessions, and secure sign-in within web applications.
Distinct from Ruby on Rails Frameworks: The candidates are either too broad (Ruby on Rails Frameworks) or too specific (generators).
Explore 4 awesome GitHub repositories matching web development · Authentication Frameworks. Refine with filters or upvote what's useful.
Devise is a flexible authentication framework for Ruby on Rails applications. It serves as a user identity management system that handles registration, sign-in, password recovery, and account confirmation. The system integrates with the Warden middleware to manage user sessions and security across various request types. The framework functions as a multi-model authentication engine, allowing for the configuration of multiple distinct user models with independent routes and access controls. It also provides a standardized interface to connect with external identity providers and third-party lo
Functions as a complete authentication framework for managing user identity and sessions in web applications.
Devise is a comprehensive identity management system and authentication framework for Ruby on Rails applications. It provides a complete set of tools for managing user registration, secure sign-in, and session handling using a modular strategy pattern. The framework distinguishes itself by offering a suite of security hardening features, including brute force protection through account locking and secure password recovery workflows. It also functions as an integrator for external identity providers and third-party authentication via standardized protocols. Broad capabilities cover the full u
Implements secure sign-in and session management for Ruby on Rails applications to protect private routes.
Lucia is an authentication library that provides session management, OAuth integration, and password-based login for web applications. It creates and validates server-side sessions using cryptographically random tokens stored in HttpOnly, Secure, SameSite=Lax cookies, with constant-time token comparison to prevent timing side-channel attacks. The library supports authentication through email and password, GitHub OAuth, Google OAuth, and passkey-based sign-in. It enforces two-factor authentication using time-based one-time passwords (TOTP) from authenticator apps, generates recovery codes for
Provides a complete authentication framework for web apps with session management and multiple login methods.
Authboss ist ein modulares Authentifizierungs-Framework, das für die Verwaltung von Benutzeridentitäten und Account-Orchestrierung entwickelt wurde. Es bietet ein umfassendes System für die Handhabung von Benutzerregistrierung, E-Mail-Verifizierung und dem gesamten Lebenszyklus von Benutzerprofilen. Das Framework zeichnet sich durch eine fokussierte Suite von Sicherheits- und Identitäts-Tools aus, einschließlich Multi-Faktor-Authentifizierung mittels zeitbasierter Passwörter und SMS sowie Identitätsintegration mit externen Anbietern unter Verwendung von OAuth1- und OAuth2-Protokollen. Es enthält zudem einen dedizierten Account-Sicherheitsmanager, der Brute-Force-Schutz durch anmeldedatenbasierte Kontosperrung und adaptives Passwort-Hashing implementiert. Im Großen und Ganzen deckt das Projekt das Sitzungs-Lifecycle-Management ab, einschließlich persistenter Login-Cookies und Inaktivitäts-Timeouts, sowie Account-Wiederherstellungs-Flows für vergessene Passwörter. Es bietet zudem Request-Middleware für die Zugriffskontrolle von Routen und unterstützt das Rendern von Authentifizierungsansichten in HTML oder JSON.
Provides a modular PHP-based framework for handling user registration, password resets, and session management.