4 repositorios
Complete systems for managing user identity, sessions, and secure sign-in within web applications.
Distinct from Ruby on Rails Frameworks: The candidates are either too broad (Ruby on Rails Frameworks) or too specific (generators).
Explore 4 awesome GitHub repositories matching web development · Authentication Frameworks. Refine with filters or upvote what's useful.
Devise is a flexible authentication framework for Ruby on Rails applications. It serves as a user identity management system that handles registration, sign-in, password recovery, and account confirmation. The system integrates with the Warden middleware to manage user sessions and security across various request types. The framework functions as a multi-model authentication engine, allowing for the configuration of multiple distinct user models with independent routes and access controls. It also provides a standardized interface to connect with external identity providers and third-party lo
Functions as a complete authentication framework for managing user identity and sessions in web applications.
Devise is a comprehensive identity management system and authentication framework for Ruby on Rails applications. It provides a complete set of tools for managing user registration, secure sign-in, and session handling using a modular strategy pattern. The framework distinguishes itself by offering a suite of security hardening features, including brute force protection through account locking and secure password recovery workflows. It also functions as an integrator for external identity providers and third-party authentication via standardized protocols. Broad capabilities cover the full u
Implements secure sign-in and session management for Ruby on Rails applications to protect private routes.
Lucia is an authentication library that provides session management, OAuth integration, and password-based login for web applications. It creates and validates server-side sessions using cryptographically random tokens stored in HttpOnly, Secure, SameSite=Lax cookies, with constant-time token comparison to prevent timing side-channel attacks. The library supports authentication through email and password, GitHub OAuth, Google OAuth, and passkey-based sign-in. It enforces two-factor authentication using time-based one-time passwords (TOTP) from authenticator apps, generates recovery codes for
Provides a complete authentication framework for web apps with session management and multiple login methods.
Authboss es un framework de autenticación modular diseñado para gestionar la identidad del usuario y la orquestación de cuentas. Proporciona un sistema integral para manejar el registro de usuarios, la verificación por correo electrónico y el ciclo de vida completo de los perfiles de usuario. El framework se distingue por un conjunto enfocado de herramientas de seguridad e identidad, incluyendo autenticación multifactor mediante contraseñas basadas en tiempo y SMS, e integración de identidad con proveedores externos utilizando protocolos OAuth1 y OAuth2. También incluye un gestor de seguridad de cuentas dedicado que implementa protección contra fuerza bruta mediante bloqueo de cuentas basado en credenciales y hashing de contraseñas adaptativo. En términos generales, el proyecto cubre la gestión del ciclo de vida de la sesión, incluyendo cookies de inicio de sesión persistentes y tiempos de espera por inactividad, así como flujos de recuperación de cuenta para contraseñas olvidadas. También proporciona middleware de solicitud para el control de acceso a rutas y admite la renderización de vistas de autenticación en HTML o JSON.
Provides a modular PHP-based framework for handling user registration, password resets, and session management.