Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Rails: Authorization with Authlogic

Tags:

ruby-on-rails

authorization

authlogic

I need a very granular authorization system that works seamlessly with Authlogic.

I've tried these gems/plugins so far:

  • Lockdown
  • rails_authorization_plugin
  • ACL9

I've also looked at, but not tried implementing:

  • Padlock

I've searched around for a good tutorial detailing how to set up any of these with Authlogic in a way that makes sense (only the Lockdown doc seems to outline how to set this up with Authlogic), but have come up with next to nothing. The only one of these that made the remotest sense to me was the documentation for Lockdown, but I don't think that package will work for me (from what I understand of it).

What I'd really love is a good tutorial specifically about setting one of these authorization solutions up with Authlogic, or else a simple example application where I can see how the code comes together and works. Can anyone point me to any good step-by-step (and why) resources, or else provide a simple application with one of these authorization solutions set up on top of Authlogic?

like image 431
neezer Avatar asked Jun 09 '09 15:06

neezer

2 Answers

Yay! As of Nov. 16, 2009, Ryan Bates has finally answered my call with a Railscast devoted to this subject!

#188 - Declarative Authorization (with Authlogic)

Thanks, Mr. Bates!

like image 141
neezer Avatar answered Sep 22 '22 13:09

neezer

I think you have a typo in your first sentence. You must mean "authorization that works seamlessly with Authlogic." AuthLogic already is an authentication solution.

I think you might be struggling to find a tutorial that's specific to AuthLogic because there's no reason authorization and authentication need to be tightly coupled to one another.

Authentication answers the question: "Who is the person accessing this page?" Authorization answers the question: "What permissions does the person accessing this page have?

So the only thing your authorization needs from Authlogic is the current_user() method from your controller. For example, take the tutorial for Acl9 (http://github.com/be9/acl9/tree/master). I believe all you'll need to customize is the :subject_method part (Acl9 calls your active user the 'subject', so :subject_method needs to be set to the name of the method that returns the current user, which is :current_user if you followed the basic AuthLogic docs).

like image 29
Aaron Longwell Avatar answered Sep 21 '22 13:09

Aaron Longwell

Sign in to Comment

Related questions

Forms with Select2 are duplicated when clicking back button on browser in Rails 5
Rspec/capybara - test presence of a class OR another class
can't find gem railties (>= 0.a) (Gem::GemNotFoundException)
How can i compare decrypted password and encrypted password by 'Bcrypt' Gem
Rails 4: Order has_many in serializer
Rails - Capybara, populate hidden field from trix-editor
PG::UndefinedTable: ERROR: missing FROM-clause — Searching with two models Rails
Error: The Content-Range header is missing in the HTTP Response
Prepend to existing rake task
missing required flag heroku tail
Rails 5.2 credentials.yaml.enc and master.key not working on Heroku
How to access a variable that was created in a transaction?
How to disable TurboLinks in Rails 6?
Rails group by column and select column
"No route matches [GET] "/auth/google_oauth2" error keeps coming up
Rails & MySQL on Apple Silicon
Merging Rails databases
Which is better for a rails site? /{login} or /user/{login} [closed]
Ruby on rails internationalization for Spanish
Where should I put SQL queries in Rails?

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!