Category: Security

• Security extensions

  A set of filters and tests to help protect from CSRF vulnerabilities. At the core are two useful abstractions: verify_form_posts_have_security_token and secure_form_tag.

• Sentry

  Wrapper around undocumented OpenSSL functions, providing symmetric and asymmetric encryption for active record attributes.

• session_lifetime

  A Rails plugin for expiring sessions on inactivity

• Signed params

  Cryptoigraphically signs the parameters of a URL so that the URL cannot be tampered on the client.

• Simple Access Control

  Define access rule conditionals as filters on actions, controller logic, or in views. This plugin fixes the problems of its ancestor, acl_system2, and is a good bed-fellow with Acts As Authenticated.

• Simple Captcha

  A full fledged captcha implementation with radom images.
  SimpleCaptcha is the simplest and a robust captcha plugin for RubyOnRails applications. Its implementation requires adding up a single line in views and in controllers/models. SimpleCaptcha is available to be used with Rails2.0 or above and also it provides the backward compatibility with previous versions of Rails. Read here(http://expressica.com/simple_captcha) for more details on implementation, usage and examples.

• Simple HTTP Auth

  A quick, clean way of adding HTTP authorization to your Rails application. No need for complicated backends, gigantic user models, or other unneeded complexity. Just you, a password prompt, and whether or not someone should be allowed in.

• Super Simple Authentication

  Simple password-based authentication for your controllers (and views).

• xss_terminate

  xss_terminate is a plugin in that makes stripping and sanitizing HTML
  stupid-simple.