Agile Web Development

Build it. Launch it. Love it.

Links

Categories

Ready-made Rails code

Plugins Tagged security

  • ACL System

    This plugin is designed to give you a flexible declarative way of protecting your various controller actions using roles. It's made to sit on top of any authentication framework that follows a few conventions.

  • Assert Request

    The assert_request plugin provides an easy way to make sure that your rails actions are only called with the method, protocol, and parameters that you expect.

    This can save a considerable amount of error-checking code, uncover hidden bugs, and prevent security holes.

  • CAPTCHA

    A CAPTCHA validation plugin.

  • Acts As Sanitized

    Cleans up text data before it hits your database and, eventually, your users.

  • Toffee

    Automatic Controller-less Admin Screens for Active Record models.

  • ReCaptcha

    ReCaptcha helpers for Rails apps

  • AttrLocked

    Adds the ability to prevent changes to model attributes - perfect for fixing usernames or making sure no-one tampers with your financial records.

  • Ciphermail

    CipherMail provides a safe alternative to the mail_to helper by hiding mailto links from e-mail harvesting bots. The generated output is completely obfuscated by a 1024 bit random key. They keyword is stored on the server, so it is never revealed to the client. Processing is performed on the server-side via an AJAX request and the decrypted redirect is returned to the client, opening a mail composer window… just like normal mailto link.

  • RoleRequirement

    Role based security for acts_as_authenticated, without the mess

  • Super Simple Authentication

    Simple password-based authentication for your controllers (and views).

  • Security extensions

    A set of filters and tests to help protect from CSRF vulnerabilities. At the core are two useful abstractions: verify_form_posts_have_security_token and secure_form_tag.

  • SanitizeParams

    SanitizeParams is a small XSS filter plugin.

  • base-auth

    Best Authorization System Ever

  • ACL System2 Ownership

    This plugins adds ownership functionality to ACL System2 plugin by Ezra Zygmuntowicz.

  • Access

    Allows developers to execute or not execute given code block depending on a set of conditions, written in intuitive manner. Especially useful within view templates, where it can eliminate the need for multiple if ... else ... statements.

  • Authorization

    Uses a simple authorization DSL that delegates checks to models, including the current user. Different levels of authorization complexity are provided through mixins available with the plugin.

  • Acts as Authenticated

    Acts As Authenticated is a simple authentication generator plugin for Ruby on Rails.

  • Acts As Authorizable

    Instance specific hierarchical authorization support. Piggybacks on existing model associations

  • declarative_authorization

    Authorization the declarative way: keep authorization rules out of your program code, improve maintainability and use the policies to talk to domain experts.

  • Less Reverse Captcha

    The Less Reverse Capchta creates a captcha that is invisible to the user.