Reusable Omniauth integration for Devise supporting multiple providers. Essentially takes the how-to setup in the devise wiki for facebook and other providers and gives you code in your application to get started with.

Reusable Omniauth integration for Devise supporting multiple providers. Essentially takes the how-to setup in the devise wiki for facebook and other providers and gives you code in your application to get started with.

This Devise extension adds the ability for users to authenticate with one-time passwords, enabling a more secure session mechanism. When logging in, users will receive a unique one-time password that they can use to access the system. This password is valid for only one use, ensuring that each login is secure and that users cannot reuse an old password to access their account. This extension provides a simple and effective way to improve the security of your application and protect against password attacks.

Time Based OTP/rfc6238 compatible authentication for Devise

Time Based OTP/rfc6238 compatible authentication for Devise with Devise 4.2 and Rails 5 compatibility. Drop-in replacement for devise-otp.

Adds one time token authentication to devise

For authenticating against PAM (Pluggable Authentication Modules)

Extension for devise to provide password change without using registerable.

A plugin to devise that will expire user passwords after a set amount of time and prompt them to update their password.

Maintains password history and ensures old passwords aren't reused

A devise extension to curb password sharing.

Extension that allows Devise to use PBKDF2 password hashing

Devise PostgreSQL authentication module

It sends verification code via SMS (using Twilio). User enters the code to confirm the phone number.

PKCS #12 authentication for Devise.

It tracks the referring entity via cookie, and creates a record when user registers.

Allows Devise to authenticate users from central-authentication services like LDAP and Shibboleth.

This gem provide a before_filter to check users against a permission class. it supports roles

A module for devise to revoke sessions

== Devise::Revokable A module for Devise[http://github.com/plataformatec/devise] This gem was created by "borrowing" heavily from Devise::Invitable[http://github.com/scambra/devise_invitable] It exists to extend Devise to provide the basis for what is essentially the reverse of the standard <tt>confirmable</tt> module. Where <tt>confirmable</tt> sends an email and awaits a response, before confirming a new registration, <tt>revokable</tt> allows immediate access and sends an email which provides a link to "revoke" the account if it was created fraudulently. This is useful if you want to lower the barrier to entry to creating accounts, and clearly, if account security isn't a concern. Note that tests are non-existent. Use freely but at your own risk. === Configuring It works like normal Devise modules. Add the <tt>:revokable</tt> module to the declaration. # in user.rb devise :revokable # plus other devise modules If the user who received the revocation email follows the provided link and confirms revocation, the account will effectively be "revoked" and inactive, unable to log in. Additionally, you may want to override <tt>#revoke!</tt> to perfom additional revocation on the account, e.g. deleting posts made, resetting personal information, etc. The super method yields to a block for this purpose. # in user.rb def revoke! super do self.some_method_that_resets_me! end end That's about the extent of it. As with typical devise modules you can override the mailers and views with your own. Additionally you can define the module accessor <tt>@@mailer</tt> on the module with a proc to handle your mail if you need to. This proc is yielded two arguments, the method name (e.g. :revocation_instructions), and the affected resource. # in config/initializers/devise_revokable.rb require 'devise_revokable' require 'my_mailer' DeviseRevokable.mailer = proc {|method_name, resource| MyMailer.send(:method_name, resource) }