An authentication system generator for Rails applications

Simple (but safe) token authentication for Rails apps or API with Devise.

Ruby/NTLM HTTP provides NTLM authentication over http.

Auth0 is an authentication broker that supports social identity providers as well as enterprise identity providers such as Active Directory, LDAP, Google Apps, Salesforce. OmniAuth is a library that standardizes multi-provider authentication for web applications. It was created to be powerful, flexible, and do as little as possible. omniauth-auth0 is the OmniAuth strategy for Auth0.

A collection of useful Rails generator scripts for scaffolding, layout files, authentication, and more.

Rodauth is Ruby's most advanced authentication framework, designed to work in all rack applications. It's built using Roda and Sequel, but it can be used as middleware in front of web applications that use other web frameworks and database libraries. Rodauth aims to provide strong security for password storage by utilizing separate database accounts if possible on PostgreSQL, MySQL, and Microsoft SQL Server. Configuration is done via a DSL that makes it easy to override any part of the authentication process. Rodauth supports typical authentication features: such as login and logout, changing logins and passwords, and creating, verifying, unlocking, and resetting passwords for accounts. Rodauth also supports many advanced authentication features: * Secure password storage using security definer database functions * Multiple primary multifactor authentication methods (WebAuthn and TOTP), as well as backup multifactor authentication methods (SMS and recovery codes). * Passwordless authentication using email links and WebAuthn authenticators. * Both standard HTML form and JSON API support for all features.

Authentication solution for Rails based on JWT

This module provides common interface to HMAC functionality. HMAC is a kind of "Message Authentication Code" (MAC) algorithm whose standard is documented in RFC2104. Namely, a MAC provides a way to check the integrity of information transmitted over or stored in an unreliable medium, based on a secret key. Originally written by Daiki Ueno. Converted to a RubyGem by Geoffrey Grosenbach

Provides common authentication needs such as signing in/out, activating by email and resetting password.

Mixes in simple per-request authentication

An implementation of RFC 2617 - Digest Access Authentication. At this time the gem does not drop in to Net::HTTP and can be used for with other HTTP clients. In order to use net-http-digest_auth you'll need to perform some request wrangling on your own. See the class documentation at Net::HTTP::DigestAuth for an example.

WebAuthn ruby server library ― Make your application a W3C Web Authentication conformant Relying Party and allow your users to authenticate with U2F and FIDO2 authenticators.

Provides authentication and authorization services for use with Spree by using Devise and CanCan.

Simple key/secret based authentication for apis

JWT authentication for devise with configurable token revocation strategies

### Features ### * control sms code pattern * configure max login attempts * per user level control if he really need two factor authentication * your own sms logic

Devise extension to allow authentication via LDAP

Simple Authentication and Security Layer (RFC 4422)

Library for handling registration and authentication of U2F devices

OAuth 2 authentication with the Azure ActiveDirectory V2 API.