MIAU (MIcro AUthorization) provides some helpers which raises an exception if a given user violates a policy.

Automates Backend and Frontend Development. Supports Granular Authorization. Leverages PostgreSQL for Performance. Encourages Task Oriented UI

This gem provides a Ruby read-only interface to the gitolite git backend system (by parsing the configuration file found in the bare gitolite-admin repository). It aims to enable permission queries based on data written in the gitolite-admin repository. This fork is designed to work as part of a...

A Ruby library for declaring, composing and executing GraphQL queries for AWS AppSync IAM Authorization

Next generation authorization

A pure Ruby implementation of macaroons for flexible authorization credentials

A Ruby gem implementing the SMART App Launch 2.2.0 specification and UDAP Security protocol for healthcare client applications. It supports OAuth 2.0 authorization against HL7 FHIR servers, including PKCE, private_key_jwt assertions (RS384 and ES384), confidential client flows, and the Backend Se...

Drop in authorization and authentication suite for Rails APIs. Features include user registration, stateless authentication using OAuth2, roles and permissions, password reset workflow, guest access, policy enforcement, JSON API serialization, two-factor authentication support, an...

Dried authorization solution for Rails. All permissions are stored in a single location.

This gem enables access authorization control, based on the access permission settings for each controller and its actions, at the model level.

Kickplan lets you monetize your SaaS app by providing billing, feature access and authorization infrastructure.

Provides access authorization for owners and resources, via a simple Permission ActiveRecord model and a Policy class.

Command pattern, which is callable, and can be partially applied, curried and has typed parameters. Authorization to execute via action_policy if desired.

OAuth 2.1 authorization for Model Context Protocol (MCP) servers in Rails applications. Implements RFC 7591, 7636, 8414, 8707, 9728 with PKCE, dynamic client registration, and token management.

Fast B-tree–backed token store for stateful user sessions. Provides authentication and authorization across multiple processes. Optimized for vertical scaling on a single server

A Rails engine providing a web-based SQL query console with security-first design: read-only by default, optional DML (INSERT/UPDATE/DELETE) with confirmation dialogs, flexible authorization, comprehensive audit logging, and query execution plans.

Inferno Test Kit for the Da Vinci Prior Authorization Support IG

AgentCode automatically generates complete REST APIs from ActiveRecord models with filtering, sorting, search, pagination, role-based authorization, multi-tenancy, audit trail, and more.

When your project uses pundit gem for authorization this gem generates the code for /policies and /spec/policies

Lumina automatically generates complete REST APIs from ActiveRecord models with filtering, sorting, search, pagination, role-based authorization, multi-tenancy, audit trail, and more.