An authorization library that supports access control models like ACL, RBAC, ABAC in Ruby

Trust is a resource oriented framework for authorization control. It is compatible with Rails 3 and 4. It has a loose coupling from the models, and features a native Ruby implementation language. Support for inheritance and namespaced models as well as nested routes. Even permissions scheme supp...

SAML 2.0 is an XML-based protocol that uses security tokens containing assertions to pass information about a principal (usually an end user) between a SAML authority, that is, an identity provider, and a SAML consumer, that is, a service provider. SAML 2.0 enables web-based authentication and a...

courtesy - Wikipedia: Maker-checker (or Maker and Checker, or 4-Eyes) is one of the central principles of authorization in the information systems of financial organizations.The principle of maker and checker means that for each transaction, there must be at least two individuals necessary for it...

An opinionated almost-turnkey solution for managing authorization in Rails

AuthorizedPersona is a rails implementation of Betterment's Persona Centric Authorization pattern

Solution that eliminates the tight coupling between user identity/authentication and application functional authorization

xcflushd is a daemon that connects to a Redis database containing 3scale's XC API Management data and flushes it to the 3scale service for cached reporting and authorizations. Check https://github.com/3scale/apicast-xc for an implementation of a 3scale's XC gateway.

Simple wrapper for JSON api provided by indeed. Original documentation at: http://www.indeed.com/jsp/apiinfo.jsp (Require authorization) Support search jobs API 2.0 and get jobs API

Granity is a flexible, caching-friendly authorization engine that provides fine-grained access control for Ruby on Rails applications

Escher authorization for rack based http servers with ease in a form of middleware

Permitters are an object-oriented way of defining what request parameters are permitted. using Strong Parameters. It is to Strong Parameters what ActiveModel::Serializers are to as_json/to_json, but supports CanCan and similar authorization frameworks.

A Rails engine for providing OpenID Connect authorization.

Akamai-EdgeAuth is Akamai Edge Authorization Token for Ruby 2.0+

Rack middleware for using the Authorization header with token authentication

A simple gem for authorization and session management in Rails.

Consent permission based authorization

Flexible, configurable authorization system for ActiveRecord and an access control DSL for ActionController.

A ready-to-go application with authentication, authorization, logging... with bootstrap flavor

Perform authorization in Ruby applications by interacting with the Cerbos policy decision point.