> > Does anyone know where one can find more definitive advice on these sorts of > topics? As in, "I want to do authorization. It's early 2013. What is the > most popular/best practice tool for the job?" Or is this one of those > places where "convention over configuration" collapses into a maze of twisty > gems, all alike?
I am afraid the ruby and rails community is a sort chaotic that way. There is not a "standard" people seem to converge on an answer until something better comes along. I have gone through restful_authentication, authlogic, and now devise. Personally none of them work the way I think authentication should work but unfortunately so many gems depend on the presence of devise that you kind of throw up your hands and create a Users table. I am in the "Rails should have specified Authentication/Authorisation from day one" camp myself. Perhaps they should have mimicked PAM so people can write their own plugins. It would have saved a ton of labor by a ton of people. -- You received this message because you are subscribed to the Google Groups "Ruby or Rails Oceania" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at http://groups.google.com/group/rails-oceania?hl=en. For more options, visit https://groups.google.com/groups/opt_out.
