Re: [Sdruby] User authentication strategies

Chris Abad Wed, 11 Oct 2006 15:25:22 -0700

I'm jumping pretty late into this, so I don't know if this idea has been dismissed yet. Here's what I do:

Start with this:

http://svn.techno-weenie.net/projects/plugins/restful_authentication/

By default this creates a salted one-way password. If you need reversible passwords, you can do this:

http://technoweenie.stikipad.com/plugins/show/Reversible+Encrypted+Passwords

If you would like to enable user-authentication use this:

http://technoweenie.stikipad.com/plugins/show/User+Activation

And this for the email notification:

http://technoweenie.stikipad.com/plugins/show/Mailer+Setup

On Oct 11, 2006, at 3:11 PM, Patrick Crowley wrote:

Yeah, to clarify, I also have a Notifications model that contains all of my email-related methods, so UserVerification is probably still overkill for my purposes.

The SHA-1 key is stored in a field called unverified, so I can do this:

if @user.unverified?

# user isn't verified yet

else

# user is verified :)

end

I've also added a method that will allow users to resend the verification email, if it fails to show up in a timely fashion.

Best,

Patrick

_______________________________________________
Sdruby mailing list
[email protected]
http://lists.sdruby.com/mailman/listinfo/sdruby

Re: [Sdruby] User authentication strategies

Reply via email to