HTTPS clone URL
Subversion checkout URL
- Activity logging
- Brute force protection
- Fetching currently active users
- Http basic auth
- Integration Testing with Rspec, Capybara and Fabricator
- Known incompatibilities
- OAuth Landing Page
- Password less activation
- Remember Me
- Reset password
- Routes Constraints
- Running the specs
- Session Timeout
- Simple Password Authentication
- Testing Rails
- User Activation
Clone this wiki locally
Welcome to the Sorcery wiki!
This wiki is a work in progress, and constantly improving.
Sorcery is a stripped-down, bare-bones authentication library, with which you can write your own authentication flow. It was built with a few goals in mind:
- Less is more - less than 20 public methods to remember for the entire feature-set make the library easy to 'get'.
- No built-in or generated code - use the library's methods inside your own MVC structures, and don't fight to fix someone else's.
- Magic yes, Voodoo no - the lib should be easy to hack for most developers.
- Configuration over Confusion - Simple & short configuration as possible, not drowning in syntactic sugar.
- Keep MVC cleanly separated - DB is for models, sessions are for controllers. Models stay unaware of sessions.
Hopefully, I've achieved this. If not, let me know.
You can see how controllers, models, migrations and views can be used in Rails 3 with Sorcery by checking out this example application.
There is also a mongoid branch at the same URL, showing how you can use Mongoid as your ORM.
Tutorials in another sites:
Magical Authentication with Sorcery by Ilya Bodrov on Sitepoint.com
AnyLogin gem for quick login as any user without password.