Veri v1.0: Minimal Rails Authentication Framework Now Stable
Briefly

"For those unfamiliar, Veri is a minimal authentication framework for Rails that gives you building blocks for custom authentication flows. No generated controllers, views, and mailers, no forced business logic - just the core mechanics of secure authentication that you can build upon. What's included: Cookie-based authentication with database-stored sessions Multiple password hashing algorithms (argon2, bcrypt, pbkdf2, scrypt) Granular session management and control"
"What's included: Cookie-based authentication with database-stored sessions Multiple password hashing algorithms (argon2, bcrypt, pbkdf2, scrypt) Granular session management and control User impersonation for admin features Account lockout functionality Multi-tenancy support Return path handling Who it's for: Developers who want control over their authentication flow. If you've ever felt constrained by Devise or similar gems, Veri might be your cup of tea. Future plans so far include password strength validation and configurable algorithm parameters."
Veri provides minimal, unopinionated authentication building blocks for Ruby on Rails applications, focusing on core secure mechanics rather than generated controllers, views, or mailers. The framework supports cookie-based authentication with database-backed sessions and multiple password hashing algorithms including argon2, bcrypt, pbkdf2, and scrypt. It offers granular session management, user impersonation for administrative workflows, account lockout, multi-tenancy, and return path handling. The design targets developers who need full control over authentication flows and prefer to implement custom business logic. Planned enhancements include password strength validation and configurable algorithm parameters to improve security and flexibility.
Read at Rubyflow
Unable to calculate read time
[
|
]