RailsCasts Pro episodes are now free!

Learn more or hide this

Applied Filters: Authentication x
Simple OmniAuth (revised)
Episode #241Jun 02, 201291 comments

Simple OmniAuth (revised)

OmniAuth makes it easy to do user authentication through a third party provider such as Twitter or Facebook. Learn a simple approach in this episode. (11 minutes)
Dangers of Session Hijacking
Episode #356Jun 08, 201282 comments

Dangers of Session Hijacking

If a user's authentication cookie is sent over an insecure connection it is vulnerable to session hijacking, or more specifically, sidejacking. Learn how this is done, and how you can prevent it. (6 minutes)
Service Objects
Episode #398Dec 18, 2012114 comments

Service Objects

Models can quickly become a grab-bag of unrelated methods if behavior is constantly being pushed from the controller. Here I show how to refactor this using Concerns and Service Objects. (12 minutes)
Twitter Integration
Episode #359Jun 15, 201276 comments

Twitter Integration

Here I show how to integrate Twitter into a Rails app. This includes fetching data, caching it, and even how to authenticate as a user signing in to your application through Twitter. (14 minutes)
restful_authentication
Episode #67Aug 20, 2007123 comments

restful_authentication

Need multiple user authentication? If so, the restful_authentication plugin is a great way to go. It will generate some basic authentication code for you which is good starting point to your authentication system. Watch this episode for details. (9 minutes)
YAML Configuration (revised)
Episode #85Oct 14, 201298 comments

YAML Configuration (revised)

Keeping passwords and secret tokens in source control is a security risk. Here I show how to move these settings out into a YAML configuration file which can be loaded in as a hash or environment variables. (8 minutes)
Guest User Record
Episode #393Nov 21, 2012101 comments

Guest User Record

Instead of presenting a sign up form to the user, consider creating a temporary guest record so the user can try out the application without filling in their information up front. They can then become a permanent member afterwards. (9 minutes)
OmniAuth Part 1
Episode #235Oct 11, 2010104 comments

OmniAuth Part 1

OmniAuth is an easy way to add many different authentication services to your app. In this episode we start integrating it with Devise. (10 minutes)
Exploring RubyGems
Episode #384Oct 07, 201284 comments

Exploring RubyGems

RubyGems can make it easy to add a feature to a Rails application, but it can also cause headaches down the road. Here I give some tips on researching gems to decide which one to choose, or when to do it from scratch. (7 minutes)
Authorization from Scratch Part 1
Episode #385Oct 07, 201282 comments

Authorization from Scratch Part 1

Authorization can be difficult to implement and test because it often involves complex logic that exists throughout the entire app. Here I demonstrate how to test and implement authorization from scratch. (15 minutes)