An opinionated almost-turnkey solution for managing authorization in Rails

Drop in 2-Factor Authorization for your Rails app. You just need a Twilio account and you're set.

Contextually is a gem for running Rails controller tests under different user contexts in a convenient way. So you can test your authorization without much effort.

A generator for creating Rails applications ready to go. It generates the layout, the style, the internationalization and manage external gems for authentication, authorization and other. It also provides a customized scaffold to generates cool sites ajax ready in few minutes. If you find a bug p...

Trust is a resource oriented framework for authorization control. It is compatible with Rails 3 and 4. It has a loose coupling from the models, and features a native Ruby implementation language. Support for inheritance and namespaced models as well as nested routes. Even permissions scheme supp...

Consent permission based authorization

Perform authorization in Ruby applications by interacting with the Cerbos policy decision point.

xcflushd is a daemon that connects to a Redis database containing 3scale's XC API Management data and flushes it to the 3scale service for cached reporting and authorizations. Check https://github.com/3scale/apicast-xc for an implementation of a 3scale's XC gateway.

Flexible, configurable authorization system for ActiveRecord and an access control DSL for ActionController.

courtesy - Wikipedia: Maker-checker (or Maker and Checker, or 4-Eyes) is one of the central principles of authorization in the information systems of financial organizations.The principle of maker and checker means that for each transaction, there must be at least two individuals necessary for it...

AuthorizedPersona is a rails implementation of Betterment's Persona Centric Authorization pattern

Solution that eliminates the tight coupling between user identity/authentication and application functional authorization

SAML 2.0 is an XML-based protocol that uses security tokens containing assertions to pass information about a principal (usually an end user) between a SAML authority, that is, an identity provider, and a SAML consumer, that is, a service provider. SAML 2.0 enables web-based authentication and a...

Signup or login using Paypal's Authorization or Permissions api's

Minimalistic authorization focused on APIs

Escher authorization for rack based http servers with ease in a form of middleware

This is a basic Rails engine utilizing Authlogic, CanCan and Easy Roles to create a starting point for simple Rails-based applications that need authentication and authorization.

Rack middleware for using the Authorization header with token authentication

Permitters are an object-oriented way of defining what request parameters are permitted. using Strong Parameters. It is to Strong Parameters what ActiveModel::Serializers are to as_json/to_json, but supports CanCan and similar authorization frameworks.

Thin wrapper around Russian Post package tracking SOAP API. Works on a per-package basis (contrary to the bulk ticket-based API). Use it at your own risk, since the API may appear unstable and require authorization in future.