Rigorous discussion on lack of baked-in authentication

Alexander_Farley · July 8, 2015, 8:27pm

Has there been any rigorous discussion of why Rails doesn’t have baked-in authentication? I’ve seen a handful of posts alleging that “authentication varies too much” but I’m having trouble envisioning which fundamentally distinct use-cases would prevent a single library from solving 98% of user needs.

Can anyone point to such a discussion? Failing that, I’d like to hear about various use cases which would be incompatible or messy if they were implemented in a single library.

Being an ‘opinionated’ framework, it seems like authentication is something that would benefit from an opinion.

CavalryJim · July 9, 2015, 12:28pm

If there were to be a 'backed-in' authentication solution, it would likely be devise or something very devise-ish. I think that would be a little too presumptuous of Rails to force a heavyweight solution upon users. There are existing application generators that bundle devise into a new app's creation. I do not see a need for what you ask.

Topic		Replies	Views
ActiveAuthentication A May Of WTFs	32	5397	May 17, 2020
Roll your own authentication? rubyonrails-talk	5	135	May 8, 2013
Opinions needed... rubyonrails-talk	1	116	March 4, 2007
Is it worth rolling your own authentication? rubyonrails-talk	5	149	March 15, 2012
Authentication recommendations? rubyonrails-talk	4	103	May 3, 2011

Rigorous discussion on lack of baked-in authentication

Related topics

More Resources