I am searching for a gem that handles authentication and authorization
at the same time for me.
I tried several combinations of different authentication and
authorization gems, but even if the combinations worked, I dont get
comfortable with them. I dislike the fact to configure so many things
in so many places...
Therefore I am searching for a gem that handles both for me and is
easy to configure.
It should work with rails 3.1 and have configurable roles. +1 if I can
add own roles. +2 if I can assign the roles per object and dont have
to assign them system wide...
To clarify the +2:
Lets say I have a forum and a blog with the same user base. I have the
admin role in both places and may do everything everywhere.
A normal user without special rights is allowed to read and comment in
the blog and to write in the forum.
The user "klaus" is an author for blogposts but has no special rights
in the forum, so there he is a normal user.
On the other Hand there is "alfred" who is allowed to moderate the
forum but not allowed to do anything more than comments and reading in
There could be a third user that is allowed to write articles in the
blog and moderate the forum...
With the authorization gems I found and tried so far I had to define
systemwide roles that had to implement different behaviour for the
subsystems, so I had the following roles in this simple scenario:
owner -> Overall side admin
blog_author_and_forum_mod -> Is allowed to use full blog and moderate
in the forum
only_blog_author -> Is allowed to use the blog but is a simple user in the forum
only_forum_mod -> Is allowed to moderate the forum, but is not allowed
to create his own blogsposts
user -> standarduser as described above
guest -> Read-Only, is not allowed to comment or write in the forum.
If there are other subsystems added or hidden forums this will get
much more complicated...