webauthn-ruby
webauthn-ruby | request.js | |
---|---|---|
5 | 11 | |
629 | 369 | |
2.4% | 2.4% | |
5.9 | 5.3 | |
3 months ago | about 2 months ago | |
Ruby | JavaScript | |
MIT License | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
webauthn-ruby
-
Passkey Authentication with Rodauth
Rodauth provides first class support for passkeys, implemented on top of the excellent webauthn-ruby gem. It enables using passkeys as a multifactor authentication method, or for passwordless login and registration. In addition to routes, views and database storage, it also provides the complete JavaScript part that interacts with Web Authentication API for zero configuration.
-
I’ve started discussion + work on updating Devise to support passkeys; we need contributors!
Would it make sense to leverage another gem like https://github.com/cedarcode/webauthn-ruby for this? Or are we thinking a completely devise internal implementation? Either way I’m interested in contributing to this movement for devise
-
Apple Passkey
I've used this gem for rails apps https://github.com/cedarcode/webauthn-ruby
-
Multi-Factor Authentication for Rails with WebAuthn and Devise
Luckily, there is a WebAuthn gem for Ruby (thanks!) that will do all the hard work for us. Just run bundle add webauthn.
-
Best practices for Two Factor Auth / 2FA in 2021?
All OTP-based 2FA methods are phishable. For real security, you should be looking at FIDO (U2F or WebAuthN)
request.js
-
Help importing fetch on stimulus
For some extra help with crsf tokens. I would recommend the request.js library in the rails GitHub. https://github.com/rails/request.js
-
Build a Table Editor with Trix and Turbo Frames in Rails
We will now connect our toolbar's table button to the server-side controller action we have just written. To do this, we first need to bring Rails' request.js library into the project. This library will help us administer post requests from the client, including proper CSRF-tokens, etc.:
-
how to implement a bootstrap dropdown in a button
Then, you will need to use fetch or other libs like rails/request.js (https://github.com/rails/request.js) to send a patch request with formData to your model's update path (usually something like /fruits), this is to update your model data. If you are using scaffolded controller, you should have respond_to js configured for you by default. If not, remember to add respond_to :js to your controller, and list data attributes you wanted to return from the server.
-
Reactiveness In Rails
Stimulus and request.js should get you about 90% of the way for your example
-
Pagination and infinite scrolling with Rails and the Hotwire stack
One way to work around this is described in Dale’s article. In it, a Stimulus controller and request.js are used to insert a Turbo Stream header into GET requests, getting Turbo to see the request as a Turbo Stream request despite not originating from a form submission.
-
Is it possible to trigger turbo_stream update from Stimulus controller?
The Rails.ajax function comes from the @rails/ujs package, which isn't Turbo-aware. You should be using @rails/request.js instead, which can execute Turbo Stream commands:
-
Rails 7.0 has been released
It's not part of Hotwire, but supplemental for when you want to make AJAX requests from Stimulus or whatever. https://github.com/rails/request.js
-
Using stimulus to fetch api in ajax manner
So with our applications we've started using request.js to make JS based requests to the applications, it's super handy and very easy to use.
-
Infinite Scroll with HOTWire - Part 2: Adding Stimulus
request.js is a minimalistic JavaScript pacakge that is set to replace Rails UJS in the near future. We will be using it to fetch new pages from the server. Let's install the package
-
Multi-Factor Authentication for Rails with WebAuthn and Devise
First, we will add the necessary NPM packages. We will use @github/webauthn-json as a nice wrapper for the WebAuthn API and @rails/request.js for easier requests to the backend (with built-in Turbo Stream support).
What are some alternatives?
webauthn-with-devise - The companion app for the article "Secure authentication for Rails with WebAuthn and Devise"
hotwire-example-template - A collection of branches that transmit HTML over the wire.
devise-2fa - Devise 2FA with Time Based OTP/rfc6238 tokens and encrypted secrets.
vite_ruby - ⚡️ Vite.js in Ruby, bringing joy to your JavaScript experience
fido2-net-lib - FIDO2 .NET library for FIDO2 / WebAuthn Attestation and Assertion using .NET
devise-otp - Two Factors authentication for Devise using Time Based OTP/rfc6238 tokens.
webauthn-json - 🔏 A small WebAuthn API wrapper that translates to/from pure JSON using base64url.
fido2 - Open-source FIDO server, featuring the FIDO2 standard. https://demo4.strongkey.com/getstarted/#/openapi/fido
flutter-passkeys - Flutter packages to enable passkey authentication (based on WebAuthn / FIDO2).
Devise - Flexible authentication solution for Rails with Warden.