Everybody hates CSRF

This page summarizes the projects mentioned and recommended in the original post on dev.to
Web Frameworks Oauth2 Omniauth Rails Authentication

Scout Monitoring - Rennaisance engineers rejoice! 1 gem 5 min to app monitoring
5-minute onboarding. No sales team. Devs in the support channels. No DevOps team required. Get the free app insights every engineer deserves with Scout Monitoring.
www.scoutapm.com
featured
InfluxDB - Power Real-Time Data Analytics at Scale
Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
www.influxdata.com
featured

  • omniauth-apple

    OmniAuth strategy for Sign In with Apple

    • We've run into some issues where the cookie that manages our session isn't available, therefore breaking checks 2 & 3 mentioned above. If interested, this issue has the most in-detail conversation on that problem specific to our case.

  • omniauth-oauth2

    An abstract OAuth2 strategy for OmniAuth.

    • Omniauth-OAuth checks for a state value sent in with the request that should be available within the session when the callback is performed (source here)

  • Scout Monitoring

    Rennaisance engineers rejoice! 1 gem 5 min to app monitoring. 5-minute onboarding. No sales team. Devs in the support channels. No DevOps team required. Get the free app insights every engineer deserves with Scout Monitoring.

    Scout Monitoring logo

  • Ruby on Rails

    Ruby on Rails

    • Action Pack checks the ORIGIN header of POST requests so they are required to match the website's own domain, i.e. request.base_url (source here)

NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.

Suggest a related project

Related posts

  • On the road to ramen profitability 🍜 💸

    4 projects | dev.to | 8 May 2024

  • Social Login in Rails with Rodauth

    4 projects | /r/ruby | 6 Dec 2022

  • rodauth-omniauth released: login & registration with multiple external providers

    4 projects | /r/ruby | 3 Nov 2022

  • Setting Up OmniAuth Authentication in Development

    6 projects | dev.to | 29 Dec 2021

  • Interesting throw/catch behaviour in Ruby

    2 projects | dev.to | 24 Jan 2021