Comments on: authlogic: Another Take on Rails Authentication http://www.railsinside.com/plugins/145-authlogic-another-take-on-rails-authentication.html Daily Rails news, views, tips, and joy Fri, 12 Mar 2010 12:24:46 +0000 http://wordpress.org/?v=2.8.4 hourly 1 By: Amol Hatwar (rubygem) http://www.railsinside.com/plugins/145-authlogic-another-take-on-rails-authentication.html/comment-page-1#comment-541 Amol Hatwar (rubygem) Wed, 11 Mar 2009 21:13:29 +0000 http://www.railsinside.com/?p=145#comment-541 Goes to say that less is indeed more :). Goes to say that less is indeed more :).

]]> By: Sam http://www.railsinside.com/plugins/145-authlogic-another-take-on-rails-authentication.html/comment-page-1#comment-526 Sam Tue, 10 Mar 2009 04:46:47 +0000 http://www.railsinside.com/?p=145#comment-526 No offense to Rails core, but RESTful authentication is heavy and intrusive. It just doesn't make any sense. A user's session is an instance of a model, UserSession. Enough said. No offense to Rails core, but RESTful authentication is heavy and intrusive. It just doesn't make any sense. A user's session is an instance of a model, UserSession. Enough said.

]]> By: Ben Johnson http://www.railsinside.com/plugins/145-authlogic-another-take-on-rails-authentication.html/comment-page-1#comment-125 Ben Johnson Mon, 10 Nov 2008 04:40:58 +0000 http://www.railsinside.com/?p=145#comment-125 Great post, thanks for promoting this. reck, you make some good / obvious points. But where do sweepers lie in the MVC architecture? In my opinion, they blur the lines of the MVC structure a little bit too, but they make expiring caches extremely easy. They are connected to models, who ultimately trigger if caches expire or not. I just took that same idea and applied it to sessions. Lastly, the UserSession doesn't have to be labeled as a model. Why not label it as a controller utility? You can extract controller logic out into a class. I recommend putting it in the models directory to emphasize that it can be used like a model, which ultimately fits into the conventional style of RESTful development. But it could just as easily fit in your lib directory. Just something to get people to look at this from a different angle, hopefully this clarifies my perspective on the library. Great post, thanks for promoting this.

reck, you make some good / obvious points. But where do sweepers lie in the MVC architecture? In my opinion, they blur the lines of the MVC structure a little bit too, but they make expiring caches extremely easy. They are connected to models, who ultimately trigger if caches expire or not. I just took that same idea and applied it to sessions.

Lastly, the UserSession doesn't have to be labeled as a model. Why not label it as a controller utility? You can extract controller logic out into a class. I recommend putting it in the models directory to emphasize that it can be used like a model, which ultimately fits into the conventional style of RESTful development. But it could just as easily fit in your lib directory. Just something to get people to look at this from a different angle, hopefully this clarifies my perspective on the library.

]]> By: reck http://www.railsinside.com/plugins/145-authlogic-another-take-on-rails-authentication.html/comment-page-1#comment-117 reck Thu, 06 Nov 2008 23:23:16 +0000 http://www.railsinside.com/?p=145#comment-117 The fact that the User model deals with sessions and cookies concerns me a bit. I'm not a purist, but it breaks the MVC lines enough to give me pause. The fact that the User model deals with sessions and cookies concerns me a bit. I'm not a purist, but it breaks the MVC lines enough to give me pause.

]]> By: Peter Cooper http://www.railsinside.com/plugins/145-authlogic-another-take-on-rails-authentication.html/comment-page-1#comment-116 Peter Cooper Thu, 06 Nov 2008 18:57:09 +0000 http://www.railsinside.com/?p=145#comment-116 I haven't updated the template yet, but note that this post was written by Mike Gunderloy. One of Rails Inside's new writers :) I haven't updated the template yet, but note that this post was written by Mike Gunderloy. One of Rails Inside's new writers :)

]]> By: Bruno Carvalho http://www.railsinside.com/plugins/145-authlogic-another-take-on-rails-authentication.html/comment-page-1#comment-115 Bruno Carvalho Thu, 06 Nov 2008 18:10:32 +0000 http://www.railsinside.com/?p=145#comment-115 Certainly a great plugin, way better than the intrusive Restful Authentication. Thanks for sharing this... Certainly a great plugin, way better than the intrusive Restful Authentication.

Thanks for sharing this...

]]> By: Vitor Pellegrino http://www.railsinside.com/plugins/145-authlogic-another-take-on-rails-authentication.html/comment-page-1#comment-114 Vitor Pellegrino Thu, 06 Nov 2008 13:48:17 +0000 http://www.railsinside.com/?p=145#comment-114 OMG, i think this is one of the best news of this year. I could not stand anymore the intrusive way that Restful Authentication treated this problem. OMG, i think this is one of the best news of this year.
I could not stand anymore the intrusive way that Restful Authentication treated this problem.

]]> By: Alistair Holt http://www.railsinside.com/plugins/145-authlogic-another-take-on-rails-authentication.html/comment-page-1#comment-113 Alistair Holt Thu, 06 Nov 2008 12:05:16 +0000 http://www.railsinside.com/?p=145#comment-113 Great. I'll give this a try! Great. I'll give this a try!

]]> By: Mark Holden http://www.railsinside.com/plugins/145-authlogic-another-take-on-rails-authentication.html/comment-page-1#comment-111 Mark Holden Thu, 06 Nov 2008 07:17:14 +0000 http://www.railsinside.com/?p=145#comment-111 Thanks for posting this, this is really nice. Definitely going to be my choice for authentication in my next app. Thanks for posting this, this is really nice. Definitely going to be my choice for authentication in my next app.

]]>