I am looking for a good role based authorization solution to use alongside Authlogic. Anyone have any good suggestions? Please list some pros and cons from your experience if possible please.
4 回答
At RailsConf, I saw a lightning talk on Lockdown and was very impressed. Anyone with a modest amount of db and rails experience can roll their own ACL system, but Lockdown looks nice because it tries to keep the permission stuff out of the way.
http://lockdown.rubyforge.org/
I had used role_requirement previously but I didn't dig it.
Acl9 works great with AuthLogic:
I have recently have been using a gem called easy_roles. Super light weight and super easy to use. It's also flexible enough for you to implement your own controller security etc etc.
Check out http://blog.platform45.com/2009/10/05/howto-basic-roles-for-users for basic role requirement, works with restful_authentication and authlogic..
It's really simple, fast and lightweight.