JSON Web Tokens, Authentication, and Authorization with David Kimura
On today's episode, Charles Max Wood and Jerome Hardaway discuss JSON Web Tokens, Authentication, and Authorization with David Kimura. David has worked on Rubies as well as for Sage Software for about 7 years.
What is DriftingRuby?
David runs a short screencast site called DriftingRuby.com. It's where anyone can learn about Rubies through videos. What's great about it is it's currently free for everyone to use.
Rails Devise Authentication
Devise authentication can come in difficult for some. But if you get into its core, you'll find it relatively easy. It uses BCrypt to store your password, takes it every time you sign in, and encodes it to see if it matches the hatch.
This a secure way of authentication. The stronger the password you have, the more difficult it is to be hacked. One good thing about BCrypt is that it also keeps the salt between the password. It makes it irreversible, and changes over time.
Configuration at Rails
Rails provides you the freedom to configure. So if you want to store a system or something else, you are free to do so. It depends on your situation and the type of application you're building.
To hear about JSON Web Tokens, Authentication, and Authorization with David Kimura, download and listen to the entire episode.
If you’re short on time, here are the highlights of JSON Web Tokens, Authentication, and Authorization with David Kimura:
Rails devise authentication? ([4:09])
Configuration at Rails? ([7:21])
Authorization in Rails? ([16:45])
Libraries for authentication? ([26:34])
Capabilities in trade-offs? ([36:32])
Future with Rails? ([40:02])
Jerome: Action Cable in Rails 5 by Michael Hartl, SRE Conference in San Francisco
David: Doctor Who, Attend Meet Ups
Links and Topics to Check Out
HTTP Basic Authentication