The Ruby Rogues

The Ruby Rogues podcast is a panel discussion about topics relating to programming, careers, community, and Ruby. We release a conversation with notable programmers and Rubyists each week to help programmers advance in their careers and skills.

Subscribe

Get episodes automatically

294

RR 294 JSON Web Tokens, Authentication, and Authorization with David Kimura


JSON Web Tokens, Authentication, and Authorization with David Kimura

On today's episode, Charles Max Wood and Jerome Hardaway discuss JSON Web Tokens, Authentication, and Authorization with David Kimura. David has worked on Rubies as well as for Sage Software for about 7 years.

What is DriftingRuby?

David runs a short screencast site called DriftingRuby.com. It's where anyone can learn about Rubies through videos. What's great about it is it's currently free for everyone to use.

Rails Devise Authentication

Devise authentication can come in difficult for some. But if you get into its core, you'll find it relatively easy. It uses BCrypt to store your password, takes it every time you sign in, and encodes it to see if it matches the hatch.

This a secure way of authentication. The stronger the password you have, the more difficult it is to be hacked. One good thing about BCrypt is that it also keeps the salt between the password. It makes it irreversible, and changes over time.

Configuration at Rails

Rails provides you the freedom to configure. So if you want to store a system or something else, you are free to do so. It depends on your situation and the type of application you're building.

To hear about JSON Web Tokens, Authentication, and Authorization with David Kimura, download and listen to the entire episode.

If you’re short on time, here are the highlights of JSON Web Tokens, Authentication, and Authorization with David Kimura:

Rails devise authentication? ([4:09])

Configuration at Rails? ([7:21])

How do JavaScript web tokens work? ([10:25])

Authorization in Rails? ([16:45])

Libraries for authentication? ([26:34])

Capabilities in trade-offs? ([36:32])

Future with Rails? ([40:02])

Picks:

Jerome: Action Cable in Rails 5 by Michael Hartl, SRE Conference in San Francisco

Charles: Battlestar Galactica, Upcoming My Story Episodes on JavaScript Jabber and Ruby Rogues

David: Doctor Who, Attend Meet Ups

Links and Topics to Check Out

Authlogic
Devise 
HTTP Basic Authentication 
BCrypt 
Rails Engine
Redis 
SSL
Adobe Hack
Rainbow Tables
RDS 
JWTs 

This episode is sponsored by

comments powered by Disqus
x