mirror of
https://github.com/rails/rails.git
synced 2022-11-09 12:12:34 -05:00
Added to 'Security' section; especially reference to 'Ruby on Rails Security Guide'. [ci skip]
This commit is contained in:
parent
72293857c7
commit
1c17c01626
1 changed files with 15 additions and 0 deletions
|
@ -1616,6 +1616,8 @@ end
|
|||
Security
|
||||
--------
|
||||
|
||||
### Basic Authentication
|
||||
|
||||
If you were to publish your blog online, anybody would be able to add, edit and
|
||||
delete posts or delete comments.
|
||||
|
||||
|
@ -1663,6 +1665,19 @@ Authentication challenge
|
|||
|
||||
![Basic HTTP Authentication Challenge](images/getting_started/challenge.png)
|
||||
|
||||
Other authentication methods are available for Rails applications. Two popular
|
||||
authentication add-ons for Rails are the [Devise](https://github.com/plataformatec/devise)
|
||||
rails engine and the [Authlogic](https://github.com/binarylogic/authlogic) gem,
|
||||
along with a number of others.
|
||||
|
||||
|
||||
### Other Security Considerations
|
||||
|
||||
Security, especially in web applications, is a broad and detailed area. Security
|
||||
in your Rails application is covered in more depth in
|
||||
The [Ruby on Rails Security Guide](security.html)
|
||||
|
||||
|
||||
What's Next?
|
||||
------------
|
||||
|
||||
|
|
Loading…
Reference in a new issue