Comments on: Authentication Setup with Merb Auth and Merb Stack

By: Daisy Pratt

Daisy Pratt — Sat, 10 Jan 2009 14:40:25 +0000

hi
qdoh5j06povgioy4
good luck

By: Elliott Bradley

Elliott Bradley — Fri, 09 Jan 2009 01:53:38 +0000

hi
qdoh5j06povgioy4
good luck

By: grigio

grigio — Tue, 02 Dec 2008 23:52:30 +0000

Nice screencast. Is possible to localize merb_auth?

By: Dick Davies

Dick Davies — Mon, 10 Nov 2008 14:32:33 +0000

Thanks, that’s nice and straightforward. Couple of glitches with 1.0 :

1. merb -i insists you install webrat
2. it’s now rake db:automigrate (no underscore)

By: Tim

Tim — Sat, 08 Nov 2008 00:17:36 +0000

The error you get is probably: http://merb.lighthouseapp.com/projects/7433/tickets/967-wrong-constant-name-merbauthslicepasswordsessions-nameerror#ticket-967-6

it has been resolved in the 1.0 release which should be released today.

By: Bradly Feeley

Bradly Feeley — Fri, 07 Nov 2008 21:09:34 +0000

@JRS
I’ll run through this tutorial again tonight with the latest Merb release and post a comment on what might need tweaking. Thanks for the heads up.

By: J R S

J R S — Fri, 07 Nov 2008 21:04:22 +0000

Hello,
I’m trying to follow this tutorial, but it seems that when I login with the correct login name and password, I get exception errors, I’m not sure if there was a change to merb-auth since this tutorial. This is using a fresh unedited resource. If i use an incorrect login and password I receive the login error messages, but when i use the correct login/password, i get the exception errors. It doesn’t appear to redirect me to the secrets page, the url remains localhost:4000/login.

By: Ludo van den Boom

Ludo van den Boom — Mon, 20 Oct 2008 11:49:05 +0000

Is there an easy way to make the password-slice use a different layout than the default application layout?

In a previous version of merb-auth I used a configuration option to do this (Merb::Slices::config[:merb_auth][:layout] = :admin), but this doesn’t work anymore. I see that merb-auth now adds an action to the Exceptions controller (unauthenticated). In my case, this action should use the :admin layout, but the other actions in Exceptions should keep using the :application layout. Any ideas?

By: C Villalobos

C Villalobos — Mon, 20 Oct 2008 01:38:54 +0000

Just wondering… what is the deal with the ?message after authentication? Is there a way to remove that or to pass it in POST. Other than that, thanks for the auth.

By: adam french

adam french — Tue, 14 Oct 2008 13:59:14 +0000

I contend that at it’s most basic implementation, authentication provides 1-degree of authorization (people need to be logged in to access a certain thing). But you also can’t have authorization without some degree of authentication (even if it’s storing state in a session).

The intent behind MerbAuth isn’t to completely separate authentication from authorization; it’s to separate them just enough that their implementations can vary without affecting the other.