Drifting Ruby

Reset Password from Scratch

#316 Sep 26, 2021 pro

Continuing from Episode 300, we look at creating a password reset feature. We explore some of the security concerns around this feature and some mitigating options.

authentication rails security

2 0

Hardware Security Keys

#302 Jun 27, 2021 pro

Using a hardware security key for multi-factor authentication is a great way to protect user accounts. In this episode, we look at implementing security keys into our Ruby on Rails applications with Devise user accounts.

authentication rails security

3 1

Managing User Session Devices

#301 Jun 20, 2021 pro

In this episode, we look to add on some features to Device with tracking devices that a user has authenticated with and then remote deleting sessions.

authentication devise rails security

8 0

Cross-Origin Resource Sharing (CORS)

#254 Aug 9, 2020 pro

Cross-Origin Resource Sharing (CORS) is a mechanism that uses additional HTTP headers to tell browsers to give a web application running at one origin, access to selected resources from a different origin.

javascript rails security

4 8

Dynamic Role Management

#247 Jun 21, 2020 pro

Create dynamic roles that can be assigned to users. Based on the assigned role, the user will be able to perform or view various parts of the application.

model rails security

16 8

Policy Manager with GDPR Rails

#164 Dec 16, 2018 pro

Using the gdpr_rails gem, we look at adding a policy manager to require users to accept age, terms, and privacy policies before signing up for an account.

rails security

13 2

Friend Requests From Scratch

#155 Oct 14, 2018 pro

Part I - In this episode, we create our authentication for users, default view for authenticated users, friendship model, associations and scopes for our social media application.

rails model security series - social media

8 18

Safely Running Shell Commands

#151 Sep 16, 2018 pro

We may come across a need to run shell commands and Ruby has some built in methods which appear safe, but can introduce major security risks.

rails security ruby

8 0

Search Encrypted Attributes with Blind Index

#139 Jun 24, 2018 pro

Keeping client data protected is important, but once an attribute is encrypted, it becomes difficult to work with it. With Blind Index, we regain functionality on searching and validations.

rails model security

10 0

Preparing for General Data Protection Regulation (GDPR)

#129 Apr 15, 2018 pro

In this episode, we look adding in some of the requirements of the General Data Protection Regulation into our Ruby on Rails application. Disclaimer: this episode is not legal advice and you should consult a lawyer.

rails security

11 1

View

Episodes

Sort

Tags

Reset Password from Scratch

Hardware Security Keys

Managing User Session Devices

Cross-Origin Resource Sharing (CORS)

Dynamic Role Management

Policy Manager with GDPR Rails

Friend Requests From Scratch

Safely Running Shell Commands

Search Encrypted Attributes with Blind Index

Preparing for General Data Protection Regulation (GDPR)

Learning Paths

Video Logs new

Blog

Merchandise new

View

Episodes

Sort

Tags

Reset Password from Scratch

Hardware Security Keys

Managing User Session Devices

Cross-Origin Resource Sharing (CORS)

Dynamic Role Management

Policy Manager with GDPR Rails

Friend Requests From Scratch

Safely Running Shell Commands

Search Encrypted Attributes with Blind Index

Preparing for General Data Protection Regulation (GDPR)