Skip to content
/ ember-rails-authentication-example Public

An example of authentication using Rails and Ember without any other third-party libraries.

20 stars 2 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

mitchlloyd/ember-rails-authentication-example

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

24 Commits
client
client
 
 
server
server
 
 
README.md
README.md
 
 

Repository files navigation

Ember and Rails Authentication from Scratch

This is an example of setting up authentication with Ember and Rails without using any additional libraries.

If you're setting up authentication you should consider using:

Setting Up the Application

cd server
rake db:setup

Running the Application

In the server directory run

rails s

In the client directory run

ember serve

Ember is setup to proxy unknown requests to the Rails app at localhost:3000.

To use the app visit http://localhost:4200/posts

You can login with these credentials:

email:
[email protected]
password:
password

Key Architecture Points

The session is the interface between the client and the server. It contains all the details about what API endpoints to use and how to setup the CSRF token.

Routes that require the user to be authenticated are nested under the 'authenticated' route in the router. Note that templates and the route file for these nested routes do not need to be nested under "authenticated" folders in ember-cli. Also linking to these routes does not need to refer to the "authenticated" namespace. This is a key property of resources in the Ember router that makes this type of pattern easy to use without needing to constantly refer to the 'authenticated' namespace.

The authenticated route attempts to fetch the current user information and CSRF token from the Rails app. It redirects the user to the login form if this login attempt fails. Also notice that this route stores the attempted transition when authentication fails. This transition will then be retried when the user later logs in.

The authenticated route provides an easy way to wrap child templates in an authenticated template so that they can all share a common layout. Also the authenticated route ensures that the session is loaded so that the client can change its behavior based on whether or not the session.isAuthenticated. The purpose of the authenticated route is not to secure data (in this case posts). The server ensures that the user is authorized when asking for the posts and returns a 401 if they are not logged in.

The login route handles login and failed login attempts.

About

An example of authentication using Rails and Ember without any other third-party libraries.

Resources

Readme
Activity

Stars

20 stars

Watchers

3 watching

Forks

2 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages