Home > computer > Rails 2.0: HTTP Basic Authentication

Rails 2.0: HTTP Basic Authentication

December 26th, 2007
Goto comments Leave a comment

lock.pngHTTP Basic authentication support comes bundled with Rails 2.0, alleviating the need for external plugins we used with Rails 1.x. Here’s how you can use (and test) this new Rails 2.0 feature.Controller Code

before_filter :authenticatedef authenticate

authenticate_or_request_with_http_basic do |username, password|

true # replace with your own custom logic

end

end

Functional Test

def setup

@controller = AdminController.new
@request = ActionController::TestRequest.new
@response = ActionController::TestResponse.new
set_basic_authentication

end

def test_basic_authentication_success

get :index
assert_response :success

end

def set_basic_authentication

@request.env['HTTP_AUTHORIZATION'] = 'Basic ' + Base64::b64encode("some_username:some_password")

end

For Rails 2.0 internal implementation details, see http_authentication.rb.

  • Share/Save/Bookmark

preston.lee computer , ,

  1. ryan
    March 16th, 2008 at 06:20 | #1
    Reply | Quote

    Where does “Configuration::ADMIN[:username]” come from?

  2. preston.lee
    March 16th, 2008 at 22:48 | #2
    Reply | Quote

    Just a placeholder for wherever your admin password comes from. I updated it to read “some_username:some_password”.

  3. Anthony Bailey
    April 9th, 2008 at 11:01 | #3
    Reply | Quote

    Thanks for this – just what I was Googling for.

    BTW, I found that Base64::b64encode printed the encoded string as a side effect, which made my rake test output rather noisy.

    Using Base64::encode64 instead solved that for me.

  1. No trackbacks yet.