gitb
Reputation: 1100
How can I password-protect a page/action with only a password
I want to require that authenticated users provide a password to access a certain page/action.
I know that RoR has authenticate_or_request_with_http_basic() that can be used to protect an action but that requires that a name and password be entered and I'm only interested in requiring a password.
Upvotes: 0
Views: 519
Answers (1)
Esse
Reputation: 3298
Well, you can always leave user blank.
If it isn't an option I have some bad news - browser will always ask for user and password when using http basic authentication.
However there are some different options:
- providing some key in url that works as password (quite unsecure)
- login box with password field only, that (when password is correct) set
session[:auth] = true. And appropriatebefore_filterin yourApplicationController. - Normak authentication but with one field (password only) - I'm not sure if it would be good.
I think second option would be best here (if of course, leaving http basic auth login/password box isn't an option).
Upvotes: 2
Related Questions
- Password protecting pages simply with rails - what should I do?
- Rails- Authenticate a user before acces to a page
- Password-Protect a Single Page in Rails
- Rails controller: authenticating only for certain actions
- Specific Rails routes password protected
- Rails: Restrict access to specific pages
- How do i password protect a page in refinery cms?
- RoR - password protected model
- How do I protect a specific page from being viewing with out login in ruby on rails
- Rails Way to Restrict Page Access Without Sessions