This week we released the first release candidate version of Devise that is fully compatible with Rails 4, and we're bumping its version to 3.0. This version completely drops support for Rails 3.1 and Ruby 1.8.7, only keeping compatibility with both Rails 3.2 and Rails 4, running with Ruby 1.9.3 and 2.0.
This rc version took some time to get ready, we've been running a rails4 branch for some time already and one of the reasons was because of the changes required to make …
- A Fresh Cup: Double Shot #1126
- Giles Bowkett: How I Understand Ember's MVC
- New Relic: Making the Move to Rails 3
- Hobo Blog: Hobo 2.0.0 released!
- Phusion Corporate Blog: Rails SQL injection vulnerability: hold your horses, here are the facts
- mir.aculo.us: Embedding Canvas and SVG charts in emails
In case you are using a Devise series older than the ones listed above, recommendations are provided below back to v1.2 series. Regardless, an upgrade to more recent versions is advised.
Versions affected
We checked all Devise versions released in the previous two years and recommendations follows as below.
v1.5, v2.0, v2.1 and v2.2 series
You can upgrade to any of v2.2.3, v2.1.3, v2.0.5 and v1.5.4. In case an upgrade is not feasible, please add the following patch to config/initializers/devise_patch.rb …
- A Fresh Cup: Double Shot #1054
- RubyLearning Blog: Minimal I18n with Rails 3.2
- A Fresh Cup: Double Shot #784
- Transcending Frontiers: Reloading Factory Girl Factories in the Rails 3 Console
- Odes of the Occult: Thoughts on Ruby gem dependencies
- RailsCasts: Episode 210: Customizing Devise
…fit my problem really well or am I better off writing 20 lines of code myself? For example: pull in Devise or use HTTP basic authentication.
Should I use this particular library? Sometimes using another library allows you to drop one you were using for another feature. For example: use OpenSSL for both certificate signing and random token generation and drop Mongoid::Token.
Check if the new dependency has dependencies itself and weigh it against the benefit of using it. For example: …
- Brightbox Ruby Blog: Rails JSON and XML security bugs
- A Fresh Cup: Double Shot #1040
- Heroku: Rails Security Vulnerability
- giant robots smashing into other giant robots: Hidden gems: suspenders
- The Pug Automatic: Rails STI and form_for
- Viget.com Blogs: Redirector: A Redirect Rule Engine for Rails Applications
Getting Extra Permissions from Facebook when using Devise and Omniauth
Installing ruby-debug19 for Ruby 1.9.3 on Windows
Installing Ruby 1.9.3 on OS X Without Xcode or GCC
Processing Images with CarrierWave
An entry level tutorial to managing uploaded files in a Rails app using CarrierWave.
Ruby Debug Cheat Sheet [ PNG image]
![Ruby Debug Cheat Sheet [ PNG image]](http://i.imgur.com/vPo8A.png){kind=link}
Refactoring with Hexagonal Rails
Four Guidelines That I Feel Have Improved …
- giant robots smashing into other giant robots: Multiple environments on Heroku
- Plataformatec Blog: Active Record `attribute?` method
- Hobo Blog: Hobo 1.4.0.pre8 released, master moving to Rails 3.2
- A Rubyist Railstastic Adventure: The App Scrolls for creating and transforming Rails apps
- Invisible Blocks: Rails 3: Selectively Override Email Recipients
- Videos matching: rubyonrails: Ruby on Rails Tutorial advanced setup
But if you want to have everything translated, you have to go the extra mile and actually use Devise's generator to clone its view templates within your Rails app by running rails g devise:views . This will copy the templates in app/views/devise . Keep the templates you want and translate all of them. As an example, take the resend confirmation template: <h2>Resend confirmation instructions</h2>
<%= form_for(resource, :as => resource_name, :url => confirmation_path(resource_name), …
- Ruby Inside: This Week in Ruby: Rails 4 Sneak Peeks, A Gist Drama, and a CoffeeScript Book (by a Rubyist!)
- Katz Got Your Tongue?: Tokaido: My Hopes and Dreams
- Life at the Speed of Green: Rails console tweaks gem
- Envy Labs: My Campaign to Stop Bad Rails Code
- Obie Fernandez: The Rails Dilemma
- The Pug Automatic: Randomize your factories
Integrating Devise with Backbone.js - For those of you out on the cutting edge.
Focused Controller: Bringing Real OOP to Rails Controllers - An experiment from one of the Rails core contributors that fills me with trepidation.
How to Securely Bootstrap JSON in a Rails View - Escaping, user-supplied content, and XSS concerns when you're consuming JSON directly.
Amon - Server monitoring, logging, and error tracking all in one package. …
- Patrick Lenz: Proper Language Detection on the Web
- Andrzej on Software: How we ended up organizing a Ruby conference
- There's no place like ::1: Titanium With Coffeescript and Backbone.js - Part 2
- PragDave: A subtle potential bug in most Rails applications
- PeepCode Products: Play by Play: Aaron Patterson
- Ruby Inside: The Last Week in Ruby: RSpec 2.8, Redcar 0.12, Torquebox 2.0 beta, articles and more
Rails Tutorial for Devise with CanCan and Twitter Bootstrap
Daniel Kehoe is known for his detailed Rails tutorials and this time he demonstrates how to create a Rails 3.2 application using Devise with CanCan and Twitter Bootstrap, from start to finish.
Introducing DCell: Actor-based Distributed Objects for Ruby
DCell by Tony Arcieri (of Celluloid fame) is an actor-based distributed object oriented programming framework for Ruby. It's …
- Tea-Driven Development: Hexagonal Rails - Introduction
- Giles Bowkett: With Apologies, Some Senseless Ruby Bickering
- Merbist: Learning from Rails' failures
- paperplanes: On Notifications, Log Subscribers, and Bringing Sanity to Rails' Logging
- Plataformatec Blog: My five favorite "hidden" features in Rails 3.2
- Signal vs. Noise: Mini tech note: MySQL query comments in Rails
Two step signup with Devise Registrazione in due step con Devise
Tips: Multiple pagination with will paginate Tips: Paginazione multipla con will_paginate
Prevent registration of reserved login Prevenire la registrazione di login riservate
A new layout easier and more spacious Un nuovo layout più semplice e spazioso
How to send email asynchronously using Devise and Rails3 Come spedire email in modo asincrono con Devise e Rails3 …
- Giles Bowkett: Blog Comment Similarity Detector (Free Code For Disqus)
- New Relic: Python for the Enterprise: Holy Grail or Flying Circus? Here's what we think
- ricroberts: Create Your Own Semantic Web-enabled Blog
- Lindsay Holmwood - auxesis' musings: Switching to Jekyll
- Luke Redpath: Spring cleaning
- Adventures with Ruby: About structs
…Access control system for Rails 3 that extends CanCan and integrates with Devise, among other things.
Who Needs Process? - I don't think I've tried every possible software process, but I've tried a hell of a lot of them. These days, I'm inclined to agree with Ted Dziuba's promotion of anarchy in this article over most anything else.
Minitest Quick Reference - Handy, especially if you haven't dug into Ruby 1.9's default testing …
- Engine Yard Developer Blog: Cloud 2?
- AdaRuby: Advanced Rails: Go to the next level with Rails
- Slicehost VPS Hosting is now Rackspace Cloud Servers hosting - Blog: Slicehost Live in Chicago
- Ruby on Rails Development: Rails Security Checklist
- time to bleed by Joe Damato: Defeating the Matasano C++ Challenge with ASLR enabled
- Blue Box Group: News: Blue Box Group Now SAS70 Type I Certified
Now, Devise 1.5 requires OmniAuth 1.0 while the 1.4.x series was still on OmniAuth 0.3.x and the latter combination worked flawlessly before. I started circling around this problem by checking the new omniauth-twitter gem's issue tracker on GitHub and came across this issue , which sounded similar enough. In it, one of the commenters mentioned an overly greedy exception handling in the omniauth-oauth gem masking the real problem in that developer's own application code. …
- Intridea - Company Blog: OmniAuth: Flexible, Unassuming Multi-Provider Authentication for Rack
- Plataformatec Blog: Acceptance tests for OmniAuth
- Rails Rumble: Separating Authentication and Identity with OmniAuth
- SD Ruby Podcast: Episode 099: Omniauth: Future Proof Your Authentication
- RailsCasts: #304 OmniAuth Identity
- Trevor Turk: Links for 10-21-10