Slide 25
Slide 25 text
Detachable authentication strategies
Tested, Active, Mature
Easy to become your own provider*
Industry Standard
Plays nicely with others*
It’s easy to create your own OAuth provider gem based upon the framework provided with
OmniAuth. So even if you have no intention of letting your users log in via Twitter this
provides a great amount of value.
Single Sign on via OAuth 2.0 is crazy powerful. It provides a spec to allow things like Rich
client apps keep authentication/authorization tokens in a non-secure enviornment and also
allows iOS/Android devices to log in too. Really consider OAuth as your authentication
strategy.
http://launchpad.37signals.com is a fantastic example of an OAuth provider done right.