Ruby ways to authenticate using headers?

facebook twitter digg google delicious technorati stumbleupon myspace wordpress linkedin gmail igoogle windows live tumblr viadeo yahoo buzz yahoo mail yahoo bookmarks favorites email print

Posted by webdestroya on Stack Overflow See other posts from Stack Overflow or by webdestroya
Published on 2010-05-22T22:03:22Z Indexed on 2010/05/22 22:20 UTC
Read the original article Hit count: 299

Filed under:
|
|
|
|

I am designing an API system in Ruby-on-Rails, and I want to be able to log queries and authenticate users.

However, I do not have a traditional login system, I want to use an APIkey and a signature that users can submit in the HTTP headers in the request. (Similar to how Amazon's services work)

Instead of requesting /users/12345/photos/create I want to be able to request /photos/create and submit a header that says X-APIKey: 12345 and then validate the request with a signature.

Are there any gems that can be adapted to do that? Or better yet, any gems that do this without adaptation?

Or do you feel that it would be wiser to just have them send the API key in each request using the POST/GET vars?

© Stack Overflow or respective owner

facebook twitter digg google delicious technorati stumbleupon myspace wordpress linkedin gmail igoogle windows live tumblr viadeo yahoo buzz yahoo mail yahoo bookmarks favorites email print

Related posts about ruby-on-rails

Related posts about ruby

Categories cloud

.NET ASP.NET iphone linux python Windows mysql android sql windows-7 html c ruby-on-rails css objective-c ubuntu networking sql-server wpf asp.net-mvc ruby database Xml apache AJAX osx security regex django Performance 12.04 windows-xp mac web-development iphone-sdk vb.net Silverlight apache2 flash server perl best-practices email installation eclipse visual-studio algorithm windows-server-2008 winforms wcf firefox bash dns /Oracle