lefedt logo
12 Mar 2010 / posted by Nikku

AnnotationSecurity is a ruby gem which provides a security layer for rails applications. It defines the security model as actions which can be performed on resources. In separate files you define user-resource-relations and rights.

Controllers are tagged with a description what action is carried out by them. Using this description the layer evaluates security rules automatically for a rails app, keeping your controllers and views free from any security logic.

The projects GitHub repository contains a detailed explaination on how to secure your Rails applications with it.

The current version of the gem can always be installed using

gem install annotation_security

To wire it together with a rails app, write

annotation_security —rails RAILS_HOME