Posts tagged ‘authentication’

Custom Authentication

One of the more requested features we get for Spree is the ability to combine Spree with an existing application’s User model. Currently, Spree does not allow you to do that. With the work we’ve been doing on the
auth-take-two branch for Spree, this will now be possible. All you will need to do is to follow the steps in this short guide and you
can have your application set up with Spree using your custom authentication.

Please submit feedback to the pull request page.

Devise Authentication

The edge code has just been updated to use the new Devise gem for authentication, replacing the previous solution of Authlogic. People who have been following the source code closely will recall that we attempted this switch earlier but backed away from it once we encountered various difficulties. So what made us decide to try again?

The first reason is that we were given assurances from Devise author, Jose Valim, that it would be possible to provide all of the customization options that we would require. The second reason is that we came to realize that the migration to Devise would make it easier to allow authentication via social networking services. Such work is already underway in the new spree_social gem.

We have updated the security guide in the edge documentation to reflect these recent changes as well as some new documentation on the Cancan permissions system that we introduced in the Spree 0.30.x release. Special thanks to John Brien, (Rails Dog’s newest hire), who has been working tirelessly on this effort.

This project is maintained by a core team of developers and is freely available for commercial use under the terms of the New BSD License.

Spree, Spree Commerce and the Spree logo are all trademarks of Spree Commerce, Inc.