Skip to content

Security: StandardCyborg/devise_token_auth

Security

docs/security.md

Security

This gem takes the following steps to ensure security.

This gem uses auth tokens that are:

These measures were inspired by this stackoverflow post.

This gem further mitigates timing attacks by using this technique.

But the most important step is to use HTTPS. You are on the hook for that.

There aren’t any published security advisories