What is your preferred authentication approach?

Hi all,

I’ve been trying to figure out what my go-to approach(es) for authentication in Phoenix applications should be.

I’m looking for a simple, secure approach for the following three scenarios:

  • Regular, session-based http
  • Channels
  • API

Searching the web, looking through this forum, looking through Phoenix docs and books, reading some Hacker News threads, looking at the available libraries, etc, makes for a pretty fragmented picture of the different approaches people take (plus some of it is from a while back).

Would you mind sharing if you have a preferred approach? Do you roll your own? Do you have a favorite library?

Thank you very much.

1 Like

I roll my own, session-based http. Its very straightforward and easy to do. comeonin is great for hashing passwords. Plug is great for storing session info.

Cool, thank you :slight_smile:

Try Pow.