Latest Free Screencasts

With the release of OmniAuth 1.0 there is a new Identity strategy which allows users to register/login with a password if they don't want to use an external provider.

Password authentication is not too complicated to make from scratch, it will also help to get a better understanding of how it works.

It is important to use attr_accessible for security with mass assignment, but what if you need it to be dynamic based on user permissions? See how in this episode.

Here I walk you through adding the ability to sort table columns in ascending or descending order by clicking the header.

It is easy to be vulnerable to cross site scripting attacks in earlier versions of Rails, but Rails 3 solves this by automatically escaping unsafe input.

Declarative authorization provides an advanced and powerful solution for role based authorization.

Security is important! Here I show seven different security flaws which are common to Rails applications ranging from mass assignment to CSRF protection.

This episode shows how to encrypt the variables passed to PayPal and verify the authenticity of the payment notifications (IPN).

The Railscasts site has been getting a lot of comment spam in the past, but no longer. In this episode I will show you how I solved this problem by using the Akismet web service.

Another common security issue is cross site scripting. In this episode you will see why it is so important to escape any HTML a user may submit.