Securial
An open-source Rails engine providing battle-tested authentication primitives, multi-tenancy support, and pluggable strategies designed for developer productivity and secure defaults.
Project Highlights
Authentication Engine
A mountable Rails engine that drops full authentication into any app — registration, login, password reset, email verification, and session management — without coupling your domain to auth logic.
Multi-Tenancy & Pluggable Strategies
Built-in multi-tenant scoping with pluggable authentication strategies, so teams can swap or extend behavior without forking the engine or patching internals.
Secure Defaults
Secure defaults throughout — bcrypt password hashing, token expiry, brute-force throttling, and audit logging — so applications are secure out of the box rather than by configuration.
Project Details
Designed as a mountable Rails engine so it integrates with any Rails application without polluting the host app's domain models or routing.
Implemented full authentication flows: registration, login, logout, password reset, and email confirmation, all overridable via standard Rails conventions.
Built multi-tenant scoping at the engine level so authentication records are always isolated by tenant without requiring per-app configuration.
Introduced pluggable strategy support, allowing teams to add OAuth, SSO, or custom authentication methods without modifying the engine's core.
Enforced secure defaults including bcrypt hashing, signed token expiry, rate limiting on sensitive endpoints, and structured audit logging.
Published as a versioned open-source gem with a test suite, documented API surface, and upgrade guides to make adoption and maintenance low-friction.