Auth library

[eluser]pmoroom[/eluser]
Hello folks,

I've spent the last several months trying various frameworks to find out which one would best suit my needs. After trying dozens with magic I am leaning back towards CI. One think that is very important to me is user auth. I've seen the various auth libraries available for CI, but not exactly sure which one I should land on (I have not actually tried any within the code, just read about them.) so I'm reaching out to you all to get your take on the best one. My requirements are below:

#1 - solid security (tested and test cases)
#2 - hashing of passwords (salt)
#3 - ACL (not a deal breaker, but would be nice)

What would you guys/girls recommend as a starting point here?

[eluser]Jaketoolson[/eluser]
IonAuth over TankAuth. TankAuth is, well, a tank or a huge beast. IonAuth is great.

[eluser]Rok Biderman[/eluser]
I'd say Ion Auth as well.

[eluser]pmoroom[/eluser]
Thanks. I've given Ion Auth a whirl and it appears to work. I extended the controller to it checks for login. Is this how you all do it?

<?php
class MY_Controller extends CI_Controller {

function __construct() {
parent::__construct();

if (!$this->ion_auth->logged_in())
{
redirect(base_url() . 'login', 'refresh');
}
}

}

[eluser]Rok Biderman[/eluser]
Yes, I do atleast.

[eluser]Jaketoolson[/eluser]

Is this how you all do it?

That's how I do it, yup.

[eluser]pmoroom[/eluser]
I ended up rolling my own as I needed to strip out a lot of stuff I didn't really need and that approach just made the most sense.