Question 1

Is Friend still maintained for Clojure authentication?

Accepted Answer

No, Friend is unmaintained as of the last release in 2013, with the author seeking a new maintainer. The README recommends investigating forks or alternatives like Buddy for ongoing support.

Question 2

How to implement OAuth with Friend in a Ring app?

Accepted Answer

You can create custom workflows by extending Friend's workflow functions, but since it's unmaintained, documentation is sparse. Check the demo apps or forks for examples, but consider using Buddy for easier OAuth integration.

Question 3

Friend vs Buddy: which is better for new Clojure projects?

Accepted Answer

Buddy is generally better for new projects as it's actively maintained and has more modern features. Friend's unmaintained status makes it risky, though its functional design might appeal to specific use cases in legacy systems.

Question 4

What are the alternatives to Friend for Clojure web apps?

Accepted Answer

Buddy is the primary alternative, offering similar features with active development. Other options include custom solutions or integrating Java libraries, but Buddy is the most recommended due to its Clojure-native design and community support.

Question 5

How does Friend handle role hierarchies in authorization?

Accepted Answer

Friend uses Clojure's ad-hoc hierarchies via the derive function, allowing roles to inherit permissions. For example, making ::admin derive from ::user grants admin users all user privileges, simplifying access control.

Question 6

Can Friend be used with server-side rendering in Clojure?

Accepted Answer

Yes, Friend integrates with Ring middlewares, so it works with server-side rendering in frameworks like Ring or Compojure. However, its unmaintained nature might limit compatibility with newer server-side technologies.

Question 7

How to migrate from Friend to Buddy for authentication?

Accepted Answer

Migration involves replacing Friend's middlewares and credential functions with Buddy's equivalents. Since both are Ring-based, it's feasible but requires rewriting authentication logic and updating dependencies, with Buddy's documentation as a guide.

Friend

What is Friend?

Overview

Use Cases

Best For

Found a gem we're missing?

Not Ideal For

Pros & Cons

Pros

Cons

Frequently Asked Questions