>_rails inside
~/rails-inside $ cat blog/rails-plugins-modern-web-development.html
HomePostsAbout
// 02  TOOLING  ////  Apr 2, 2026  ////  6 min

The Best Ruby on Rails Plugins for Modern Web Development

A curated look at the gems and plugins that belong in every modern Rails project, from background jobs to full-text search.

The Rails ecosystem has always depended on well-designed gems to fill the gaps between framework conventions and real-world application requirements. In 2026, the quality bar for these plugins is higher than ever. The best ones integrate cleanly with Rails idioms, ship with generators that scaffold sensible defaults, and maintain test coverage that lets you upgrade without fear.

This guide covers the plugins that senior Rails developers reach for on greenfield and brownfield projects alike, organized by problem domain rather than popularity metrics.

Authentication and Authorization

Devise remains the standard entry point for authentication, but recent versions have been meaningfully overhauled to support Turbo-compatible form flows. If you are starting a new project, start with Devise and the devise-two-factor extension.

# Gemfile
gem "devise", "~> 4.9"
gem "devise-two-factor"

For finer-grained access control, Pundit is the cleaner choice over CanCanCan for most modern codebases. Pundit's policy objects are plain Ruby classes, which makes them straightforward to test in isolation:

class ArticlePolicy < ApplicationPolicy
  def update?
    user.admin? || record.author == user
  end
end

Pundit's explicit policy-per-model approach forces developers to make authorization decisions visible rather than burying them in before-action callbacks.

Background Processing

Sidekiq is the production standard. Its Pro and Enterprise tiers add batching and unique job enforcement that are necessary at any meaningful scale. For simpler projects where Redis is not in the stack, Solid Queue, shipped as a first-party Rails plugin by the core team, runs on your existing database.

# config/application.rb
config.active_job.queue_adapter = :solid_queue

Solid Queue's SolidQueue::Job model surfaces in your existing database, which simplifies operational monitoring without adding another data store.

Full-Text Search

PgSearch is the pragmatic choice for applications already running PostgreSQL. It wraps tsvector and tsquery natively without requiring Elasticsearch:

include PgSearch::Model

pg_search_scope :search_by_content,
  against: [:title, :body],
  using: { tsearch: { prefix: true } }

For applications that outgrow PostgreSQL search, high-volume ecommerce catalogs, for example, Meilisearch has a well-maintained Rails integration that is significantly easier to operate than Elasticsearch clusters.

File Uploads and Storage

Active Storage handles the majority of file upload scenarios out of the box, but the image_processing gem backed by libvips is a significant improvement over MiniMagick for variant generation. Add it to any project doing image transforms:

# Gemfile
gem "image_processing", "~> 1.2"

libvips processes images with roughly 60% lower memory consumption than ImageMagick and completes most operations faster. The API difference from the application side is zero, Active Storage routes to libvips automatically when image_processing is present.

API Serialization

The Blueprinter gem offers a straightforward DSL for defining JSON serializers without the configuration overhead of jsonapi-serializer. For projects that need strict JSON:API compliance, jsonapi-serializer is the correct pick. For everything else, Blueprinter keeps the serialization layer readable:

class UserBlueprint < Blueprinter::Base
  identifier :id
  fields :email, :created_at

  view :with_profile do
    association :profile, blueprint: ProfileBlueprint
  end
end

Developer Experience Tools

Three gems belong in every development group: bullet for catching N+1 queries before they reach production, rack-mini-profiler for wall-clock profiling in the browser, and annotate for stamping schema comments at the top of model files.

group :development do
  gem "bullet"
  gem "rack-mini-profiler"
  gem "annotate"
end

Bullet's Slack integration notifies your team channel when N+1 queries appear in development, which makes the feedback loop tight enough that developers fix them immediately rather than deferring until a performance review.

Pagination

Pagy has replaced Kaminari as the preferred pagination gem for performance-sensitive applications. It allocates far fewer objects per request and supports Turbo Streams natively. The API is familiar enough that migration from Kaminari is usually an afternoon of work:

include Pagy::Backend
# in controller
@pagy, @articles = pagy(Article.published)

Choosing and Evaluating Gems

Before adding any gem, check three things: when it was last released, whether it has a funded maintainer or organizational backing, and whether it ships tests you can run locally. A gem untouched for three years and maintained by a single individual represents operational risk in a production codebase.

The Rails ecosystem rewards specificity. A gem that does one thing and integrates cleanly with Rails conventions is worth more than a Swiss Army knife that owns its own opinions about every layer of your stack.

For further reading on gem evaluation patterns and the gems mentioned here, see the Refactoring Legacy Rails Applications and Essential Security Best Practices for Rails Developers guides on this site.

Continue reading: How to Refactor Legacy Rails Applications for Performance, Essential Security Best Practices for Rails Developers.