« previous next »
Pages: [1]

Author Topic: TorqueScript Authentication  (Read 1208 times)

Xalos

October 13, 2013, 03:43:06 AM
I want to be able to authenticate a user logging into a service so that others can't get into his stuff. However, I also want to be able to have that same user be able to log into a webpage to view the same information.

The problem is that I ultimately come back to the same solution, which happens to be (as far as I can see) virtually impossible in TorqueScript - implement RSA or SSL into TorqueScript.


Does anyone have a method of authentication that will work for people logging in both from inside Blockland and from a webpage?
Or do I have to resort to hacky badness to get things working the way that I want?

Ad Bot

Advertisement

Zeblote

October 13, 2013, 04:25:08 AM
Quote from: Xalos on October 13, 2013, 03:43:06 AM
Or do I have to resort to hacky badness to get things working the way that I want?
This

From blockland, your server can just send their name to the auth server - easy.
But for the webpage, you'll need a user and a password ... so may they have to get in from blockland for the first time to create the password?

Fluff-is-back

October 13, 2013, 04:32:18 AM
Quote from: Zeblote on October 13, 2013, 04:25:08 AM
This

From blockland, your server can just send their name to the auth server - easy.
But for the webpage, you'll need a user and a password ... so may they have to get in from blockland for the first time to create the password?

Could you not have the web side contact the master server with the IP used? Then use that to allow access to the webpage?

Zeblote

October 13, 2013, 04:52:33 AM
Quote from: Fluff-is-back on October 13, 2013, 04:32:18 AM
Could you not have the web side contact the master server with the IP used? Then use that to allow access to the webpage?
But then they would need to have blockland on in the background to use the site

Xalos

October 13, 2013, 09:05:05 PM
Where even is the authentication server?

Port

October 14, 2013, 07:53:28 AM
Quote from: Xalos on October 13, 2013, 09:05:05 PM
Where even is the authentication server?

http://auth.blockland.us

The specific endpoint they're referring to is POST http://auth.blockland.us/authQuery.php with NAME=...&IP=... in the body, IIRC.

Fluff-is-back

October 14, 2013, 11:21:55 AM
Quote from: Port on October 14, 2013, 07:53:28 AM
http://auth.blockland.us

The specific endpoint they're referring to is POST http://auth.blockland.us/authQuery.php with NAME=...&IP=... in the body, IIRC.

$res = http_post_fields("http://auth.blockland.us/authQuery.php", array(
                        "NAME" => $name,
                        "IP" => $ip
                         ));


yep
Pages: [1]
« previous next »