| |
Digger
Registered: Mar 2005
Posts: 436 |
Opensourcing CSDb
2020 has arrived, time to opensource CSDb.
Contributors could submit PR with improvements, patches, bug-fixes, features etc.
The "mighty" moderators (with Perff) can approve PRs and merge to production. Easy.
Let's use community powers to finally fix this mess. We deserve the best looking and working C64 community/preservation site ever.
Throw some stones please. |
|
... 30 posts hidden. Click here to view all posts....
|
| |
iAN CooG
Registered: May 2002
Posts: 3193 |
Don't worry, it's for SCIENCE!11!11! |
| |
Lubber
Registered: Jan 2002
Posts: 26 |
Quote: You dont expect me to type my login data into that form, do you? =)
You can, try with fake data if you don't trust me and watch the network console in the browser to see where the request goes: No data is transferred to my domain, it's all transferred directly to the csdb domain API urls.
I use the same example JS code that perff provides in his docs.
Again: A proper oauth2 with dedicated login form from the csdb site itself would help here |
| |
chatGPZ
Registered: Dec 2001
Posts: 11384 |
The general rule is to not enter login data anywhere, except the original site. Period. |
| |
Lubber
Registered: Jan 2002
Posts: 26 |
Quote: The general rule is to not enter login data anywhere, except the original site. Period.
Yes, absolutely correct!
Another reason to have a proper oauth2 implementation with a login form directly from csdb.dk as initially suggested :D
The current implementation by perff unfortunately does it the unsecure way as you pointed out. That's probably also the reason why it seems no c64 related website every really implemented it. (also i didn't, that was just a testpage anyway)..let's stop the discussion about this now. :) |
| |
Zyron
Registered: Jan 2002
Posts: 2381 |
It's better if you PM Perff about it. |
| Previous - 1 | 2 | 3 | 4 - Next |
