| |
Digger
Registered: Mar 2005 Posts: 436 |
Opensourcing CSDb
2020 has arrived, time to opensource CSDb.
Contributors could submit PR with improvements, patches, bug-fixes, features etc.
The "mighty" moderators (with Perff) can approve PRs and merge to production. Easy.
Let's use community powers to finally fix this mess. We deserve the best looking and working C64 community/preservation site ever.
Throw some stones please. |
|
... 25 posts hidden. Click here to view all posts.... |
| |
chatGPZ
Registered: Dec 2001 Posts: 11384 |
Somehow these threads remind me a lot about the various VICE whining threads.
IE: open-sourcing doesn't solve the problem. There'd still be noone willing to help =P |
| |
Lubber
Registered: Jan 2002 Posts: 26 |
At least i would like to help out with a proper oauth2 implementation or at least to enhance/fix the current website auth API implementation perff did some years ago.
Try here
|
| |
chatGPZ
Registered: Dec 2001 Posts: 11384 |
"You are not logged into CSDb or denied access to request CSDb information"
i am logged in and i dont see an option to deny or allow access anywhere :) |
| |
Lubber
Registered: Jan 2002 Posts: 26 |
Yeah, thats what i meant by helping to fix it.
The code just calls perffs api and that tells me you are not logged in.. which is obviously wrong then
Did you try to login via the blue button and login form? At least it works for me then after entering my csdb credentials and shows my csdb information |
| |
chatGPZ
Registered: Dec 2001 Posts: 11384 |
You dont expect me to type my login data into that form, do you? =) |
| |
iAN CooG
Registered: May 2002 Posts: 3191 |
Don't worry, it's for SCIENCE!11!11! |
| |
Lubber
Registered: Jan 2002 Posts: 26 |
Quote: You dont expect me to type my login data into that form, do you? =)
You can, try with fake data if you don't trust me and watch the network console in the browser to see where the request goes: No data is transferred to my domain, it's all transferred directly to the csdb domain API urls.
I use the same example JS code that perff provides in his docs.
Again: A proper oauth2 with dedicated login form from the csdb site itself would help here |
| |
chatGPZ
Registered: Dec 2001 Posts: 11384 |
The general rule is to not enter login data anywhere, except the original site. Period. |
| |
Lubber
Registered: Jan 2002 Posts: 26 |
Quote: The general rule is to not enter login data anywhere, except the original site. Period.
Yes, absolutely correct!
Another reason to have a proper oauth2 implementation with a login form directly from csdb.dk as initially suggested :D
The current implementation by perff unfortunately does it the unsecure way as you pointed out. That's probably also the reason why it seems no c64 related website every really implemented it. (also i didn't, that was just a testpage anyway)..let's stop the discussion about this now. :) |
| |
Zyron
Registered: Jan 2002 Posts: 2381 |
It's better if you PM Perff about it. |
Previous - 1 | 2 | 3 | 4 - Next |