Authentication via API key #9

New issue

Open

opened 2011-08-30 22:27:20 +02:00 by socrates · 0 comments

socrates commented

2011-08-30 22:27:20 +02:00

(Migrated from gitea.sockenklaus.duckdns.org)

Offer some kind of authentication:

On server side you have to write a key into the config.yml or generate it via ingame command.
On client side you have to transmit a matching key as a url parameter to authenticate yourself.

Nice to have:

Use different keys for different usecases so key (a) can only request users.xml, key (b) is only allowed to request userstats.xml and key (c) can access all xml files for example.
If authentication is required for a xml file and a client tries to access it without a (valid?) key, the admin receives an ingame message and has the possibility to automatically generate a key for the requested file and hand it over to the requesting client.

Offer some kind of authentication: 1. On server side you have to write a key into the config.yml or generate it via ingame command. 2. On client side you have to transmit a matching key as a url parameter to authenticate yourself. Nice to have: - Use different keys for different usecases so key (a) can only request users.xml, key (b) is only allowed to request userstats.xml and key (c) can access all xml files for example. - If authentication is required for a xml file and a client tries to access it without a (valid?) key, the admin receives an ingame message and has the possibility to automatically generate a key for the requested file and hand it over to the requesting client.

This discussion has been locked. Commenting is limited to contributors.

No labels

Bug

Feature Request

Improvement

No milestone

No project

No assignees

1 participant

Notifications

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

socrates/XmlStats#9

No description provided.

Rows
Columns