Global Login System (Implementation Discussion)

[loial21]

jitspoe is my hero.

Good to hear. 

To me he is a kick ass coder and someone that needs to send me a DP T-shirt. 

[loial21]

JItspoe,

Any plan for a language filter for the logins?

[jitspoe]

As in not allowing people to register names with profanity?  Yes.

[loial21]

Super sweet, thanks.

[Lunatic]

Do you have any date planned when you are going to release build 17?

[jitspoe]

No date planned.

Well, crap.  I was going to go the "easy" route and just throw libcurl in there and use https.  But apparently cURL uses OpenSSL for HTTPS, which isn't compatible with the GPL, so I guess that throws that out the window.  Stupid license.

[afortier]

How about more focus on renderer enhancements and less on network functions? Q2E has taken a turn tward rediculous GFX card requirements.

[Eiii]

We're not Q2E.

[Smokey]

but all you're doing with Q2E is using jitspoes code and making small changes.

[jitspoe]

I think you're thinking of Quake2: Source.  Q2E isn't using my code (or not much of it if they are).

In other news, I have the urge to punch some GNU programmers in the face because of their poor windows support, dependency hell, and bloated libraries.  Try getting libcurl compiled with gnutls, I dare you.  I think I may just throw the concept of secure logins out the window and settle for something basic.

[TinMan]

Poor windows support? Ouch. How the tables turn when it comes to security.
How does Tremulous's GUID feature work? Is that only built into the TJW mod, or is it built into the normal game? Building off of something that somebody else already got working and has open sourced would be easist I assume.

[jitspoe]

Uh, there's plenty of secure stuff for windows; it's just not GPL compatible.  I'm not sure how Tremulous' GUID works.

[jitspoe]

After a little research, it seems Tremulous does not support GUID's, but rather it's a mod for Tremulous that does it.  I'm guessing since it's a mod, it just does messages in plain text (unless Tremulous has some kind of encryption layer).

[Smokey]

tjw's admin mod is killer, dp needs it.

[jitspoe]

Latest version of mysql table, by request:

Code: [Select]

CREATE TABLE `dplogin_accounts` (
  `id` int UNSIGNED NOT NULL auto_increment,
  `timestamp` TIMESTAMP NOT NULL DEFAULT CURRENT_TIMESTAMP,
  `pwhash` char(32) NOT NULL,
  `tempkey` char(32) NOT NULL,
  `name` varchar(32) NOT NULL,
  `email` varchar(255) NOT NULL default '',
  `realname` varchar(64) NOT NULL default '',
  `activationnum` INT UNSIGNED NOT NULL,
  `flags` INT UNSIGNED NOT NULL,
  PRIMARY KEY  (`id`),
  INDEX (email(8))
) COMMENT='Account' AUTO_INCREMENT=1;


CREATE TABLE `dplogin_names` (
  `id` INT UNSIGNED NOT NULL AUTO_INCREMENT,
  `timestamp` TIMESTAMP NOT NULL DEFAULT CURRENT_TIMESTAMP,
  `name` varchar(32) NOT NULL default '',
  `playerid` int UNSIGNED NOT NULL,
  `flags` INT UNSIGNED NOT NULL,
  PRIMARY KEY  (`id`),
  INDEX (name(8)),
  INDEX (playerid)
) COMMENT='Name to ID remap';


CREATE TABLE `dplogin_clans` (
  `id` int UNSIGNED NOT NULL auto_increment,
  `timestamp` TIMESTAMP NOT NULL DEFAULT CURRENT_TIMESTAMP,
  `name` varchar(64) NOT NULL default '',
  `tag` varchar(16) NOT NULL default '',
  `website` varchar(255) NOT NULL default '',
  `ircchan` varchar(32) NOT NULL default '',
  PRIMARY KEY  (`id`)
) COMMENT='Account' AUTO_INCREMENT=1;


CREATE TABLE `dplogin_clanmembers` (
  `id` INT UNSIGNED NOT NULL AUTO_INCREMENT,
  `timestamp` TIMESTAMP NOT NULL DEFAULT CURRENT_TIMESTAMP,
  `clanid` int UNSIGNED NOT NULL,
  `playerid` int UNSIGNED NOT NULL,
  `flags` INT UNSIGNED NOT NULL,
  PRIMARY KEY  (`id`),
  INDEX (clanid),
  INDEX (playerid)
) COMMENT='Name to ID remap' AUTO_INCREMENT=1;


CREATE TABLE `dplogin_ips` (
  `id` int UNSIGNED NOT NULL AUTO_INCREMENT,
  `ip` varchar(16) NOT NULL default 'BADIP',
  PRIMARY KEY (`id`)
) COMMENT='IP Tracking Table' AUTO_INCREMENT=1;


CREATE TABLE `dplogin_hardwareids` (
  `id` int UNSIGNED NOT NULL AUTO_INCREMENT,
  `hardwareid` char(32) NOT NULL default 'BADHWID',
  `hardwareidtype` INT UNSIGNED NOT NULL,
  PRIMARY KEY (`id`)
) COMMENT='IP Tracking Table' AUTO_INCREMENT=1;


CREATE TABLE `dplogin_connectinfo` (
  `id` INT UNSIGNED NOT NULL AUTO_INCREMENT,
  `playerid` INT UNSIGNED NOT NULL,
  `ipid` INT UNSIGNED NOT NULL,
  `hardwareid1` INT UNSIGNED NOT NULL,
  `hardwareid2` INT UNSIGNED NOT NULL,
  `hardwareid3` INT UNSIGNED NOT NULL,
  `hardwareid4` INT UNSIGNED NOT NULL,
  `hardwareid5` INT UNSIGNED NOT NULL,
  `hardwareid6` INT UNSIGNED NOT NULL,
  PRIMARY KEY (`id`)
) COMMENT='Maps acconuts to IPs and hardware IDs.' AUTO_INCREMENT=1;


CREATE TABLE `dplogin_reservednames` (
  `id` INT UNSIGNED NOT NULL AUTO_INCREMENT,
  `name` VARCHAR(32),
  `flags` INT UNSIGNED NOT NULL,
  PRIMARY KEY (`id`)
) COMMENT='Protected names that nobody can register.' AUTO_INCREMENT=1;


INSERT INTO dplogin_reservednames (name,flags) VALUES ('newbie[0-9]*','1');

[Smokey]

can you add a password to the clan table for simplicity?

[jitspoe]

I'm not going to do passwords for the clans.  A leader will have to initiate an invite.

[Smokey]

well that means 5 sets of mysql_queries to log them in 

[jitspoe]

Here's the source to what I've done in php so far.  It's kind of sloppy.  It just started as a simple test and kept growing.

http://www.dplogin.com/testlogin.php.txt

Clan invites is one of the things I haven't gotten to yet.  You can create a clan, but that's it.

[jitspoe]

Hrm, seems the server I'm using for dplogin has a really old version of mysql installed (3.x), and a lot of the stuff I was doing doesn't work with it.  I wonder if I should upgrade the server, or try to make the code compatible with the older version.