Raised This Month: $252 Target: $400
 63% 

SourceBans 2.0 Alpha (2013/09/04)


Post New Thread Reply   
 
Thread Tools Display Modes
eXplode82
Senior Member
Join Date: Oct 2009
Location: Serbia
Old 07-02-2013 , 13:39   Re: SourceBans 2.0 Public Preview (2013/07/01)
Reply With Quote #11

Quote:
Originally Posted by DJ Tsunami View Post
→ We are still looking for a designer to make a custom theme based on Bootstrap, so for now it just looks like default Bootstrap.
I'm a graphic and web designer. I can help you with the design.

Last edited by eXplode82; 07-02-2013 at 13:40.
eXplode82 is offline
Send a message via MSN to eXplode82
AeroAcrobat
AlliedModders Donor
Join Date: Apr 2011
Location: lives in a circus
Old 07-02-2013 , 15:25   Re: SourceBans 2.0 Public Preview (2013/07/01)
Reply With Quote #12

Quote:
Originally Posted by DJ Tsunami View Post
It's been asked before, but I'm not sure for what specifically you would need to register using Steam? Admins need to be added by other admins first, so you're already registered. Everything else is public to everyone.
  • I'm worried about that someone "cracks" an pw from an admin therefore I've already made admin names hidden. Also so no one will shitstrom an admin.
  • It's easier to use the steam login and more safe (steam guard)
  • Admins don't have to remember more pw's & login names.
Thats what I basicly have in mind. If steam provides this feature, why not use it ?
We use it in out forum as login and it's very comfortable.


I'd really love to see that as an option


Quote:
Originally Posted by Rytis View Post
http://bans-beta.rts-server.net/
Heh, looks pretty nice!
Everything looks so clean now. Good job! I like it very much

Quote:
Originally Posted by Smarmy View Post
I'm not sure it's only about registering with Steam. I think being able to add an admin by his SteamID and not having to worry about passwords would be nice. Then they just log in to SourceBans with Steam. No fuss.
Exactly
__________________
AeroAcrobat is offline
DJ Tsunami
DJ Post Spammer
Join Date: Feb 2008
Old 07-02-2013 , 15:33   Re: SourceBans 2.0 Public Preview (2013/07/01)
Reply With Quote #13

Your arguments make sense. In SourceBans 2 the password and email address aren't required anymore when adding an admin, so it would be nice to just add the name and Steam ID, and let admins log in via Steam.

Quote:
Originally Posted by eXplode82 View Post
I'm a graphic and web designer. I can help you with the design.
That would be awesome! I'll probably PM you tomorrow.
__________________
DJ Tsunami is offline
eXplode82
Senior Member
Join Date: Oct 2009
Location: Serbia
Old 07-02-2013 , 15:45   Re: SourceBans 2.0 Public Preview (2013/07/01)
Reply With Quote #14

Ok ;)
eXplode82 is offline
Send a message via MSN to eXplode82
FlyingMongoose
Veteran Member
Join Date: Mar 2004
Old 07-02-2013 , 18:46   Re: SourceBans 2.0 Public Preview (2013/07/01)
Reply With Quote #15

Quote:
Originally Posted by AeroAcrobat View Post
  • I'm worried about that someone "cracks" an pw from an admin therefore I've already made admin names hidden. Also so no one will shitstrom an admin.
  • It's easier to use the steam login and more safe (steam guard)
  • Admins don't have to remember more pw's & login names.
Thats what I basicly have in mind. If steam provides this feature, why not use it ?
We use it in out forum as login and it's very comfortable.


I'd really love to see that as an option


Everything looks so clean now. Good job! I like it very much

Exactly
Here is the flaw in allowing steam login to sourcebans.

ANYONE can log into your SourceBans web site using Steam Login.

Now there are a few things that can be done in place.

1: Add the person's steam ID and their access anyway, but don't allow them admin access until they log into the web site.
2: Allow sourcebans a public registration system, but only give access to the people you pick and choose.
3: htaccess password protected location that you give password to only admins, then they Steam ID log in and then again, you STILL have to enter the access of the person.

Either way you are still doing MANUAL entry.

The 3rd point of this is, that's a potentially huge users database of people that you may not even want IN the users database.

I really don't see how this is a more efficient way of adding administrators, I think it just adds clutter.
__________________
Please do NOT PM for support.

Only ask for support in plugin threads.

TunedChaos.com - Precision Tuned Game Servers
FlyingMongoose is offline
ocwoody
AlliedModders Donor
Join Date: Nov 2010
Location: huh
Old 07-02-2013 , 21:21   Re: SourceBans 2.0 Public Preview (2013/07/01)
Reply With Quote #16

Quote:
Originally Posted by FlyingMongoose View Post
Here is the flaw in allowing steam login to sourcebans.

ANYONE can log into your SourceBans web site using Steam Login.

Now there are a few things that can be done in place.

1: Add the person's steam ID and their access anyway, but don't allow them admin access until they log into the web site.
2: Allow sourcebans a public registration system, but only give access to the people you pick and choose.
3: htaccess password protected location that you give password to only admins, then they Steam ID log in and then again, you STILL have to enter the access of the person.

Either way you are still doing MANUAL entry.

The 3rd point of this is, that's a potentially huge users database of people that you may not even want IN the users database.

I really don't see how this is a more efficient way of adding administrators, I think it just adds clutter.
I think he was thinking more along the lines of still manual entry. For example the administrator would simply add an admins steamid and his name assigning him the proper groups etc. Then the admin would simply need to Log-in with his steam to access the features made available. If an individual tried to log in with steam that didn't match a admin steamid, they would simply get rejected/redirected.

Last edited by ocwoody; 07-03-2013 at 00:37.
ocwoody is offline
AeroAcrobat
AlliedModders Donor
Join Date: Apr 2011
Location: lives in a circus
Old 07-02-2013 , 23:24   Re: SourceBans 2.0 Public Preview (2013/07/01)
Reply With Quote #17

Quote:
Originally Posted by FlyingMongoose View Post
Either way you are still doing MANUAL entry.
Sure. The "master admin" would create a new user, enter his steamID and asign him to a group.
  • Maybe the username could be pulled from steam, so you always know who it is ?
Quote:
Originally Posted by ocwoody View Post
If an individual tried to log in with steam that didn't match an admin steamid, they would simply get rejected/redirected.
Yes, this.

This is how I imagine it:

Personaly, I see no use for collecting all the steamID's if someone will login.
Only allowing access to the (web) back-end to steamID's that are in the list. Everyone else will get redirected to the main page.
__________________

Last edited by AeroAcrobat; 07-02-2013 at 23:36.
AeroAcrobat is offline
Smarmy
Senior Member
Join Date: Mar 2012
Old 07-02-2013 , 23:33   Re: SourceBans 2.0 Public Preview (2013/07/01)
Reply With Quote #18

The only thing I can think of that would be an issue is if Steam was down and you couldn't log in at all. In this case I think providing a fallback password would be ideal. If the site cannot access Steam it will request the fallback password. I'm not sure if the auth goes down enough to warrant such a thing, but something to consider.

You could have an option to require users to Steam login to submit a ban request/appeal. In the cases of appeals it would only allow you to do a ban appeal on a ban made against you. Similarly, it may be handy to have the SteamID of a person who submits a ban request for easy follow ups. Though making a user who wants to submit a ban request jump through hoops may not be a good thing. I do think requiring it for appeals would be nice.

Last edited by Smarmy; 07-02-2013 at 23:36.
Smarmy is offline
Dr. McKay
Sir Dr. SourceMod Plugin Approver Esq. Ltd. M.D. PhD
Join Date: Aug 2011
Location: Atlantis
Old 07-02-2013 , 23:36   Re: SourceBans 2.0 Public Preview (2013/07/01)
Reply With Quote #19

Quote:
Originally Posted by Smarmy View Post
The only thing I can think of that would be an issue is if Steam was down and you couldn't log in at all. In this case I think providing a fallback password would be ideal. If the site cannot access Steam it will request the fallback password. I'm not sure if the auth goes down enough to warrant such a thing, but something to consider.
I couldn't imagine a situation in which logging into SourceBans would be so urgent that you can't wait for Steam to come back up. Plus, if Steam is down, nobody on the servers are going to have Steam IDs anyway.
__________________
Dr. McKay is offline
FlyingMongoose
Veteran Member
Join Date: Mar 2004
Old 07-03-2013 , 03:08   Re: SourceBans 2.0 Public Preview (2013/07/01)
Reply With Quote #20

In discussion on #sourcebans on IRC we figured out one use case for a publicly register-able sourcebans...
__________________
Please do NOT PM for support.

Only ask for support in plugin threads.

TunedChaos.com - Precision Tuned Game Servers
FlyingMongoose is offline
Reply


Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump


All times are GMT -4. The time now is 17:20.


Powered by vBulletin®
Copyright ©2000 - 2018, vBulletin Solutions, Inc.
Theme made by Freecode