We already have partial code that works with the server to perform various functions. We are looking for a php developer to finish the project off with integration and testing.
TMW-BR webadmin
https://github.com/wushin/themanaworld- ... w-br-admin
Wushin's ladmin.php
https://github.com/wushin/themanaworld- ... te-account
the code has to be able to accept a file generated by the TMWA protocols.py. This is so the network layer can be better maintain across all applications. For more info contact wushin or o11c in IRC.
TWM ladmin.php [REQ]
- wushin
- TMW Adviser
- Posts: 1759
- Joined: 18 Dec 2012, 05:56
- Location: RiverBest, Brew City, Merica
- Contact:
TWM ladmin.php [REQ]
The secret to getting all the important stuff done is doing nothing.
Re: TWM ladmin.php [REQ]
Suggestion from the peanut gallery:
A good start would be building a standard HTTP accessable API to ladmin (REST or whatever). Can be done in any language really, but needs to be done well. Ideally this API would be authenticated and have access controls over which commands can be peformed through it. It should also sanitize input and have robust error checking/handling.
It would make it considerably safer and easier for someone who is good at webapps (or even a novice really) to write up a registration script, account manager, etc etc. Just need one expert to write the API and the rest is easy.
It would also make iit much (much!) safer from the standpoint of security as it would provide an easily audited and controlled gateway between privilege levels. I've said it before and I'll say it again: The user the webpages run under should *not* have direct unfiltered and unaudited access to game data or the gameserver's admin interface... The way wushin prototyped is simply begging for major trouble.
A good start would be building a standard HTTP accessable API to ladmin (REST or whatever). Can be done in any language really, but needs to be done well. Ideally this API would be authenticated and have access controls over which commands can be peformed through it. It should also sanitize input and have robust error checking/handling.
It would make it considerably safer and easier for someone who is good at webapps (or even a novice really) to write up a registration script, account manager, etc etc. Just need one expert to write the API and the rest is easy.
It would also make iit much (much!) safer from the standpoint of security as it would provide an easily audited and controlled gateway between privilege levels. I've said it before and I'll say it again: The user the webpages run under should *not* have direct unfiltered and unaudited access to game data or the gameserver's admin interface... The way wushin prototyped is simply begging for major trouble.
Head of the TMW Illuminati
- wushin
- TMW Adviser
- Posts: 1759
- Joined: 18 Dec 2012, 05:56
- Location: RiverBest, Brew City, Merica
- Contact:
Re: TWM ladmin.php [REQ]
MadCamel for the future it would be nice, but I'd prefer for the quick kill we could just start with a php class. Eventually then it can be consumed into a API integrated better with TMWA. As the main direction we are heading is better account creation across all TMW applications (wiki, tmw, forums, etc.) via SSO.
The secret to getting all the important stuff done is doing nothing.
Re: TWM ladmin.php [REQ]
It would be very little trouble to listen on a second port with a restricted in-game interface ...
Former programmer for the TMWA server.