unforum

jscdragon

Password/Logins on in game websites

**Posted:** Sat Aug 25, 2007 12:28 pm

thebruce

Good question.

From a technical standpoint, the very least that could be done without giving the login in clear text, would be a simple server-side script that checks the submitted form values and stores a cookie as 'logged in' if they match a specific login. It doesn't need a database, and the login is coded in the server end script (not available to the client browser). That way you can design the login page however you want, even with flash if you so desire, since the login action would only require the name and password to be sent to the server script. That's as simple simple and 'unhackable' as you could get, IMO, and still require a login to move forward.

You could the complex route, and implement a database of numerous logins, which the server would check each login request against, or you could take it a step further (the example you described) and implement NT login authentication, which would require programming the server itself, which requires more than simple hosting at most public hosting sites.

So the former would be the route I'd suggest.

Does that help?

**Posted:** Sat Aug 25, 2007 3:13 pm

_________________
@4DFiction/@Wikibruce/Contact
ARGFest 2013 - Seattle! ARGFest.com

jscdragon

kinda, thanks, still quite technical for a noob like me however Confused

you mention

**Posted:** Sat Aug 25, 2007 3:27 pm

konamouse

If this sort of stuff is over your head (like it is way over mine, you really want to get someone on your PM team who has more experience in website design and access set up. If you don't know what you are doing, there is going to be a big problem.
Just some friendly advice.

**Posted:** Sat Aug 25, 2007 3:31 pm

_________________
'squeek'
r u a Sammeeeee? I am Forever!

thebruce

what Kona said Wink

but really, server scripts are things like PHP and ASP which are executed on the server, as opposed to Java/VBscript/HTML/Flash that are run in the browser. Anything browser side is easily hackable. The more you put on the server end the better.

YOu should look into it more before you actually go ahead and start programming something over your head. Or at least find someone who's versed in web design (beyond front end graphic design and browser scripting) who wants to and has time to PM =)

Of course, you could always look for pre-developed packages and whether they accomplish what you're looking for... but then it might take longer to customize if it's not precisely what you want.

**Posted:** Sat Aug 25, 2007 3:39 pm

_________________
@4DFiction/@Wikibruce/Contact
ARGFest 2013 - Seattle! ARGFest.com

jscdragon

Ok thanks for the advice, it IS something I don't know about but I'm always willing to learn something new rather than just get someone else to do it that's all.

**Posted:** Sat Aug 25, 2007 3:44 pm

Axys Denyed

I'm a little late to the party but depending on what type of server the website is on, you can always use .htaccess and .htpasswd. There are even handy-dandy tools you can find online to help you generate the files. Of course, that's only for Apache web servers.

**Posted:** Mon Aug 27, 2007 10:54 am

_________________
I've searched for the Cube, played poker with the dead, hunted monsters, helped stop Spoocheee and helped find a dimension hopping cat. What else you got?

redct · Entrenched Joined: 20 Jun 2007 Posts: 1233

**Posted:** Sun Sep 09, 2007 10:37 am