SFML community forums

General => SFML game jam => Topic started by: Jebbs on January 20, 2014, 07:28:33 pm

Title: Website News
Post by: Jebbs on January 20, 2014, 07:28:33 pm
Hey everyone,

Just wanted to announce that the website will most likely not be ready in time for the jam. This is due to a lot of personal stuff, mainly me going back to school full time and I just don't have enough time to get all that I want done and still have enough time for work and school. Sorry guys, I'm just feeling a bit overloaded right now.

So, in light of this news I will be opening up another theme submission thread today so we can get that going and start deciding a theme for the jam.

Hope I didn't let to many of you down. :(
Title: Re: Website News
Post by: Lo-X on January 21, 2014, 12:19:50 am
No problem, we can still use the forum till the next time, don't think Laurent will mind =)

Anyway, do you need help with the website ? I don't have a lot of time too, but I think we have some/much skill into website making around here.
Title: Re: Website News
Post by: zsbzsb on January 21, 2014, 01:03:33 am
Anyway, do you need help with the website ? I don't have a lot of time too, but I think we have some/much skill into website making around here.

Jebbs already hired me out  8)

I will have enough done in time... (just cross your fingers  ;))
Title: Re: Website News
Post by: Jebbs on January 21, 2014, 02:00:06 am
Yes!

Almost as soon as I made my original post, zsbzsb set me a message and has since taken the lead on the site.

Looks like we might be in luck after all!
Title: Re: Website News
Post by: zsbzsb on January 21, 2014, 07:04:31 am
Site is coming along well, I have a good feeling after only ~6 hours of work.  :)

(http://i.imgur.com/OzU3632.png)
Title: Re: Website News
Post by: Mercy404 on January 21, 2014, 02:37:15 pm
Awesome, thanks zsbzsb!
Title: Re: Website News
Post by: zsbzsb on January 21, 2014, 06:00:46 pm
Website is up!!!

http://sfmlgamejam.com/ (http://sfmlgamejam.com/)

I am currently working to enable theme suggestions (for voting on later)  - Done, go and give us theme ideas  ;D

But for now go ahead and register and let me know if you have any feedback.

(to Jebbs, I am sincerely sorry for trashing what you already did  ;))
Title: Re: Website News
Post by: Lo-X on January 21, 2014, 06:31:54 pm
Good job :)

Are passwords encrypted ?
Title: Re: Website News
Post by: zsbzsb on January 21, 2014, 07:47:58 pm
Submission of theme ideas are now active!

Login and give me and Jebbs upto 2 themes to consider for the upcoming jam!


Are passwords encrypted ?

Passwords are stored in the database with a SHA512 hash.  ;)
Title: Re: Website News
Post by: Lo-X on January 21, 2014, 08:16:07 pm
Passwords are stored in the database with a SHA512 hash.  ;)

Hmmm... well... hm... Ok, I think it'll do it :p

I did my suggestion work. Well, the first things I manage to find without much thinking.
Well done !

Edit: could be nice to put the next jam date on the home page
Edit2: a countdown would be even better :)
Title: Re: Website News
Post by: thomas9459 on January 21, 2014, 08:26:18 pm
Passwords are stored in the database with a SHA512 hash.  ;)

Hmmm... well... hm... Ok, I think it'll do it :p

Are they salted?
Title: Re: Website News
Post by: zsbzsb on January 21, 2014, 10:04:08 pm
Edit: could be nice to put the next jam date on the home page
Edit2: a countdown would be even better :)

It is planned, considering all my work so far was to get the website into a usable format stuff like this took a back seat. Something like this should be done shortly  ;)


Are they salted?

How the heck did I know this was coming :P Alright, true story is that I was half asleep when I did the register/login session part of the site. So I simply forgot to add a salt (yes you can come beat me now iostream  ::)), but to be honest this really only leaves the database passwords open to rainbow table attacks (provided you get your hands on the database).

Now I'm not too concerned over anything happening since I use SHA512 (lots of websites still use MD5 and SHA512 will take ages longer than MD5 to breach), however in the future (not a priority at the moment) I may do a password wipe so that all new passwords will be salted.  ;)


Edit

Salting has been added. All new accounts will automatically receive a salt while current accounts will be updated on next login  :)
Title: Re: Website News
Post by: Nexus on January 21, 2014, 11:28:11 pm
Since it's HTTP and not HTTPS, one can still eavesdrop when registering and re-authenticate with the harvested credentials (even if only the password hash is transmitted) :P

No, I don't want to annoy you, thanks a lot for the effort! The game jam is going to be great with a dedicated site :)
Title: Re: Website News
Post by: zsbzsb on January 22, 2014, 12:15:54 am
Since it's HTTP and not HTTPS, one can still eavesdrop when registering and re-authenticate with the harvested credentials (even if only the password hash is transmitted) :P

This is true for any website not using HTTPS, even these SFML forums are open to man in the middle attacks. However the main issue here is that I don't have a salt for passwords  :-\

Quote
No, I don't want to annoy you, thanks a lot for the effort! The game jam is going to be great with a dedicated site  :)

This isn't annoying in the least, I hope you will participate in the jam!


And so everyone knows, the full website code is available here (https://github.com/zsbzsb/sfmlgamejam).