Hi everyone,
Please excuse me if this has been asked before, and please bear with me as I am completely green in regards to setting up an IRC server. My goal is the following:
- Allow only users that have registered on our web site to connect to our server
- Have one chat room as an exception that is publicly accessible, our lobby so to speak
- if possible automatically register our website users with nickserv (the registration form asks for their IRC nick as well as email)
I have the users' passwords stored in a hashed form in our web site database, and it does not use MD5 or SHAW, but a form of BCrypt (if I'm not mistaken), and we want to avoid having user password stored plain-text anywhere on the server, of course.
Any thoughts on how to best approach this?
Thanks for your thoughts!
~Mike
Authenticating Against Web Site Database?
Re: Authenticating Against Web Site Database?
I'm not opposed to thinking-outside-of-the-box solutions, i.e. having the web site create configuration files for UnrealIRCd to read.
Re: Authenticating Against Web Site Database?
I'm affraid it's a services feature, not an ircd one.
Re: Authenticating Against Web Site Database?
Thanks for the advice. Where would the best place be to start looking at services? Any pointers welcome.
Re: Authenticating Against Web Site Database?
Hi Mike,
Finally, SQLMod-II can run in "non-mandatory" mode where it will still allow unregistered users in.
This is pretty much what my SQLMod-II system does. It allows you to use your own website/CMS and will register the users on services. The password they have on the website/CMS will always be used by services as well (so even if they change it later..).Miggl wrote:- Allow only users that have registered on our web site to connect to our server
- Have one chat room as an exception that is publicly accessible, our lobby so to speak
- if possible automatically register our website users with nickserv (the registration form asks for their IRC nick as well as email)
I have the users' passwords stored in a hashed form in our web site database, and it does not use MD5 or SHAW, but a form of BCrypt (if I'm not mistaken), and we want to avoid having user password stored plain-text anywhere on the server, of course.
Finally, SQLMod-II can run in "non-mandatory" mode where it will still allow unregistered users in.