Pages: 1 2 3 4 [5] :: one page |
|
Author |
Thread Statistics | Show CCP posts - 7 post(s) |
Rain6637
Team Evil
15289
|
Posted - 2014.07.07 21:35:00 -
[121] - Quote
not participating is simple: don't use sites that ask for SSO. the two sites I participate in currently are Eveboard (EB) and zkillboard, EB via API and zkillboard via manually/selectively submitting killmails. There's a lot that I don't let EB see, and opening my CREST is a bit of a jump... opening it to other sites is most likely not something I will do.
yeah, i'm paranoid. (don't hate the player hate the metagame). President of the Commissar Kate Fanclub | Rainfleet on Twitch | Twitter | Rainfleet mk.III | Imgur |
Zanthra Shard
Special Mission Team
2
|
Posted - 2014.07.08 06:34:00 -
[122] - Quote
Blastcaps Madullier wrote:Dinsdale Pirannha wrote:Blastcaps Madullier wrote:this is a SERIOUSLY bad idea from start to finish, it doesn't matter how good you make it, someone WILL hack it or find a exploit and by using this you are only going to see a flood of hacked accounts in the near future.
Congratulations on another ill thought out idea and I'm going to be LMFAO when it happens and you start getting a flood of comprimised accounts, all because someone at CCP thought this was a GOOD idea.... maybe next time try thinking up good idea's while under the influance of drink or drugs.....
A better idea would have been to use the API system, not "hey here's all my account details you need to go take over my eve account...."
oh and before you say it won't happen, I'll remind you of a hat community group called lolsec who got into your own servers.... This was likely proposed to CCP by the very people that will exploit the hell out of it, but hey, we already know that in CCP's eyes this group can do no wrong. one of the easiest ways of comprimise is going to be man in the middle attacks...
A man in the middle attack would require both a signed certificate for login.eveonline.com , and the private key to go with that certificate. No trusted certificate authority would sign a certificate for that website without verifying your identiry.
As to giving third party websites your login info, it does not happen in this system. As I understand it the process works like this:
When you go to the third party website and ask to authenticate yourself, they forward you to CCPs website, which includes enough information for CCP to know what website it was that sent you to their site.
Your Web Browser leaves the Third Party Site, and connects to the login.eveonline.com website. There, if you are not already logged in from some other visit, you can enter your Username and Password. When you login that information goes to CCP and only CCP.
After you login, or if you already logged in on a previous visit to CCPs page (possibly forwarded from another Third Party site, or possibly through some integration with the Ingame Browser authenticating you client), you will get the option to select a character, and you will be asked if you want to let the website access your information. Because each website is required to provide various information to CCP, such as the name and description of the website, and the address, you can verify that there, and it will be listed on CCPs website what information that website can get from CCP. If you reject this, the Third Party Site will not get any information.
If you accept, the login page will send you back to the Third Party Website with a key that that website can use through CREST to access information on your account.
It's actually really handy even though there is only just the Character ID and Character+Account hash, as this can be used in leu of a websites standard login procedure that would require they store a username and password on their site. You are identified by CCP rather than having to identify yourself to the website.
The reasonable concern have is that someone will create a fake Third Party Tool webpage, and pretend to redirect to the login page, and instead redirect to some webpage they control which looks just like CCPs page. They will not be able to make your Web Browser display https://login.eveonline.com/ as their URL. It almost certainly will happen, and it will almost certainly get people hacked, but anyone who is careful enough to not use the same username/password on third party websites as they do for their game account should be careful enough to check the domain name. I think an overall a move to single sign on will be less risky than the alternative where Third Party Sites could have databases containing passwords or password hashes stolen, along with persistent api keys. |
Kenneth Feld
Habitual Euthanasia Pandemic Legion
84
|
Posted - 2014.07.08 23:28:00 -
[123] - Quote
CCP Explorer wrote:Kenneth Feld wrote:What about Amazon??
I **THOUGHT** I was using SSO to sign on there for like a year now??? Can you detail this question a bit more, please.
If you go to Amazon.com and purchase a plex, it comes up in the box for you to login to your account and link the account to amazon, then when you buy a pled it goes directly to your redeemed items.
last year when they had the pled mess up and were selling 3 for $4 or whatever the deal was, I had to keep signing into separate accounts as it would only let you buy 4 deals for a single account.
I assumed that was SSO, but it isn't listed in the Dev Blog as being one of the ones running, wasn't sure if it was legit or not, and well, i have been using it for a while, wondering if I need to change my passwords or not? |
KIller Wabbit
The Scope Gallente Federation
622
|
Posted - 2014.07.09 02:35:00 -
[124] - Quote
Steve Ronuken wrote:IceGuerilla wrote:We have this total rubbish, but we still can't change characters without relogging? What a load of poppycock. Uh, One's extending the login tech that's already in use with CCP (take a look at logging into the community site, the wiki, and the forums), and the other is going through the entirety of the eve client code, looking for code where the assumption was made that the character id wouldn't change. Teeny difference there.
One we really don't care about and the other is a pain in the ass every single day. Wanna guess which is which?
SSO - so gonna be a favorite with hackers... CCP .. always first with the wrong stuff
|
KIller Wabbit
The Scope Gallente Federation
622
|
Posted - 2014.07.09 02:41:00 -
[125] - Quote
Steve Ronuken wrote:
Rein in your hyperbole.
Who went and made you a moderator?
Some minimal work that benefits a double handful of third parties and maybe a few thousand people that deal with those site versus the (supposedly) 20K+ people that login in each day, some of them several times across multiple characters. Gee... maybe the ENTIRE community would be happier with something getting fixed that irritates the hell out of them daily.
CCP .. always first with the wrong stuff
|
Slicr
2
|
Posted - 2014.07.09 02:43:00 -
[126] - Quote
KIller Wabbit wrote:Steve Ronuken wrote:IceGuerilla wrote:We have this total rubbish, but we still can't change characters without relogging? What a load of poppycock. Uh, One's extending the login tech that's already in use with CCP (take a look at logging into the community site, the wiki, and the forums), and the other is going through the entirety of the eve client code, looking for code where the assumption was made that the character id wouldn't change. Teeny difference there. One we really don't care about and the other is a pain in the ass every single day. Wanna guess which is which? SSO - so gonna be a favorite with hackers...
CCP bringing game mechanics to real life business. Only CCP would think it was okay to bring such a flawed system to it's customer base.
I believe in being Pro-Active as Opposed to Reactive. Reactive tends to be more costly in time and money.
|
KIller Wabbit
The Scope Gallente Federation
622
|
Posted - 2014.07.09 02:48:00 -
[127] - Quote
Terminator 2 wrote:Steve Ronuken wrote:Aalysia Valkeiper wrote:Terminator 2 wrote:How about anonymity and privacy?
What happens when i have signed into EVE and then browse one of those sites?
Will i first have to go there so that they can catch my name and IP and then have to log out there to change to anonymity or another non-SSO account? Which of course is useless since they already have my IP from SSO...
Also, what happens to my EVE session when i chose to logout from SSO to browse one of those sites while trying to preserve my dignity?
I would expect at least a clear privacy statement regarding everything involved with SSO before being forced using any of it. Also am i forced to use it?
It is because of all those "goodness" happening to us lately that i knowingly refuse and avoid having a facebook account or anything similar that connects different data sources voiding your privacy. I can answer that, judging from what I have seen regarding CCP's policies 'behind the scene'. The third parties won't get your IP address if you go to them after logging in with EvE online. Instead, they will get CCP's IP as your proxy. Nope. No proxy. They'll get your IP address. Just like they would if you went to their site anyway. The process is:
- Go to the 3rd party site.
- Click the login link.
- This sends you to the login.eveonline.com site (for the live version. sisilogin.testeveonline.com for the dev), with an identifier saying which site you're coming from.
- You log onto that site.
- You pick a character.
- You get sent back to the original site, onto a particular url that the site owner specified. A code is passed as part of the redirect.
- That code is checked by the original site (talking to login.eveonline.com) with a secret that's not shared. If everything matches, the character id etc is sent back.
So what is preventing any EVE related site, even the ones in fact authorized by CCP to fake the looks of such a login and steal my account name and password?
The only way I can see that you could prove that a site is not a phishing attack is to provide a fake name/pwd combination - if it "passes" then it is a fake. However, since phishing often faults with a fake failure ("Your login failed, please try again") before passing off to the real site you were intending to go to. Dunno how many level's of fake/fake/real.... levels the phisher's will build in to try to fake out even this attempt to protect ourselves.
CCP .. always first with the wrong stuff
|
Ms Michigan
Aviation Professionals for EVE Rim Worlds Protectorate
48
|
Posted - 2014.07.09 02:51:00 -
[128] - Quote
Steve Ronuken wrote:Ms Michigan wrote:Ahh...Now I get it. I couldn't figure out why you were posting more than the devs ; didn't know the META. You have a vested interest in said technology. Which site do you run? All there in my Sig Yes, I'd like to see it out there, mostly because I don't want to have to put up with the annoyance of managing a database of usernames and passwords, along with the paraphernalia that goes with it (resets and the like) Ms Michigan wrote: All that aside, my original post stands. IF CCP can't just bring these tools/sites on property and pay the people properly who developed them, then I still have a hard time with this. Not only on security, but principal. Yes, people don't have to use it...just like facebook. But again, the phishing scams alone are of concern as this involves money. As one user mentioned. What is CCP's policy going to be on this with third party websites?
As for bringing in third party devs, to make them into official applications, the vast majority aren't enough to keep a full time developer going for extended periods of time. Or are of low utility to most people. Or are specific to some corporations. One example is the class of 3rd party devs that maintain things like private corporation/alliance forums/wikis/voice coms and so on. (SSO will be very useful there) Policy I can't speak to.
Glad we cleared that part up; at least you aren't hiding your bias.
Here is my counter Steve. You quoted me but didn't really follow through. My problem is this to your response. Not that CCP hire you full time, but maybe part-time or buy you out for your work with a percentage of profits long term (much like Gates did with MS.) Everyone wins. The tools people like yourself and others provide improve EVE, are brought in game, and most importantly, CCP has an OFFICIAL OBLIGATION like any GOOD (i.e. not lazy or cheap) corporate entity SHOULD do. Corporate ethics (at least in the States) are so bad these days. This just reminds me of sub-contracting in that regard. And when you farm things out to save cash (whether you are okay with it or not) you get sub-par solutions like this. A corporation (like a person - and in the states the Supreme Court ruled corps are people in this regard) has a moral obligation to do things right. CCP operates in the USA. Not to mention, Iceland is pretty moral people. This just reeks of a "creative techno-babble" solution to the real problem. That is what I mean when I say all this. TLDR I wish. Sorry for the wall o' text.
|
Ms Michigan
Aviation Professionals for EVE Rim Worlds Protectorate
48
|
Posted - 2014.07.09 02:54:00 -
[129] - Quote
Slicr wrote:I am playing Eve Online. I have agreed to pay CCP to play this game. In order for me to fulfill that agreement I have a login ID and password that I use to provide CCP with my payment particulars.
I do not want CCP to make money off of endangering my personal information.
Make this OPT-IN only
Exactly...like API and like setting your friends dark blue in EVE gate. Make this OPT-IN account setting. All will be happy! : )
|
Ms Michigan
Aviation Professionals for EVE Rim Worlds Protectorate
48
|
Posted - 2014.07.09 03:13:00 -
[130] - Quote
Zanthra Shard wrote: A man in the middle attack would require both a signed certificate for login.eveonline.com , and the private key to go with that certificate. No trusted certificate authority would sign a certificate for that website without verifying your identiry.
Oh how soon we forget heart-bleed. Did we EVER get a verification out of CCP that these Official EVE sites (and any certificates used elsewhere on third part sites in the future) are not OPEN SSL? It is on the site admin to make sure this has been fixed. Just saying.
Zanthra Shard wrote:The reasonable concern have is that someone will create a fake Third Party Tool webpage, and pretend to redirect to the login page, and instead redirect to some webpage they control which looks just like CCPs page. They will not be able to make your Web Browser display https://login.eveonline.com/ as their URL.
Again - heartbleed, redirect DNS attacks - websites can actually appear in the address bar as actual websites and NOT be them. False certificates. See this link.
http://mashable.com/2014/04/17/heartbleed-digital-certificates/
Zanthra Shard wrote:
It almost certainly will happen, and it will almost certainly get people hacked, but anyone who is careful enough to not use the same username/password on third party websites as they do for their game account should be careful enough to check the domain name. I think an overall a move to single sign on will be less risky than the alternative where Third Party Sites could have databases containing passwords or password hashes stolen, along with persistent api keys.
PS: A concern I do have is if this is used in desktop or mobile applications, then the application can control things such that it creates even a fake browser, which could easialy trick even computer savvy people who are not looking for such a trick (and if done well enough, even them too). I would propose that a one time use, single sign on only token be creatable on a CCP website, such that you can use that instead of username/password, allowing you to avoid providing full credentials to untrusted applications. I feel this would probably be of little use on web apps however, because anyone savvy enough to use it could get the same protection faster by checking the ssl certificate.
I agree. |
|
Zanthra Shard
Special Mission Team
2
|
Posted - 2014.07.09 06:44:00 -
[131] - Quote
Ms Michigan wrote:Zanthra Shard wrote: A man in the middle attack would require both a signed certificate for login.eveonline.com , and the private key to go with that certificate. No trusted certificate authority would sign a certificate for that website without verifying your identiry.
Oh how soon we forget heart-bleed. Did we EVER get a verification out of CCP that these Official EVE sites (and any certificates used elsewhere on third part sites in the future) are not OPEN SSL? It is on the site admin to make sure this has been fixed. Just saying. Zanthra Shard wrote:The reasonable concern have is that someone will create a fake Third Party Tool webpage, and pretend to redirect to the login page, and instead redirect to some webpage they control which looks just like CCPs page. They will not be able to make your Web Browser display https://login.eveonline.com/ as their URL. Again - heartbleed, redirect DNS attacks - websites can actually appear in the address bar as actual websites and NOT be them. False certificates. See this link. http://mashable.com/2014/04/17/heartbleed-digital-certificates/
I have only seen IIS used by CCP, have they ever had an SSL secured website hosted on a non IIS server? A lot of their job offerings say: "Experience creating web services using ASP.NET". They might be using ASP.NET on mono or something, but it seems extreemly unlikely.
I'll concede that it is possible to run the attack you purpose, although it would be technically very difficult, and Single Sign on or not, you are still vulnerable to it. I don't feel that it is something to be concerned about. If someone with the technical knowledge and tools to pull off a DNS redirect, and has the private key to a CCP certificate, then you are already at risk on CCP websites. At some point you are going to have to accept some risk when doing anything online. I don't believe that the Sngle Sign on appreciably increases that risk. |
Terminator 2
Omega Boost
8
|
Posted - 2014.07.10 20:03:00 -
[132] - Quote
Wollari wrote:What people might have not realized yet. The SSO is the initial step for Authenticated CREST. If (one day) CCP will provide read/write API Calls via CREST to your character you'll be forced to authenticate via SSO and then approve the requested scopes (access level) that the application is asking for. (You likely all know it from facebook. If some funky application requests write access to my fb wall they usually can die in hell and I'll not use them, while other applications might be okay and get my approval). In the end it's always up to the user if they make use of SSO login on a 3rd party page and if they be careful during the login procedure. One last thing to Authenticated CREST (future thing). You can bet that if in some couple Years CCP will start with authenticated crest they'll be very careful with what access level they'll provide. No one wants a 3rd party application that micro manages the market ingame, etc. But right now it's only authentication which returns the information below (not more, taken from the SSO documentation) Quote:{ CharacterID: 273042051 CharacterName: "CCP illurkall" ExpiresOn: "2014-05-23T15:01:15.182864Z" Scopes: " " TokenType: "Character" CharacterOwnerHash: "XM4D...FoY=" } This is all what we application developer will get to see right now. Okay, with the characterID I can do public API requests to get more public information about the given character (like alliance, corp, secstatus, etc) but that's not critical IMHO.
Well there you already have it...
1) With CharacterName i can search for your posts/opinions/killmails/whatnot...would prefer to keep that private
2) With ExpiresOn you can prepare for Wardecs to take POSes down, if someone goes on vacation...would prefer to keep that private
3) With CharacterOwnerHash you can crossreference on your own and other sites that you own or with ones that are willing to share who one's alts are, without even having access to a fullapi key...would prefer to keep that private
This seemingly unimportant information can already lead to exploit and metagaming cases...who knows what the final implementation will yield... |
|
CCP FoxFour
C C P C C P Alliance
3372
|
Posted - 2014.07.11 09:21:00 -
[133] - Quote
Terminator 2 wrote:Wollari wrote:What people might have not realized yet. The SSO is the initial step for Authenticated CREST. If (one day) CCP will provide read/write API Calls via CREST to your character you'll be forced to authenticate via SSO and then approve the requested scopes (access level) that the application is asking for. (You likely all know it from facebook. If some funky application requests write access to my fb wall they usually can die in hell and I'll not use them, while other applications might be okay and get my approval). In the end it's always up to the user if they make use of SSO login on a 3rd party page and if they be careful during the login procedure. One last thing to Authenticated CREST (future thing). You can bet that if in some couple Years CCP will start with authenticated crest they'll be very careful with what access level they'll provide. No one wants a 3rd party application that micro manages the market ingame, etc. But right now it's only authentication which returns the information below (not more, taken from the SSO documentation) Quote:{ CharacterID: 273042051 CharacterName: "CCP illurkall" ExpiresOn: "2014-05-23T15:01:15.182864Z" Scopes: " " TokenType: "Character" CharacterOwnerHash: "XM4D...FoY=" } This is all what we application developer will get to see right now. Okay, with the characterID I can do public API requests to get more public information about the given character (like alliance, corp, secstatus, etc) but that's not critical IMHO. Well there you already have it... 1) With CharacterName i can search for your posts/opinions/killmails/whatnot...would prefer to keep that private 2) With ExpiresOn you can prepare for Wardecs to take POSes down, if someone goes on vacation...would prefer to keep that private 3) With CharacterOwnerHash you can crossreference on your own and other sites that you own or with ones that are willing to share who one's alts are, without even having access to a fullapi key...would prefer to keep that private This seemingly unimportant information can already lead to exploit and metagaming cases...who knows what the final implementation will yield... Also the malicious website owner will have more info which will be worth a lot more when you are identified...like your browsing history, IP and so on. He could for example DDOS you if you were a known Titan Pilot and he has your IP.
You are misunderstanding:
1) The whole point of singing in with the SSO is to give just your character. One and only one at a time. If you don't want to give that out... well don't sign in.
2) The ExpiresOn is when the token expires, nothing to do with the account. It's for the developer of the application or web site to know how long they have to do things they need to do.
3) No. That CharacterOwnerHash is unique to your character and account. You cannot use it to link multiple characters to the same account. A goal of the SSO for third party devs is, unless you specifically tell them, developers should NOT be able to link multiple characters from the same account together. So if you sign into the site twice with the SSO using the same account but different characters there is no way for them to know those characters are from the same account. At least not from us. You could tell them or they could guess based on the fact both signins were from the same IP, or things like that.
Your points about browsing history and DDOSing titan pilots is nothing to do with the SSO. The point of the SSO is to identify yourself as a specific character. If you don't want them to know that don't sign into their site. Web sites already ask you to confirm you are a specific person, just this makes it easier. It's still up to you if you let them know. CCP FoxFour // Game Designer // @regnerba
|
|
Sentient Blade
Crisis Atmosphere
1296
|
Posted - 2014.07.11 09:31:00 -
[134] - Quote
CCP FoxFour wrote:You are misunderstanding:
Don't mind him. He forgot to add an extra layer of tinfoil that morning. |
Rain6637
Team Evil
15328
|
Posted - 2014.07.11 15:20:00 -
[135] - Quote
can I limit CREST access like I can with an API access mask President of the Commissar Kate Fanclub | Rainfleet on Twitch | Twitter | Rainfleet mk.III | Imgur |
Steve Ronuken
Fuzzwork Enterprises Vote Steve Ronuken for CSM
3530
|
Posted - 2014.07.11 17:49:00 -
[136] - Quote
Rain6637 wrote:can I limit CREST access like I can with an API access mask
Authenticated CREST will be handled in a similar fashion to Facebook and twitter.
It'll tell you what privileges it wants, as part of the authentication. So you have to approve those, to continue.
Just another screen during the log in process.
Now, CREST will also introduce something else. A 'refresh token'. When you auth, it'll only be good for X period of time. So you get a refresh token that can be used to regain the privileges. If you want to revoke them, you'll go to a site (which doesn't exist yet, but will before release.) and revoke the privilege.
(we keep going back to facebook and twitter as examples, as the systems are very similar) Woo! CSM 9! http://fuzzwork.enterprises/ Twitter: @fuzzysteve on Twitter |
Rain6637
Team Evil
15329
|
Posted - 2014.07.12 07:24:00 -
[137] - Quote
ok, cool. that was going to be my next question. if i want to cut off a site, i can do it from a dashboard CCP-side like an API.
the likes of yourself and chribba are as trustworthy as anyone can expect, and i'm not questioning that. it's just my paranoia. as powerful as CREST is promised to be, the thought of opening it and leaving it open is unsettling. President of the Commissar Kate Fanclub | Rainfleet on Twitch | Twitter | Rainfleet mk.III | Imgur |
|
Chribba
Otherworld Enterprises Otherworld Empire
12201
|
Posted - 2014.07.12 07:43:00 -
[138] - Quote
Rain6637 wrote:ok, cool. that was going to be my next question. if i want to cut off a site, i can do it from a dashboard CCP-side like an API.
the likes of yourself and chribba are as trustworthy as anyone can expect, and i'm not questioning that. it's just my paranoia. as powerful as CREST is promised to be, the thought of opening it and leaving it open is unsettling. This need to be possible regardless of trusting or not, one should have the ability to revoke access (plus I would need to know how to handle those errors when I suddenly cannot use the tokens).
/c
|
|
Rain6637
Team Evil
15346
|
Posted - 2014.07.13 16:29:00 -
[139] - Quote
I am curious to hear third party developer thoughts on SSO as a single point of failure. President of the Commissar Kate Fanclub | Rainfleet on Twitch | Twitter | Rainfleet mk.III | Imgur |
Steve Ronuken
Fuzzwork Enterprises Vote Steve Ronuken for CSM
3537
|
Posted - 2014.07.13 17:06:00 -
[140] - Quote
Rain6637 wrote:I am curious to hear third party developer thoughts on SSO as a single point of failure.
It is a single point of failure, but it's a pretty robust one. (though right now, with the launcher problems, my timing is impeccable ;) ) Woo! CSM 9! http://fuzzwork.enterprises/ Twitter: @fuzzysteve on Twitter |
|
Rain6637
Team Evil
15347
|
Posted - 2014.07.13 18:53:00 -
[141] - Quote
will SSO be your only login option?
like... is there functionality available without SSO President of the Commissar Kate Fanclub | Rainfleet on Twitch | Twitter | Rainfleet mk.III | Imgur |
Zanthra Shard
Special Mission Team
2
|
Posted - 2014.07.14 09:18:00 -
[142] - Quote
Rain6637 wrote:will SSO be your only login option?
like... is there functionality available without SSO
That will be up to the third party developer. Traditional API keys will likely be around for many years yet, especially because they are a key way to retrieve public information you could simply look up in game no matter who you are, even without an API key.
Currently with authentication being the only thing available through the SSO, it is useful mainly for one thing. They can identify someone logging in through SSO through your Account + Character hash provided from CCP through the SSO. Basically the site sends you off to CCP to identify you, then when you come back they call up CCP ask as them who you are. The third party site can use that instead of keeping something to identify you themselves (in most cases a password), but in effect they do the same thing. So they can provide the same services to someone logged in directly to the website, or authenticated by SSO.
Basically if you want to use a traditional account on the third party site, it's likely most of them will continue provide that option.
In the future when third party sites are given more access to CREST, you will need to use SSO login to let the site (or third party application) modify stuff on your account, managing contacts, or accessing your corporation chat for example. Since the SSO is the method of providing the access tokens to those parts of your account you authorize the third party site. I foresee third party sites allowing you to select different levels of access that require increasingly permissive SSO tokens. This access is probably never going to be backported to the current API system. |
Steve Ronuken
Fuzzwork Enterprises Vote Steve Ronuken for CSM
3539
|
Posted - 2014.07.14 13:00:00 -
[143] - Quote
I'm currently thinking about that.
If I have any other option, it will be as a secondary option, to be used after you've logged in once with the SSO, and again if your character ever changes alliance or corporation.
And even then, it'll probably be something like Twitter, facebook, or google+ (I really don't want to have to deal with forgotten passwords.)
i.e.:
you auth with SSO. This creates your account, and you log in. You then go to the authentication page, and hit a 'link with twitter' (or whatever) link, which lets you auth with twitter. your Twitter details are then tied to your SSO user id.
You can then log out.
Then, you can log in with twitter. (at which point I check your character details haven't changed. if they have, login fails) Woo! CSM 9! http://fuzzwork.enterprises/ Twitter: @fuzzysteve on Twitter |
Rain6637
Team Evil
15347
|
Posted - 2014.07.14 13:41:00 -
[144] - Quote
until just now, I thought SSO was replacing API President of the Commissar Kate Fanclub | Rainfleet on Twitch | Twitter | Rainfleet mk.III | Imgur |
Jessica Danikov
Clan Shadow Wolf Fatal Ascension
364
|
Posted - 2014.07.15 22:22:00 -
[145] - Quote
So I guess we're going to keep calling it SSO when it isn't then? |
|
CCP FoxFour
C C P C C P Alliance
3394
|
Posted - 2014.08.11 15:03:00 -
[146] - Quote
Just as an update:
The following web sites now have access to the SSO on TQ: Osmium, Tripwire, Timerboard, and Fleet-Up with more to come soon.
Please everyone pay attention when you enter your username and password for EVE Online and be sure you have read this dev blog: http://community.eveonline.com/news/dev-blogs/eve-online-sso-and-what-you-need-to-know/ CCP FoxFour // Game Designer // @regnerba
|
|
|
|
|
Pages: 1 2 3 4 [5] :: one page |
First page | Previous page | Next page | Last page |