Unified Accounts in Chat

S

StubleU

Gold Member
I've had a few questions asked about why we don't have have unified accounts across all the chatrooms. I don't know specifics but knowing the way it's relatively designed...i don't see why it wouldn't be too hard to sync accounts across the rooms or posture an account across all the rooms when they register.

there's a couple things that come to mind as problems with this though...i don't use the chat much so i can't say for sure...but the obvious one is that some accounts exist across the rooms for different users, already. so reconciling those would be a problem. the other problem is the benefit the site gets from requiring every chat you want VIP in you have to pay for...rather than getting VIP once across the board.

I'm sure there's other minute differences...but the syncing could be part of the regular cron job it runs anyways. I dunno...maybe i'll look into it...and if not...make a service available to register an account in bulk to all the rooms or the ones you want specifically...as yet another 3rd party service i can provide

@Radiation thoughts?
 
Upvote 0 Downvote
Because theyre all independent rooms requiring independent registration. This website is using licensed software. They have no control over how its designed thats why all suggestions here are never implented and a waste of breath.

The software does have the ability to unify accounts but that also means youll have the same account across any room you visit. This means VIP subcriptions will PLUMET and there is no money to be made.

Its similar to creating siderooms. Imagine the sideroom you create is actually a room already created called singles/college/general. You hop in and out with the same account.

I thought you were a leet h4xxor and knew this?
 
Bread. said:
Because theyre all independent rooms requiring independent registration. This website is using licensed software. They have no control over how its designed thats why all suggestions here are never implented and a waste of breath.

The software does have the ability to unify accounts but that also means youll have the same account across any room you visit. This means VIP subcriptions will PLUMET and there is no money to be made.

Its similar to creating siderooms. Imagine the sideroom you create is actually a room already created called singles/college/general. You hop in and out with the same account.

I thought you were a leet h4xxor and knew this?
Click to expand...
I think it's a money factor...because of the VIP...but from a technical perspective...there's no reason it can't be done...whether they choose to do it...or someone else and automates the process...that's the leet part
 
I mean youre right theres no reason it cant be done other than its chatmasters choice.

This would also vastly help keep track of the pedophiles across all the rooms.
 
it can be done without chatmaster...possibly

*edit* sorry...by choice it can be implemented so that users can register across the chats...but not proactively for existing accounts or for new registers...so if you want to register across the chats it can be done to preserve your name
 
Hmm, well each chat is a separate entity - so you're suggesting that when a user registers a new account in one room on the site, a script copies that database entry and puts it into every room? For that to work, all the encryption keys for passwords in every room would have to match, and to do that now, every active user would have to reset their password... you can imagine the complaints there...

If the site were to combine every room as one CodyChat using the built-in room feature, there would be two concerns. First, I don't think one CodyChat could support that many users - the rooms are already split across two servers I believe. Second, the owner wouldn't want one VIP purchase working across every room, so I can't see this happening.

So, I don't see one account across all rooms happening at all, but copying accounts for convenience is still theoretically possible...

There's age concerns if that were to be implemented - for example, I'd assume you wouldn't want a Kids Chat user to be registered in Sex Chat. So you could make the script only auto-join age appropriate rooms. But what if a Gen Chat user joined for clean chats and doesn't want their info in the adult rooms? At this point, you might as well make a check box prompt asking each prospective user which rooms they want to join - and that's basically the system we have now.

To conclude, I don't think the convenience of only having to register once is worth the hassle it would cause, and you'd still have seperate VIP purchases and seperate account info if you were to change anything. Unless all rooms were to be combined into one, and I just don't see that happening.
 
Radiation said:
Hmm, well each chat is a separate entity - so you're suggesting that when a user registers a new account in one room on the site, a script copies that database entry and puts it into every room? For that to work, all the encryption keys for passwords in every room would have to match, and to do that now, every active user would have to reset their password... you can imagine the complaints there...

If the site were to combine every room as one CodyChat using the built-in room feature, there would be two concerns. First, I don't think one CodyChat could support that many users - the rooms are already split across two servers I believe. Second, the owner wouldn't want one VIP purchase working across every room, so I can't see this happening.

So, I don't see one account across all rooms happening at all, but copying accounts for convenience is still theoretically possible...

There's age concerns if that were to be implemented - for example, I'd assume you wouldn't want a Kids Chat user to be registered in Sex Chat. So you could make the script only auto-join age appropriate rooms. But what if a Gen Chat user joined for clean chats and doesn't want their info in the adult rooms? At this point, you might as well make a check box prompt asking each prospective user which rooms they want to join - and that's basically the system we have now.

To conclude, I don't think the convenience of only having to register once is worth the hassle it would cause, and you'd still have seperate VIP purchases and seperate account info if you were to change anything. Unless all rooms were to be combined into one, and I just don't see that happening.
Click to expand...
I'm reviewing the code to see how the password is handled. it's unlikely that they use a salt for their hashing so it's probable that the password is the same across the board...either way...if the script just registered the user across the other rooms in the same process as an actual registration does...that salt and hashing would be taken care of

in another life i worked for a large public library that had a metro area need to allow all the surrounding libraries to be able to interchangeably use library cards across all the participating libraries...regardless of their library catalogue software...this is much the same...except it's all the same environment, software, and structure. the design is pretty simple.
 
StubleU said:
it can be done without chatmaster...possibly

*edit* sorry...by choice it can be implemented so that users can register across the chats...but not proactively for existing accounts or for new registers...so if you want to register across the chats it can be done to preserve your name
Click to expand...
i dont know what youre saying here but what you originally asks exists already. Its a choice. Chatmaster chose not to make it this way because there is more profit in having people vip accounts acrosss 20 rooms then there is in "1 room" ( amongst other things)
 
Bread. said:
each room is also licensed fyi
Click to expand...
this wouldn't circumvent the licensing...wouldn't reduce the licensing needs...or combine the rooms...this guarantees that your account is registered in all the rooms...and as far as I've seen...wouldn't take away from them wanting to have VIP per room
 
Im not understanding the point of this post? Its already an option. Just not implemented. Theres no need for any extra do-hickys. Restructuring any other way would require direct involvement with the licensee.

this suggestion is moot imo. Just like disabling guest accounts, installing trueblock etc
 
Bread. said:
Im not understanding the point of this post? Its already an option. Just not implemented. Theres no need for any extra do-hickys. Restructuring any other way would require direct involvement with the licensee.

this suggestion is moot imo. Just like disabling guest accounts, installing trueblock etc
Click to expand...
just like they could block vpn usage if they actually cared?
 
just like they can ban pedos if they actually cared. They give them a 30 day time out at best or allow them to buy more vips as a consequence.
 
b..but,

if we do that... how would i as-per-popular belief go into the other chats, & clone other users in the chat i frequent in order to frame them for saying racist remarks???
 
Radiation said:
CodyChat uses a salt for hashing.
Click to expand...
not quiet. here's what it does...

This section checks that the password supplied is the that's stored...
PHP: 
function userPassword($pass){
    global $data;
    if(encrypt($pass) == $data['user_password']){
        return true;
    }
}

but what's the "encrypt" function you ask? It's this section where it concatenates $d with BOOM_CRYPT before converting it to a rot13 value and then applying a sha1 hashing to it
PHP: 
function encrypt($d){
    return sha1(str_rot13($d . BOOM_CRYPT));
}

what's BOOM_CRYPT? it's defined here...as nothing and the commented out part says not to touch it
PHP: 
// do not modify those variables
define('BOOM_CRYPT', '');

and then what's $d? It's the keyvalue assigned to user based on the database entry and the userid itself
PHP: 
function userDataDetails($user, $key){
    global $mysqli;
    $d = '';
    if(redisCacheExist('data:' . $key . ':' . $user['user_id'])){
        return redisGetElement('data:' . $key . ':' . $user['user_id']);
    }
    else {
        $get_data = $mysqli->query("SELECT * FROM boom_data WHERE data_user = '{$user['user_id']}' AND data_key = '$key'");
        if($get_data->num_rows > 0){
            $dv = $get_data->fetch_assoc();
            $d = $dv['data_value'];
        }
        redisSetElement('data:' . $key . ':' . $user['user_id'], $d);
        return $d;
    }
}

So does it hash things with a preset salt? no...does it hash things with user specific value to ensure that each hashing is unique? yes.

does that mean that a script could conceivably register a user in all the chatrooms with the same data? no
but does that mean it could all just be done simultaneously like a bot? yes, possibly.
 
You must log in or register to reply here.
Top