These forums have been archived and are now read-only.

The new forums are live and can be found at https://forums.eveonline.com/

EVE Technology Lab

 
  • Topic is locked indefinitely.
 

SSO and Crest questions
Author
Previous Topic Next Topic
YourSherpa
Horde Vanguard.
Pandemic Horde
#1 - 2016-01-25 12:43:58 UTC  |  Edited by: YourSherpa
How does one pull public data on a character after that first initial grab of user data via the SSO? Or rather what is the best way to query their public info without overloading the server with a cron job?

When a user signs up on Raidchat.com their character is given a character sheet with all of their supplied info from the SSO grab. How should we go about updating their info in cases where a user might change corp or alliance etc? Just cron job the character ID query or have the query run whenever a character's profile page loads?
Ortho Loess
Escalated.
OnlyFleets.
#2 - 2016-01-25 15:25:42 UTC
There's multiple options: CREST is probably the most efficient way if you only need info that is available from CREST and want to do it on demand (your second option).

If you want to do a cron job, you can use the characterAffiliations endpoint on the XML API. This takes a list of up to 250 characterIDs and returns just name and id for character, corp and alliance (so you can check for changes). It does not require a key.

If you need to know how to retrieve info from CREST after the 20 minute expiry of the auth token look at the refresh tokens documentation.
YourSherpa
Horde Vanguard.
Pandemic Horde
#3 - 2016-01-25 15:27:51 UTC
Ortho Loess wrote:
There's multiple options: CREST is probably the most efficient way if you only need info that is available from CREST and want to do it on demand (your second option).

If you want to do a cron job, you can use the characterAffiliations endpoint on the XML API. This takes a list of up to 250 characterIDs and returns just name and id for character, corp and alliance (so you can check for changes). It does not require a key.

If you need to know how to retrieve info from CREST after the 20 minute expiry of the auth token look at the refresh tokens documentation.



Hey man thanks a lot for pointing me in the right direction!
AtuuKisa
Republic Military School
Minmatar Republic
#4 - 2016-01-27 15:30:32 UTC
...on the same topic...Is the requirement for a redirect URL for the token response absolute?
for example, how does one get an auth token for a desktop app without a publicly accessible redirect host?

thanks
AtuuKisa
Republic Military School
Minmatar Republic
#5 - 2016-01-27 15:59:03 UTC
answered my own question

oauth2-based assertions require absolute URI

http://tools.ietf.org/html/rfc6749#section-4.1


and the kicker

redirection endpoint

http://tools.ietf.org/html/rfc6749#section-3.1.2