These forums have been archived and are now read-only.

The new forums are live and can be found at https://forums.eveonline.com/

EVE General Discussion

 
  • Topic is locked indefinitely.
 

API keys for recruitment
Author
Previous Topic Next Topic
Vimsy Vortis
Shoulda Checked Local
Break-A-Wish Foundation
#61 - 2015-03-05 04:35:09 UTC
Just space-bondage.
MANDIGO COOTERSTANK
Doomheim
#62 - 2015-03-05 04:36:07 UTC
IMO a full API key should never be necessary to join a corp. Now, if you are already established in a corp and are applying for roles, or dealing with ~very expensive things~ then its to be expected that you'll need to supply a full key.
Nat Silverguard
Aideron Robotics
Aideron Robotics.
#63 - 2015-03-05 04:52:19 UTC
MANDIGO COOTERSTANK wrote:
IMO a full API key should never be necessary to join a corp. Now, if you are already established in a corp and are applying for roles, or dealing with ~very expensive things~ then its to be expected that you'll need to supply a full key.


it is, if they want, if you don't wan't, don't join. simples.Smile

Just Add Water
d0cTeR9
Caldari Provisions
Caldari State
#64 - 2015-03-05 05:40:17 UTC
Vimsy Vortis wrote:
Yes it's safe, however it's your information and you have the right to keep it private if you want to.

Moreover, if someone wants it with no expiry that is potentially suspect, there's little reason for anyone to want to continuously look into everything you're doing in game.

Personally I've always felt really dubious about people who want to be able to read your mails, as if it's totally normal to want to read other people's private communications.


Wrong. A lot of forums, intel channels, markets, etc, run from the API key which must be set not to expire.

No one is going to 'keep looking' at it, but the system/software will, to make sure you have the proper 'credentials' to be using those services.

Been around since the beginning.
Nevyn Auscent
Broke Sauce
#65 - 2015-03-05 06:38:57 UTC
d0cTeR9 wrote:

Wrong. A lot of forums, intel channels, markets, etc, run from the API key which must be set not to expire.

No one is going to 'keep looking' at it, but the system/software will, to make sure you have the proper 'credentials' to be using those services.

Amazingly, none of those services need any information from the API at all in order to operate. It's simply a made up requirement because 'you need to prove you are trustworthy', while the directors never have to prove that you can trust them in return.
It's a one way street, feudalism, and it only works because most of the Null sec alliance members are sheep prepared to accept feudalism.
ChromeStriker
Sebiestor Tribe
Minmatar Republic
#66 - 2015-03-05 08:17:25 UTC
Nevyn Auscent wrote:
d0cTeR9 wrote:

Wrong. A lot of forums, intel channels, markets, etc, run from the API key which must be set not to expire.

No one is going to 'keep looking' at it, but the system/software will, to make sure you have the proper 'credentials' to be using those services.

Amazingly, none of those services need any information from the API at all in order to operate. It's simply a made up requirement because 'you need to prove you are trustworthy', while the directors never have to prove that you can trust them in return.
It's a one way street, feudalism, and it only works because most of the Null sec alliance members are sheep prepared to accept feudalism.


Ok ok look, a full api really isnt absolutly needed, but as said before its easier to just ask for everything than pick out the few things not needed (as already stated)

As for what you said above, my old corp (not even alliance) had a forum that you could only join if you were in the corp. Had a ship doctrine tool that would show what you could fly. A buy back programe, ship replacement, gambaling hall, and a bunch of other stuff... all run off the API... The leadership could also track K/d and a bunch of other stuff not to kick people out (never did that) but to rewqard those that put in effort towards the corp...

API's are really useful. Simple as that really.

No Worries
Nat Silverguard
Aideron Robotics
Aideron Robotics.
#67 - 2015-03-05 09:01:01 UTC  |  Edited by: Nat Silverguard
Nevyn Auscent wrote:
It's simply a made up requirement because 'you need to prove you are trustworthy', while the directors never have to prove that you can trust them in return


then why did you even bothered applying to them in the 1st place if from the start you don't even trust them already? Shocked

you're wierd dude....

Just Add Water
Vicky Somers
Rusty Anchor
#68 - 2015-03-05 10:18:01 UTC
If you're using your alt on that same account to shitpost a lot, it's probably a bad idea to give out your API key. That's pretty much the only reason why multiple accounts are so popular in Eve.
Leannor
State War Academy
Caldari State
#69 - 2015-03-05 14:01:17 UTC
Scipio Artelius wrote:
It's safe.

Just don't put anything personal or RL related in your eve mails and there's no problem.

If you have any concerns, ask the recruiter exactly what they are going to use it for.

Most of them will have no clue.

But they aren't a huge risk, just an inconvenience.


you're fit ...P

"Lykouleon wrote:

STOP TOUCHING ICONIC SHIP PARTS"
WhyYouHeffToBeMad IsOnlyGame
#70 - 2015-03-05 15:07:51 UTC
API keys are like facebook, except you can't put false information in because the server feeds them your information automatically.

and it's revealing information on a snowden level.

Everything's a game if you make it one - Uriel Paradisi Anteovnuecci

CCP: Continously Crying Playerbase - Frostys Virpio
WhyYouHeffToBeMad IsOnlyGame
#71 - 2015-03-05 15:08:48 UTC
Leannor wrote:
Scipio Artelius wrote:
It's safe.

Just don't put anything personal or RL related in your eve mails and there's no problem.

If you have any concerns, ask the recruiter exactly what they are going to use it for.

Most of them will have no clue.

But they aren't a huge risk, just an inconvenience.


you're fit ...P

spie detected.

Everything's a game if you make it one - Uriel Paradisi Anteovnuecci

CCP: Continously Crying Playerbase - Frostys Virpio
WhyYouHeffToBeMad IsOnlyGame
#72 - 2015-03-05 15:09:52 UTC
MANDIGO COOTERSTANK wrote:
IMO a full API key should never be necessary to join a corp. Now, if you are already established in a corp and are applying for roles, or dealing with ~very expensive things~ then its to be expected that you'll need to supply a full key.

true words of wisdom(no jokes here, seriously)

Everything's a game if you make it one - Uriel Paradisi Anteovnuecci

CCP: Continously Crying Playerbase - Frostys Virpio
Anslo
Scope Works
#73 - 2015-03-05 15:14:19 UTC
Thora Zhubilai wrote:
Has nothing to do with safe or not...
can i have Full API from CEO?...no, sure not.

Trust me or trust me not...simple as that.

Yeah not that simple. This is Eve. When you get to the point that the alliance you built over a few years is throwing around hundreds of billions of isk worth of ships, one pissed off sperg leaking intel because he got called a name would ruin it all, and it couldn't be prevented because an API wasn't in hand to see said sperg mailing people about an OP to third party on.

[center]-_For the Proveldtariat_/-[/center]
d0cTeR9
Caldari Provisions
Caldari State
#74 - 2015-03-05 18:22:12 UTC  |  Edited by: d0cTeR9
Nevyn Auscent wrote:
d0cTeR9 wrote:

Wrong. A lot of forums, intel channels, markets, etc, run from the API key which must be set not to expire.

No one is going to 'keep looking' at it, but the system/software will, to make sure you have the proper 'credentials' to be using those services.

Amazingly, none of those services need any information from the API at all in order to operate. It's simply a made up requirement because 'you need to prove you are trustworthy', while the directors never have to prove that you can trust them in return.
It's a one way street, feudalism, and it only works because most of the Null sec alliance members are sheep prepared to accept feudalism.


Wrong, i know for a fact it's needed... Heck i checked 10 minutes ago... yupp, API key is still needed for what i was doing using one of the services of the CFC.

Also everyone i know is required to provide it, from the recruit to the CEO of every single corp. Only people that have something to hide are worried. 99% of the other's are completely fine and there's ZERO issues. If you can't trust them... why should they trust you?

Been around since the beginning.
Bloody Slave
Republic Military School
Minmatar Republic
#75 - 2015-03-05 18:57:28 UTC
d0cTeR9 wrote:
If you can't trust them... why should they trust you?


Exactly!!!!

If you are the CEO, director or whomever is in charge of recruitment and cannot trust the new members why should they trust you?

Bingo!

Dito!

Roll

If your balls are hurt and bleeding don't sit in a pool full of piranhas (note to myself: don't complain in GD)
Frostys Virpio
State War Academy
Caldari State
#76 - 2015-03-06 19:31:38 UTC
Bloody Slave wrote:
d0cTeR9 wrote:
If you can't trust them... why should they trust you?


Exactly!!!!

If you are the CEO, director or whomever is in charge of recruitment and cannot trust the new members why should they trust you?

Bingo!

Dito!

Roll


They kinda have to trust you since they are joining your corp. If you don't trust your leadership, don't join the corp/alliance...
Shey Nabali
Imperial Shipment
Amarr Empire
#77 - 2015-03-07 00:20:26 UTC  |  Edited by: Shey Nabali
Storm Novah wrote:
No Class wrote:
So i'm looking for a new corp, but on the adverts i'm seeing almost all of them want my FULL API key. Is this safe? Can anything bad come of this?


I agree with previous posters. Be careful of the information you share in game in any form.
As for the API requests I honestly don't see any reason that a 100% full API is necessary for any corp. IMO it's nobody's business what is in the wallet or assets and as such I never include that information in my submitted APIs for any corp. If a corp "requires" that info I take that as a red flag... while it's not always the case there are corps out there that are more interested in looking for victims than seeking new contributing members.

Other than that the API key does NOT give anyone access to your account login information and you can control every aspect of the API key and the information it gives. Anyways... good luck.




Any corp that fields capitals (and especially supers) will want your asset and transaction info, as that is a very easy way of catching careless/lazy spies.

d0cTeR9 wrote:
Nevyn Auscent wrote:
d0cTeR9 wrote:

Wrong. A lot of forums, intel channels, markets, etc, run from the API key which must be set not to expire.

No one is going to 'keep looking' at it, but the system/software will, to make sure you have the proper 'credentials' to be using those services.

Amazingly, none of those services need any information from the API at all in order to operate. It's simply a made up requirement because 'you need to prove you are trustworthy', while the directors never have to prove that you can trust them in return.
It's a one way street, feudalism, and it only works because most of the Null sec alliance members are sheep prepared to accept feudalism.


Wrong, i know for a fact it's needed... Heck i checked 10 minutes ago... yupp, API key is still needed for what i was doing using one of the services of the CFC.

Also everyone i know is required to provide it, from the recruit to the CEO of every single corp. Only people that have something to hide are worried. 99% of the other's are completely fine and there's ZERO issues. If you can't trust them... why should they trust you?




Okay, so, recruitment officer for a medium-ish sized corp and alliance. Here is what we do, in basic terms, with APIs.

1. Full APIs are used for spy checking, pretty much exlusively. We don't, actually, care what assets you have, we just care that you didn't get 900m isk from Shadow Cartel to pay for your plex last month. It's not even terribly effective at catching spies, rather, it works as a deterrent. Because we DO check, people don't try, because it becomes more effort than it is worth. If we DIDN'T check, we would get flooded by spies. (See: Every high-sec scrub tier mission corp ever)

2. Partial APIs are used to "authorize" people for alliance services. This is essentially just your character sheet. This lets us link your access to services to your alliance membership. This way, when we have reason to hell-purge someone, or they leave the alliance for whatever reason, there is no need to manually remove access from 5+ different access lists. It also avoids the issue of security holes caused residual access from people, for example, getting jabber pings weeks after they left the alliance (this is a thing that happens, sometimes for months, for other alliances. Not us fortunately, we think).

That's it. That's all we use them for.


EDIT: Also, you CHOSE to trust your alliance leadership when you join an alliance. If you don't trust them, leave. They prove their trustworthiness by running a large, effective organization, and providing content and entertainment for hundreds or thousands of people. It's YOU whom other members of the organization have reason to distrust.
BrundleMeth
State War Academy
Caldari State
#78 - 2015-03-07 14:12:13 UTC  |  Edited by: BrundleMeth
Loraine Gess wrote:
Pok Nibin wrote:
Full APIs are unnecessary, and any CEO asking for one demonstrates a lack of knowledge about the game sufficient to call his or her competence into question. Should a corp ask it of you, take that in consideration and ask yourself if you really want to be part of a group if their leadership is so...questionable.



So apparently everyone better than you, including all the large nullsec organizations, are incompetent. Of course.

But he is right APIs are completely unnecessary..."Everyone does it" isn't good enough. Please tell me now how "You will never get into a good corp, bla, bla bla"...I don't believe that and don't care anyway...



Lan Wang wrote:
Thora Zhubilai wrote:
Safe or not....i do not give API key! ... to no one...Point! basta!
can i have API key from recruiters, directors or from CEO?...
no!


explains why you are and probably always will be in an npc corp. there is no danger submitting a api key......

its standard in any decent corp

Ah yes that standard nauseating repetitive answer. I have been in 2 excellent corps and they didn't even ask. They thought it was bullshit too...


ChromeStriker wrote:
... i interviewed a toon that transfered 5 billion isk between a couple of toons 3 months before and when i asked why they dropped the conversation never to be seen again. Roll

And let me guess. You immediately surmised that was clear evidence of some nefarious plot being devised...Not possible he just didn't want you in his personal affairs?
Josef Djugashvilis
#79 - 2015-03-08 00:21:20 UTC
I would not wish to join any corp that demands to to be allowed to read my eve-mails about how well or not Ireland are doing in the 6 Nations, and they would not allow me to join unless they can read my eve-mails.

Works well for both parties really.

This is not a signature.
Nat Silverguard
Aideron Robotics
Aideron Robotics.
#80 - 2015-03-08 04:14:37 UTC
Josef Djugashvilis wrote:
I would not wish to join any corp that demands to to be allowed to read my eve-mails about how well or not Ireland are doing in the 6 Nations, and they would not allow me to join unless they can read my eve-mails.

Works well for both parties really.


why, something kinky going on in there? Big smile

Just Add Water