These forums have been archived and are now read-only.

The new forums are live and can be found at https://forums.eveonline.com/

EVE Information Portal

 
  • Topic is locked indefinitely.
 

Dev blog: EVE Online SSO and what you need to know

First post First post
Author
Rain6637
NulzSec
#141 - 2014-07-13 18:53:19 UTC  |  Edited by: Rain6637
will SSO be your only login option?

like... is there functionality available without SSO
Zanthra Shard
Sebiestor Tribe
Minmatar Republic
#142 - 2014-07-14 09:18:59 UTC  |  Edited by: Zanthra Shard
Rain6637 wrote:
will SSO be your only login option?

like... is there functionality available without SSO


That will be up to the third party developer. Traditional API keys will likely be around for many years yet, especially because they are a key way to retrieve public information you could simply look up in game no matter who you are, even without an API key.

Currently with authentication being the only thing available through the SSO, it is useful mainly for one thing. They can identify someone logging in through SSO through your Account + Character hash provided from CCP through the SSO. Basically the site sends you off to CCP to identify you, then when you come back they call up CCP ask as them who you are. The third party site can use that instead of keeping something to identify you themselves (in most cases a password), but in effect they do the same thing. So they can provide the same services to someone logged in directly to the website, or authenticated by SSO.

Basically if you want to use a traditional account on the third party site, it's likely most of them will continue provide that option.

In the future when third party sites are given more access to CREST, you will need to use SSO login to let the site (or third party application) modify stuff on your account, managing contacts, or accessing your corporation chat for example. Since the SSO is the method of providing the access tokens to those parts of your account you authorize the third party site. I foresee third party sites allowing you to select different levels of access that require increasingly permissive SSO tokens. This access is probably never going to be backported to the current API system.
Steve Ronuken
Fuzzwork Enterprises
Vote Steve Ronuken for CSM
#143 - 2014-07-14 13:00:38 UTC
I'm currently thinking about that.

If I have any other option, it will be as a secondary option, to be used after you've logged in once with the SSO, and again if your character ever changes alliance or corporation.

And even then, it'll probably be something like Twitter, facebook, or google+ (I really don't want to have to deal with forgotten passwords.)

i.e.:

you auth with SSO. This creates your account, and you log in.
You then go to the authentication page, and hit a 'link with twitter' (or whatever) link, which lets you auth with twitter. your Twitter details are then tied to your SSO user id.

You can then log out.

Then, you can log in with twitter. (at which point I check your character details haven't changed. if they have, login fails)

Woo! CSM XI!

Fuzzwork Enterprises

Twitter: @fuzzysteve on Twitter

Rain6637
NulzSec
#144 - 2014-07-14 13:41:20 UTC
Jessica Danikov
Network Danikov
#145 - 2014-07-15 22:22:26 UTC
So I guess we're going to keep calling it SSO when it isn't then?
CCP FoxFour
C C P
C C P Alliance
#146 - 2014-08-11 15:03:44 UTC  |  Edited by: CCP FoxFour
Hey guys,

Sorry if I sound like I am repeating myself but I want to make sure everyone is aware of this.

As of today Osmium, Tripwire, Timerboard, Fuzzwork, and Fleet-Up have been granted access to the EVE SSO on TQ with more web sites to follow soon.

If you have not done so please read this dev blog: http://community.eveonline.com/news/dev-blogs/eve-online-sso-and-what-you-need-to-know/

While we will obviously not keep telling you every time we give someone access, as this is the first time we really wanted to make sure everyone is aware.

Take care and be safe friends.

@CCP_FoxFour // Technical Designer // Team Tech Co

Third-party developer? Check out the official developers site for dev blogs, resources, and more.