« Ajax Page Load
More RSS feeds
Wedge private alpha is OUT! »

Dragooon

  • I can code! Really!
  • polygon.com has to be one of the best sites I've seen recently.
  • Posts: 1,841
More RSS feeds
« on April 17th, 2013, 06:21 PM »
It'll be useful to have an unread posts/latest posts with respect to the member RSS feed, since I use my RSS reader a lot on my phone. Having some sort of RSS-only key can solve the problem of security, although I'm not entirely sure. Plugin, perhaps?
The way it's meant to be

Nao

  • Dadman with a boy
  • Posts: 16,082
Re: More RSS feeds
« Reply #1, on April 17th, 2013, 07:00 PM »
I think we discussed that in the past...
I don't remember the outcome of our conversation, though. Nor why we didn't implement anything in that respect...

Arantor

  • As powerful as possible, as complex as necessary.
  • Posts: 14,278
Re: More RSS feeds
« Reply #2, on April 18th, 2013, 03:11 AM »
The main issue was security. Having an RSS only key means you expose something that should not necessarily be public *simply by way of the URL*

I'm not even fond of what Google Reader used to do which was expose the user/pass combo through HTTP Basic (i.e. http://user:pass@example.com/) though I could see a plugin accepting a hashed version of the password and using that to delegate authority. But it would have to be hashed in a different way to the main password for security reasons.

Using HTTP Basic is about as primitive as it gets simply because of the fact it's exposing the 'password' with every request to every system along the way (it's passed unencrypted)
When we unite against a common enemy that attacks our ethos, it nurtures group solidarity. Trolls are sensational, yes, but we keep everyone honest. | Game Memorial
« Ajax Page Load
Wedge private alpha is OUT! »