| ↑back Search ←Prev date Next date→ Show only urls | (Click on time to select a line by its url) |
| Who | What | When |
|---|---|---|
| *** | mkb_ has joined #arpnetworks
mkb has quit IRC (Ping timeout: 240 seconds) | [04:10] |
| ........................... (idle for 2h11mn) | ||
| ziyourenxiang has joined #arpnetworks | [06:23] | |
| ....... (idle for 34mn) | ||
| ziyourenxiang has quit IRC (Quit: Leaving) | [06:57] | |
| ......... (idle for 44mn) | ||
| dj_goku has quit IRC (Remote host closed the connection) | [07:41] | |
| dj_goku has joined #arpnetworks
dj_goku has quit IRC (Changing host) dj_goku has joined #arpnetworks | [07:50] | |
| .............................................................. (idle for 5h6mn) | ||
| mkb_ is now known as mkb | [12:56] | |
| ...................................................................................... (idle for 7h9mn) | ||
| nathani | What technology does Whatsapp Web utilize to sync a QR Code with a mobile device, or is that they pretty much rolled their own proprietary solution? | [20:05] |
| hazardous | ..?
wait, do you mean log in with qr or something | [20:05] |
| nathani | yea the login | [20:06] |
| hazardous | it's pretty much an authentication code / attestation, many chinese sites do this
tencent games all do qr login because people have to sign in via cybercafe computers that are unsafe/keylogged | [20:06] |
| nathani | it is straightforward to implement? | [20:07] |
| hazardous | you scan the qr random token on your phone, enter u/p on your phone (in the app where the token is also attached/read), and they 'approve' that qr random token for login | [20:07] |
| nathani | are there libraries etc out there for programmers? | [20:07] |
| hazardous | think of it as basically clicking a oauth button
except more state is handled by the server not sure if there are libraries, i rarely if ever see this auth flow outside of asia tl;dr afaik is session: asdfjkl (in QR; actually some maximally long crypto-random token) / app: scans qr and provides either existing token or a login window on a device you own; when you log in you basically tell it "tie this session to asdfjkl instead of creating a new one" so in the browser afterward you just reload and your same cookie is already 'active' | [20:07] |
| nathani | right | [20:09] |
| hazardous | i feel like there's probably not much of a library thing for this, but it should just be the same as a login form except tracking active but not used yet tokens in redis or something
and when they're consumed just dump it in your sessions db table or whatever | [20:09] |
| ............. (idle for 1h2mn) | ||
| *** | Nahual has quit IRC (Quit: Leaving.) | [21:12] |
| .................................. (idle for 2h47mn) | ||
| Lucifer333 has joined #arpnetworks | [23:59] | |
| ↑back Search ←Prev date Next date→ Show only urls | (Click on time to select a line by its url) |