[INTERESTING] login without password (using smartphone QRs) #290
Comments
|
Isn't this Steve Gibson idea ? |
|
@tech-samuel Yes, I think so! But the guy behind the blog post didn't say he invented it, in fact he stated very clearly that he simply wants to show a simple implementation / live demo of this login thing. |
|
Yes i know that. Steve Gibson still hasn't finished the spec for this login system yet. So i think we should wait till the spec is complete. :) |
panique
changed the title
|
I had a look at the code of PHPGangsta and It looks relatively easy to implement. This is used to, every 5 secondes, check if the generated sesamecode is used when a user logged in. It works fine but there must be a better solution then a page refresh. What do you guys think?
In my opinion the first option is the best one. i'd love to hear what you think |
|
Hey!
I'll like some general feedback so we can further improve this cool feature! |
|
@thierryve Wow! Big thanks! I'll look into that when there's time! |
|
@thierryve Is there a demo somewhere on how that would work in the end? Would love to see it (but honestly dont have the time to deploy it right now :D)! |
|
@sopitz you lazy .... :D |
|
@sopitz I created a public demo page for this feature. Love to get your feedback! |
|
I don't know if it's my end or something else, but it's not working for me :S I click the link |
|
@KatzArie this is how it works.
Hopefully it works, otherwise I have some bugs to fix 😋 |
|
Here is a test account for everyone that doesn't want to make an own account. |
|
Work'n! N!CE :D |
|
I just updated this feature.
Love to hear if you think it is ready for a pull request |
|
This might become a SERIOUS thing! I've just read some things about the post-password-auth-era, and authenticating/logging-in via hardware / mobile devices / body parts (!) is more than just future fantasy, it's coming! Maybe optional two-factor authentication (password + SMS-code on your smartphone) is an optional feature for php-login 3.0, too. |
|
@panique I posted that in a different ticket a while ago already: https://medium.com/@ninjudd/passwords-are-obsolete-9ed56d483eb I will have a look into that and probably implement it early 2015 when I'm done with my 2014 release. |
|
Maybe you all are interested in this. Seems to be super easy to integrate and is free for small projects. EDIT: I just set it up for a personal project and github. THAT STUFF IS AWESOME!! Should be a must for everyone. |
panique
changed the title
panique
changed the title
|
Hey, I'm currently "cleaning" the project a little bit and moving feature-requests like this to an own list inside the readme file (find it under the "future features" point). I hope you are okay with it, as most tickets here are new features and not really bugs or so. My idea is just to avoid this project from getting oversized by too many features, so I'm closing the ticket, but for sure linking it from the readme in case somebody wants to implement this. I hope you are all okay with this. :) |
|
hai, i wanted to change the url to custom url, can you please help |
Gentlemen,
one of my favourite (german) PHP blogs just posted a very very interesting solution for SECURE login-processes while using a (possibly infected, keylogged etc.) computer in internet cafes, hotels, universities etc. You know what I mean.
This is awesome! According to the article this/something similar has been tested by Google, too.
(german) article:
http:https://www.phpgangsta.de/sesam-oeffne-dich-sicher-einloggen-im-internetcafe
Github repo:
https://github.com/PHPGangsta/Sesame
Demo:
http:https://sesame.phpgangsta.de/
Feel free to experiment with this and maybe pushing this feature into the 2-advanced / 4-full version.
The text was updated successfully, but these errors were encountered: