Utilize Discord OAuth

[cn]

Discord has a pretty robust OAuth2 system which I think would be very good to integrate into the site. it could help with properly applying roles and things like that in the Discord without the need to do it manually and easily verify that users are who they claim (as opposed to the roundabout signature system the OGU Discord used). Discord is a major platform in marketplace communities and I think using it's capabilities to the fullest is the move.

 

[Jam]

was implemented but was broken

the solution to it being broken was to remove it entirely

 

[cn]

was implemented but was broken

the solution to it being broken was to remove it entirely

Or maybe when you break a leg it doesn't need amputated? If you break a phone screen you don't need to switch to primitivism? Perhaps the solutions is fixing it.

I get removing it temporarily while it's being fixed but that's not what your message implies. I think it's a feature that's worth the effort to implement.

 

[Lk]

The current verification method is easy to do, and in case of a database breach I'd like my discord not to be linked to my kingz account. I think it's safer like that

 

[Jam]

The current verification method is easy to do, and in case of a database breach I'd like my discord not to be linked to my kingz account. I think it's safer like that

data wouldn't really be exposed cause it wouldn't (or shouldn't) really be stored

 

[Jam]

Or maybe when you break a leg it doesn't need amputated? If you break a phone screen you don't need to switch to primitivism? Perhaps the solutions is fixing it.

I get removing it temporarily while it's being fixed but that's not what your message implies. I think it's a feature that's worth the effort to implement.

yes but simply @Dex is too pro coder to keep it on the site

 

[Lk]

data wouldn't really be exposed cause it wouldn't (or shouldn't) really be stored

I am not sure about that but I think that the token has to be stored to keep the connection active, I could be wrong tho

 

[cn]

data wouldn't really be exposed cause it wouldn't (or shouldn't) really be stored

Was about to say the same thing, as far as I know about the most compromising information you can get from Discord OAuth is the email associated with the account, which wouldn't be required for this use case and can therefore be left out of the scopes

 

[cn]

I am not sure about that but I think that the token has to be stored to keep the connection active, I could be wrong tho

No, in simple terms OAuth2 enables developers to have applications interact with the user data from other platforms and services securely. Discord doesn't provide any token data when using it

 

[Jam]

I am not sure about that but I think that the token has to be stored to keep the connection active, I could be wrong tho

dex (megamind genius) isn't ace (retard)

sure everything will be fine regardless. doubt a data breach will even happen as xenforo is many times more secure than mybb

but who knows