[Freeciv-Dev] Re: client/server authentication (PR#1767)

["ChrisK@xxxxxxxx" <ChrisK@xxxxxxxx>]

On Thu, May 08, 2003 at 03:31:28AM -0700, Raimar Falke wrote:
> 
> For "-a" and also some other cases the user should _be able_ to save
> his password in his freecivrc and the client should read it from this
> location. The client shouldn't save it there. At least not without
> asking the user.
> 
> The extra step where you type your password should be removed.
> 
> The server should sent a message text what the policy is. Something
> like "Welcome foobar. Please enter your new password. It has to be at
> least 4 characters and must contain at least 2 digits."

Sorry that I speak up, but I disagree.

The password should not be saved. You won't never autoconnect to a server
which requires authentication.

Instead, I want a command line option for the server to switch off auth. [1]
The server tells the client what (if any) authentication is required, and
the client displays a password entry field below the user name field, or
not.

All password checking is done at the server. New passwords are transmitted
twice, for this purpose.

A civclient -a quits with a message if the server requires authentication.

Christian

[1] Or, even better, to switch auth *on*.
[2] In this case, the connect dialog shows 2 password fields.

-- 
Christian Knoke     * * *      http://www.enter.de/~c.knoke/
* * * * * * * * *  Ceterum censeo Microsoft esse dividendum.