XF 2 AUTH system for desktop programs with xfrocks or xenforo API

sentimental

Active member
Hi,

I don't think this is currently possible with the new built in REST API that xenforo have recently launched. However looking at the docs for the xfrocks API https://github.com/xfrocks/bdApi/blob/master/docs/api.markdown it seems as though what I'm looking to do would be possible here.

There is an even older API I found for xenforo 1.5 called the XenAPI https://github.com/Contex/XenAPI/wiki/REST-API-Actions

What I'm looking to do is have a custom page users can access, lets call it an "Auth key" page. Basically a user accesses this page, clicks a button to generate their "Auth code" or in the XenAPI he called it a "USER HASH" that looks something like this: 9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08

The user can then open a program I've created in say dotNET, C#, whatever, it'll ask for their "Auth key" or "USER HASH" they input it, that fires an api request to check they are a valid user and their usergroup permissions to grant or deny them access.

I figure that I myself would need to code the program part of the process where my programs send a request to the REST API asking if the user hash is tied to a valid user & then use if/else statements to deny/grant access based on their secondary usergroups?

If anyone thinks they can make this a possbility please contact me to discuss.
 

ForumCube

Well-known member
Hi,

I don't think this is currently possible with the new built in REST API that xenforo have recently launched. However looking at the docs for the xfrocks API https://github.com/xfrocks/bdApi/blob/master/docs/api.markdown it seems as though what I'm looking to do would be possible here.

There is an even older API I found for xenforo 1.5 called the XenAPI https://github.com/Contex/XenAPI/wiki/REST-API-Actions

What I'm looking to do is have a custom page users can access, lets call it an "Auth key" page. Basically a user accesses this page, clicks a button to generate their "Auth code" or in the XenAPI he called it a "USER HASH" that looks something like this: 9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08

The user can then open a program I've created in say dotNET, C#, whatever, it'll ask for their "Auth key" or "USER HASH" they input it, that fires an api request to check they are a valid user and their usergroup permissions to grant or deny them access.

I figure that I myself would need to code the program part of the process where my programs send a request to the REST API asking if the user hash is tied to a valid user & then use if/else statements to deny/grant access based on their secondary usergroups?

If anyone thinks they can make this a possbility please contact me to discuss.
We have started a private conversation to ask a few questions for cost estimation. Looking forward to discussing further!
 
Top