Add login history in your account managment (CSM)

From sdeevelopedia
Jump to: navigation, search

All this data is potentially out of date, and should be taken with a truckload of salt

Stats[edit]

  • Raised by: mazzilliu
  • Submission Date: Sunday september 27th 16:00
  • Issue ID: tbd

Summary[edit]

Right now, on your API keys page you have 7 days worth of logs available to you, where you can see what page of the API was accessed using your key, what ip address accessed it, when, what time, etc.

It's a great feature for finding out if your API information is being misused. But it's kind of ridiculous that this option isn't available in your account management as well.

Solution[edit]

Such account logs should log the following events:

-type of login- ingame? website? -success or failure of login -password reset attempt -successful password reset


and include the following information for these events:

date/time ip address


The logs should show more then just one week of activity though. It should show as much as technical limitations can allow. to prevent the servers from putting forth unnecessary effort, people should be required to click to go to the next page if they want to see more then a few days of activity.


There should also be an optional RSS feed that players can add, that alerts upon a failed login attempt, or a login attempt from an IP not equal to the previous IP used to successfully log in. It could be based on the highsec API key.

Pros[edit]

  • less account hijacking

Cons[edit]

  • takes some time to implement

Relevant Forum Threads[edit]

Votes[edit]

Passed 7/0