Hai friends,
I found a website that can help us so that every user can login or register to forums just by using the API they have provided.
Its like Facebook Connect or Google Friend Connect login systems.
Register and login to the forum can be done with the SMF login and standard social Gigya login panel.
(http://wiki.gigya.com/@api/deki/files/8601/=Drupal_LoginBlock.png)
http://wiki.gigya.com/001_Authentication_Quick_start
Gigya has made an example that can be applied to Drupal, I hope someone can make these mods for SMF 2.0 RC3, so that we can fill in the API that have been provided by Gigya to run it.
I really appreciate it for anyone who wants to help to make these mods
Regards
Khadhafi
Would I use this? DEFIANTLY!
EDIT:
Signed up and contacted them via email pointing to this post
wonder someone will create this mods
I would like to see this as well. Would need to support OAuth I have done some stuff with facebook/twitter.
But really have no idea how to make a good intergrated/user registration system for it.
We're using Gigya on our Wordpress site here: http://www.brap.fm/ and I'd love to see this for the forums. It would remove the steps needed to get registered and logged in and in turn generate more forum traffic :)
Hai guys....
After registering on Gigya site, i got 2 script that i must place to the top page for displaying panel systems and other is place in the body of the forum......
Too bad.... i don't know where i must place this script in the body of my forum...
Register to Gigya.com and go to here to get the script & API key
http://www.gigya.com/site/partners/widgets.aspx
This is 2 script that i've got grom Gigya:
Copy the code below to the head section of your page:
<!-- socialize.js script should only be included once -->
<script type="text/javascript" src="http://cdn.gigya.com/js/socialize.js?apiKey=2__smhADl0x3ieZnV9XXXXXXX-27j_P4XXXXXXIHCndljp"></script>
<script type="text/javascript">
var conf=
{
APIKey: '2__smhADl0x3ieZnV9XXXXXXX-27j_P4XXXXXXIHCndljp'
,enabledProviders: 'facebook,twitter,yahoo,messenger,google,linkedin,myspace,aol,blogger,wordpress,typepad,livejournal'
}
</script>
Copy the code below to the body of your page:
<script type="text/javascript">
var login_params=
{
useHTML: 'true'
,showTermsLink: 'false'
,height: 292
,width: 200
,containerID: 'componentDiv'
,UIConfig: '<config><body><controls><snbuttons buttonsize="40"></snbuttons></controls></body></config>'
}
</script>
<div id="componentDiv"></div>
<script type="text/javascript">
gigya.services.socialize.showLoginUI(conf,login_params);
</script>
All this script must be place manually in the forum....
Can someone help me for SMF 2.0RC3?
Sorry for my bad english
Khadhafi
Looking into for my sites now. Requires a bit more than javascript some php scripts to handle registration/login
Built was a little tricky but have it working using it on my forum hosting sites now!
http://www.smfhacks.com/social-login-pro.php
Sweet, is there a test site up?
EDIT: So there is. I noticed the test forums are 1.1.11, will this work for 2.0RC3 and up? And does this integrate with membergroups etc?
EDIT2: "Failed connecting. Please try again later"
:)
Fixed thanks for the heads up had the wrong api key from my other site.
Yes works with SMF 2.0 RC3
Currently it just allows people to login/register using social network accounts. So if they have not logged in with a social network account before it will autocreate the account and next time it will just autologin.
Looking at the api for gigya and they offer other parts too that I may want to add in the future.
K, I'm in. Can't post new threads though but I'm guessing that's just the guest permissions on the test forum or is it the restriction as you described above?
Yeah that's my demo site I don't allow guests to create topics it is mostly just showcase products.
Having some issues with the plugin. Have installed and added my forums domain - http://forums.brap.fm to my Gigya account. Have created new apps on all the corresponding social sites I'd like to use and have added the new keys but I'm getting 500 Internal Server errors.
I know Gigya works as I've added it manually to my Wordpress site.
Any pointers as to where I should start looking to find out what's wrong?
Fixed. gigya2.php needs to be set to 644. Was set to 666 :)
Amazing plugin, great effort. Exactly what I've been waiting for.
Glad you enjoy it! Yeah sometimes I noticed with SMF permissions do not get set correctly for files added in the main root directory of the forum.
(http://megaupload.cz/images/G201.jpg)
http://forums.brap.fm/ - bad Czech character like Social Login Pro :(
http://www.smfhacks.com/index.php/topic,4902.0.html
Can you fix it guys?
Maybe really don't know much about utf8 thought the table format would do it but I would have to see if i can convert the %u codes with php
Vb is the hack paid? "Pro"? If so I cannot but it :( checking now...
EDIT:
Dammit, I won't be able to use this! $25 for that? What a LOC!
Oww... nice...
Thanks for interesting in this gigya mod request.
whether there was a ready to wear mod for SMF 2.0 RC3?
It is ready for SMF 2.0 RC3 and 1.1.x
Ready not yet... :D
CZ charakters :(
khadhafi can you help?
vb, if ever a discount deal for this comes up, ill buy then, spending $30 of my $70 total doesnt apeal to me.
It is $25 currently.
i saw that. i cannot afford to spend that much for a while. (until i get another job and get paid)
OK it doesn´t matter...
I´ll create my own code ;)
Thanks
$25 VB? owch.....
I really appreciate your hard work, but unfortunately my hosting declining lately :(
If not, I would be interested.
Save up so far that is my cheapest mod on discount price for now heh
This is really useful. its a quick registrations from gmail facebook etc.
Quote from: lastminute on September 03, 2010, 06:17:06 AM
This is really useful. its a quick registrations from gmail facebook etc.
rights..... but too bad there's no free Gigya mods for any SMF here :(
Kadhafi, I agree this is a simple integration to expand registration, it SHOULDN'T cost $30!
Quote from: Kcmartz on September 06, 2010, 04:37:30 PM
Kadhafi, I agree this is a simple integration to expand registration, it SHOULDN'T cost $30!
You're right, maybe we can wait for someone who can make Gigya mods for free.
Its just like facebook connect That required Facebook API.
Quote from: khadhafi on September 09, 2010, 11:28:20 AM
Quote from: Kcmartz on September 06, 2010, 04:37:30 PM
Kadhafi, I agree this is a simple integration to expand registration, it SHOULDN'T cost $30!
You're right, maybe we can wait for someone who can make Gigya mods for free.
Its just like facebook connect That required Facebook API.
Maybe Gigya will make an official mod, and will publish it on mod site or their site for free!
Two questions:
- Does this mod transparently create an account, or does the new user still see an account creation screen, for example, to choose a username? If so, what's on that account creation screen?
- What happens if you have a Wordpress front end with the gigya wordpress plug-in and this gigya SMF mod both installed, and someone logs into the Wordpress blog via gigya-- is it possible for them to be simultaneously logged into SMF, or do they have to log in again on the forum pages?
Quote
- Does this mod transparently create an account, or does the new user still see an account creation screen, for example, to choose a username? If so, what's on that account creation screen?
Creates a brand new account for the user they do not see a creation screen. For some sites that don't pass an email they will get a prompt to enter an email address. How it works when they click on the social icon it checks if they an account created via gigya if not an account is created if they already have an account logs them in.
Quote
What happens if you have a Wordpress front end with the gigya wordpress plug-in and this gigya SMF mod both installed, and someone logs into the Wordpress blog via gigya-- is it possible for them to be simultaneously logged into SMF, or do they have to log in again on the forum pages?
They would have to login in both places since it is to different systems and the data is not shared/intergrated between the wordpress blog and the smf forum.
They still need to pass the anti-spam verification system right to register?
I am with the rest on this, I don't want to pay for something like that. I guess I will have to make my own.
No they don't have to pass any verification since it skips the registration page.
Quote from: vbgamer45 on September 15, 2010, 02:07:41 PM
No they don't have to pass any verification since it skips the registration page.
Yeah, I noticed this on your test site. I wonder if that is a good or bad thing.
I just read the developer documentation and it seems pretty straight forward, maybe a little too easy. Once you get the information back from Gigya all that needs to be done is to verify it. After that is done you can call SMF's register function or log them in if already registered. Pretty straight forward it looks like. This is how it looks to be done on your site.
The only part I hate about that is the bypass of the anti-spam system. It is possible to call the anti-spam functions for verification though it would make a extra step. Gigya sends the authenification information to the script. The script checks if the user has been registered before or is a new user. If the user has been registered before the script logs them in, if not the information gets stored in a session and they get sent to a second step. On the second step the user has to figure out the anti-spam puzzles. After a successful verification the script loads the session and registers them.
I hate to give this out though after you made yours paid. It would be like a slap in the face after you went through the trouble to make one for paid. But I do find it may be too simple of a mod to do it as paid. Someone eventually will make one since the mod is actually pretty simple. Since I am conflicting here, I will make it for personal use unless it is ok with you. I may even give it to charter members, that may be the way to go, don't know yet.
Thanks yeah it did take me about 5 hours to build port/package up for SMF 1.1.x and SMF 2.0.x and generally think the price is a good value cause I don't think anyone else would be able to build it for that low price if you had to get paid to be built.
I could add another step for verification but for me on my sites the goal was to have a quick instant setup currently I use this on my forum hosting sites. I am betting on that those social networks already have antispam systems.
yeah but CZ (ěščřžýáíé) charakters ...
I have found a problem while setting up. My test site uses SimpleSEF and the data that gets appended to the url does not get converted to the appropriate syntax for SimpleSEF. So I have devised a work around to get the url and start exploding it to get the vars. I don't know if you encountered the same thing.
Well got the SimpleSEF thing fixed along time ago, just had a hell of a time figuring out why the validation was not working when I followed the API guidelines to a exact T.
Well I exploded the vars from the url but I forgot to urldecode them, didn't even think about it, but duh. 2 hours wasted on something like that. ::)
OMG I would totally use this!!!
Is it being made??
Will I made a portion of it, I dropped the project due to the security aspects of their API. The only signed data coming back is the Gigya UID, which is a problem because this leaves all other information open to interception or modification. So the linking potential of this API is difficult at this moment until Gigya signs all the data they send.
vbgamer has made a paid version however, if his version supports linking then his version may be vulnerable to interception and compromised user accounts. If all his version does is register via the Gigya UID and link by the Gigya UID afterword then his mod is stable. However if he links accounts created via the Gigya UID by anything else than the Gigya UID then his mod is vulnerable.
The only real way to link to existing user accounts is to have them log in via Gigya then have another page having them input their password to their already created account. This may annoy the user more than it helps them log in. But once this data is all figured out then one may use the Gigya UID to link them.
A extra db table has to be set up to store the Gigya UIDs to the user accounts. All new registrants must verify their data because Gigya doesn't sign this stuff, so on register it is good to send a activation email. All existing members must enter their password to link to their Gigya UID to their account. All Gigya UID's have to be stored in a table linking member to Gigya UID. So no linking is not impossible, but heck the initial sign up is not any more convenient than the traditional SMF sign up.
So as you can see this API as it stands now is on shaky ground. Due to ways to secure this mod makes it worthless in my opinion.
Hi,
I wanted to clear something up regarding what information is signed.
It is true that only the UID is signed, and it has a good reason. All the other information is user generated anyway and can be modified by the user at the source (the social network). The UID is signed because that is the only piece of information required to authenticate a user on every login. We could have signed all the fields but that would have complicated the signature calculation when it is not required for 99% of the implementations.
If you wish to be absolutely certain you get the original values from the social networks, without any possibility of tampering on the client side, then you should get the UID from the client, validate the signature, then use the REST version of getUserInfo to make a direct call to our server (you can make it over HTTPS for even more security). This will give you the same information but with absolute certainty that it is coming from us.
Eran Kutner,
Gigya
Will that clears allot up, I might reconsider based on this new information.
http://wiki.gigya.com/030_API_reference/020_REST_API/socialize.getUserInfo
http://wiki.gigya.com/020_Developer_Guide/67_REST/OAuth1#Common_Required_Parameters
However please note emails are often verified by social networks. So email addresses is something the user can modify at the social network end but they are verified in most cases.
fyi, I use Gigya exactly how Eran described. It's works nicely. I initially had concerns that making an extra REST call might take too long but their service is pretty fast... we've had no problems. I also verify the signature of the REST getUserInfo just to be paranoid... maybe a little overboard but I sleep better at night :-)
wow... welcome Erank (Gigya)
Do you interesting for make this mods? all SMF webmaster waiting for you.... :D
One person is making a lot of money from this, thats ridiculous! >:(
Someone has a howto to do this yourself?
I would really love to have this feature but I simply refuse to pay money for it. Great forumsoftware, great support but beware of the moneyhungry wolfs!
Can we make this mod to support this great forumsoftware?
Someone with knowledge about implementing this manually please help!
Thx you!
Sent another email, asking if somebody from their company can design one, and release it for free, or real cheap, maybe $5, I'd pay for $5, not $25, that is too high for a SMF mod for me.
Quote from: MaXiForum.cz on August 25, 2010, 02:32:22 PM
(http://megaupload.cz/images/G201.jpg)
http://forums.brap.fm/ - bad Czech character like Social Login Pro :(
http://www.smfhacks.com/index.php/topic,4902.0.html
Can you fix it guys?
I solved the UTF-8, look at it and try it here (http://rc5.zagreb-forum.com/)