RGL mirrors bans from site to discord, and vice-versa. That was to be expected.

I still say give it a shot, the more you put it off the worse it becomes.

Good luck, all.

it's the same situation every fucking season with another ban or bad decision, and RGL won't change because we complain on the forums about it.

urmphi, if you want to actually make a point to the team at RGL, just DM them, doesn't matter who. They may just tell you to fuck off, but it could perhaps give you some more insight in the ban.

like, there's just no hope left in making threads about stuff if no one cares to take this to RGL, they only care if they read it on their forums or their dms, and the very rare situation when something fucked goes on and sigafoo has to come here and type an essay to us, but there's no in between.

I hope justification comes, but I won't hold my breath for it. I wish for the truth to come out of someone.

lol

ya sorry to hear, but rgl made their decision already so good luck! oh and they won't inform you of such a decision unless they want to.

no he didnt he said it himself

https://github.com/RGLgg/server-resources-updater/issues/33
Fixed

remove it, make an issue on the github

nothing you can do without compiling it yourself :/

also, it looks like the plugin hasn't been updated since December 8th?

Yes, it only supports RGL, as ETF2l already has a robust API and there's no reason to make one myself.

Understandable. Sometimes it's just not what you want to do.

payload.tf currently hosts an API to gather player data.

read more about it here

The average response time is still ~5 seconds, however it's sometimes quicker than the rgl page itself.

Also is this on GitHub? If not, you should open source it!

holey shit no one cares about your browser just pick one and be done with it, its not a 'who is better' its 'do i want to use it'

Honestly with all of these security issues in play, I'd really hope GGTor completely scraps their website and start fresh.

This is web dev 101. You cannot get user authentication and authorization wrong, ever. Doing so could cost anyone millions of dollars in damage and legal fees if circumstances are correct. I cannot ever think of an organization to do such a thoughtless action, and this was intentional. There's not one bit of tutorials out there that will teach you this is how to do authentication. This was a conscious decision from their team, and it's here to haunt them.

I'm in no way blasting GGTor, I really hope this gets to them as constructive criticism. It's not easy building a large platform, and not easy to build one fast. That's why we have frameworks and packages to help us build quickly.

I would emphisize to GGTor that their current structure should be abolished in favor of a complete rewrite. I don't want to ever see that light of what would hopefully be their old backend, and I wish for them to do everything over from step 1 with the correct and well-secure methods we have available now-a-days. I really really hope that they find more flaws in their system so that it can be patched, because this as the first thing we notice? I'm really thinking there's more to it than just user passwords we can change.

Please, for the love of God, let this be a message to GGTor and their engineering team. May this be a message of construction rather than demolision.

Not if you can display them. Notice how every other website does not show your password but rather just a change password field.

No, passwords can only be encrypted on the backend, and if ever done on the frontend, is a huge security flaw.

Gotcha, there's so much credit now everywhere lol.

To answer the web design help, try to use programs like AdobeXD or Figma. Both are free too!

Looks straight out of 2010, but the details and the data are phenominal. Great job on this!

You may be intriuged to port into DigitalOcean and their App platform. The CI/CD as well as horizontal/vertical scalability is amazing for these types of projects - you just won't be able to run a local SQL DB in this environment, but you could just run a Droplet for an additional $5 or an AWS instance for free (for up to 12 months) or GCP (for up to 12 months) I have some credit I can send your way if you wish to experiment with this.

Looking forward to how this project grows!

lol I see comcast