Jump to content




LuaPay - Global Currency Support

api

49 replies to this topic

#1 Imque

  • Members
  • 134 posts

Posted 04 May 2013 - 01:14 AM

LuaPay API


Hai,

I have finally returned to coding after I have been working hard on my server. I decided to finally release LuaPay since it was sitting on my desktop. I have the first release. The database has been cleaned. This is just a fun idea. Let me start off by saying, currently it isn't 1 account per IP. Its as many. Yes, that means you can generate credits. I do not mind so much but in the future I may fix this and even include an email confirm feature.
computer
The security of LuaPay is really high. All $_POST or $_GET variables are treated for any special characters, this stops MySQL injection and a whole list off other possible hacks. Every password is hashed is SHA-512 meaning that a password that was once ~10 characters is now 64 and completely encoded. Currently, there is no decoder for SHA-512. This makes all passwords 99.99% safe. Well what about the other 00.01%? Well that would be the smallest chance of a SHA-512 decoder to be made and then to get into the database. Thats not going to happen....


Ok heres the good stuff :)

You can grab the API by simply pasting the following into your computer.
pastebin get fj1iQQdH luapay

http://pastebin.com/fj1iQQdH

The HTTP API needs to be enabled for the use of this API.

API Functions
Spoiler


#2 D3matt

  • Members
  • 830 posts

Posted 04 May 2013 - 01:42 AM

A "universal" currency can never work because no sane person is going to take money from another server.

#3 Imque

  • Members
  • 134 posts

Posted 04 May 2013 - 01:49 AM

I am not sure what you mean. The idea uses a MySQL database and PHP scripts. All servers have to do is enable HTTP.

#4 Mads

  • Members
  • 604 posts
  • LocationCopenhagen, Denmark

Posted 04 May 2013 - 02:01 AM

You expect people to pay money in order to get some credits that they can use for... nothing?

#5 Imque

  • Members
  • 134 posts

Posted 04 May 2013 - 02:25 AM

No, I will not expect money. It virtual money. Everyone now gets 10 credits. You need to sell them to get moar!

#6 tonkku107

  • Members
  • 140 posts
  • LocationFinland

Posted 04 May 2013 - 02:37 AM

Are you talking about computercraft in-game shop with game items

#7 Imque

  • Members
  • 134 posts

Posted 04 May 2013 - 02:48 AM

No, just a global system where a program can allow purchases though it. Like PayPal.

#8 H4X0RZ

  • Members
  • 1,315 posts
  • LocationGermany

Posted 04 May 2013 - 03:11 AM

I like your Idea!

I want to help, I send you a PM :D

but I do't understand you right:
You get 10 coins at the start. And sell code/items/blocks for more or?



#9 tonkku107

  • Members
  • 140 posts
  • LocationFinland

Posted 04 May 2013 - 03:26 AM

View PostImque, on 04 May 2013 - 02:48 AM, said:

No, just a global system where a program can allow purchases though it. Like PayPal.
What do they buy?

#10 H4X0RZ

  • Members
  • 1,315 posts
  • LocationGermany

Posted 04 May 2013 - 03:33 AM

View Posttonkku107, on 04 May 2013 - 03:26 AM, said:

View PostImque, on 04 May 2013 - 02:48 AM, said:

No, just a global system where a program can allow purchases though it. Like PayPal.
What do they buy?

I understand it so:

This system is a global purchasing method but you can't purchase anyrhing in it.
You have to go into an Appstore that use LuaPay. There you can buy/sell things :D

#11 tonkku107

  • Members
  • 140 posts
  • LocationFinland

Posted 04 May 2013 - 03:45 AM

View PostFreack100, on 04 May 2013 - 03:33 AM, said:

View Posttonkku107, on 04 May 2013 - 03:26 AM, said:

View PostImque, on 04 May 2013 - 02:48 AM, said:

No, just a global system where a program can allow purchases though it. Like PayPal.
What do they buy?

I understand it so:

This system is a global purchasing method but you can't purchase anyrhing in it.
You have to go into an Appstore that use LuaPay. There you can buy/sell things :D
LuaStore B)

#12 Cruor

  • Members
  • 413 posts
  • LocationNorway

Posted 04 May 2013 - 04:26 AM

Locked as requested.

#13 Imque

  • Members
  • 134 posts

Posted 04 May 2013 - 10:21 PM

Cleared Post.

#14 Shinjiteru

  • Members
  • 33 posts

Posted 04 May 2013 - 10:36 PM

It's foolish to post how you encrypt your passwords,
$password = hash('sha512', $password); // Hashing
$password = hash('sha256', $password);
$password = hash('md5', $password);
$password = hash('sha512', $password);

Now people know how to decrypt the hashes presented to them, leaving the users more vulnerable. :/

#15 GravityScore

  • Members
  • 796 posts
  • LocationLand of Meh

Posted 04 May 2013 - 11:00 PM

Combining hash functions is bad.

This is because your resulting hash is only as strong as the weakest hash in the sequence. This means that if you sha256 an md5 hash, it's not going to make the resulting hash any stronger than the md5 hash.

I'll explain why (this is just an example, it doesn't really happen with this particular case):
Say you hash("md5", "oranges") and it comes out with the hash "ab12fe", and say you hash("md5", "apples") and it also comes out as "ab12fe" (this is a likely possibility, there are a large amount of collisions in md5, which is why you really shouldn't use it). It doesn't matter what you hash it with next (be it sha512 or sha256), the resulting hashes will just come out the same for both apples and oranges, because the md5 hash for both apples and oranges was the same.

The bottom line is, don't hash with multiple hashes. Just use 1 type, and you could hash it multiple times.

#16 Shnupbups

  • Members
  • 596 posts
  • LocationThat place over there. Y'know. The one where I am.

Posted 04 May 2013 - 11:33 PM

The website straight away gives a luapay_invalid_option error.

And also, yeah you need to change the hashes.

#17 Imque

  • Members
  • 134 posts

Posted 04 May 2013 - 11:51 PM

View PostShnupbups100, on 04 May 2013 - 11:33 PM, said:

The website straight away gives a luapay_invalid_option error.

And also, yeah you need to change the hashes.

Yes because the website is designed that you use the post method. Not just access it.

#18 D3matt

  • Members
  • 830 posts

Posted 05 May 2013 - 12:20 AM

I still don't get the point of this...

#19 Mads

  • Members
  • 604 posts
  • LocationCopenhagen, Denmark

Posted 05 May 2013 - 12:55 AM

Why not ask a moderator to unlock the old thread?

#20 Imque

  • Members
  • 134 posts

Posted 05 May 2013 - 01:35 AM

The old thread got out of hand in my view.





1 user(s) are reading this topic

0 members, 1 guests, 0 anonymous users