EVE Forums

 
Capture Portrait
  • Date of Birth: 2011-06-26 15:46
  • First Forum Visit: 2011-09-06 21:11
  • Number of Posts: 7,540
  • Bounty: 0 ISK
  • Likes Received: 6,395

Steve Ronuken

Security Status 4.9
  • Fuzzwork Enterprises Member since
  • Vote Steve Ronuken for CSM Member since

Last 20 Posts

  • Time for the CSM to be Old Yellered in Council of Stellar Management

    One thing about requiring _all_ discussion to be public (between the CSM and the rest of the player base). It has a chilling effect on what some people will bring up.

    It's also naive to think it could happen. Someone sends me a message. How are you to know if I'm going to post it or not? Not all things are things which it's worth making public.

    Not all the work is done in private. You address me in the forums, I'll answer in the forums (assuming I see it. There can be a lot of traffic to keep track of. I do try to keep on top of a number of the sections.) You address me on reddit, I'll answer there. I don't demand that everyone uses a single method to contact me. I make myself available on many.

  • Add names to Corp Market Orders in EVE Technology and Research Center

    I highly recommend, for this kind of usage, loading up invTypes somewhere.Sure, you'll need to update it once per release, but it'll massively cut down on the workload.

    https://www.fuzzwork.co.uk/dump/

    Mysql is my normal choice. (Postgres is better, but mysql is more common)

  • [February] Insurance in Upwell Structures & more from Team Five 0 in EVE Technology and Research Center

    Henry Plantgenet wrote:
    Those annoying session change timers that got added everywhere....
    Are they intended (like in citadels when switching ships and trying to undock etc.)
    Or were they an unintended side effect that you've decided to keep?



    Intended. Not having them was a bug (which caused some issues. Like changing ships, undocking, and being beside the ship you'd boarded, in a pod)

    They're to make sure everything syncs up right.

  • Dev blog: All you need to know about the CSM 12 elections in EVE Information Center

    In case anyone's wondering about people from CSM 11, we're collectively waiting until after the summit before any of us put in our announcements.

    (Well, other than one person)

  • [February] Insurance in Upwell Structures & more from Team Five 0 in EVE Technology and Research Center

    Earl 'Grey wrote:
    Steve Ronuken wrote:
    \o/

    Thanks for getting onto these Smile Means we can stop complaining about them Blink


    You've got a bit of brown on your nose there...

    Insurance in Citadels is a very welcome change but how about the other issues? Excessive lag, desyncs, rubber banding and the dreadful 10 second session change timer in citadels?



    Eh, considering the CSM has been bugging CCP about some of these changes on a reasonably regular basis, saying thanks isn't a bad thing.

  • [February] Insurance in Upwell Structures & more from Team Five 0 in EVE Technology and Research Center

    \o/

    Thanks for getting onto these Smile Means we can stop complaining about them Blink

  • XML API returning incomplete blueprint list. in EVE Technology and Research Center

    Whitney Aubaris wrote:
    I have noticed that it seems to only show Blueprints that are being used at the time. Can anyone confirm this?



    That matches what I see, and have bug reported. (and have waved at the appropriate devs until they told me to stop ;) )

  • How Does The Eve Launcher Download Patches? in EVE Communication Center

    For code patches, it's as they're released.

    For graphics, if you have SiSi/Singularity selected as a server to keep up with (as well as Tranquility, which is the main one) you'll get the updates as they hit the test server. so on patch day you won't have a lot to pick up.

    It's from a server.

  • Swagger authentication. in EVE Technology and Research Center

    The scopes required for an ESI endpoint are listed on the page which described them (and in the swagger spec file). Look for the exclamation mark in a red or green circle. (red is you haven't requested it for that session, green if you have)

  • Facebook is using my in game information. in EVE Communication Center

    ^^
    Poe's law, or someone who's actually nuts. decide for yourself

  • ESI. Mass market orders. in EVE Technology and Research Center

    You only need one call per item. If you don't pass the order_type, or pass it as 'all', you'll get all the orders for it (in the region)

    What I'd normally suggest, when you're getting more than 20 odd items, is that you get the entire region and just process it all. Little more code required, substantially fewer queries. Just leave out the type_id parameter. Then call it with an incrementing pages parameter until you get no data back.

    It's how I do things on https://market.fuzzwork.co.uk/ (well, I'm using crest, but that's because I wrote it before ESI came out, and I've not done the basic rework to shift it over to ESI. Need to mark out an hour or so for that.)

    _most_ sites only work with aggregate data on their APIs, which is substantially lower volume, and is often cached for longer periods than ESI/CREST

  • Facebook is using my in game information. in EVE Communication Center

    Tbh, I would be _really_ surprised if the link came via CCP.

    It's probably friend of friend of friend style stuff.

    I mean, I've been linked to people I've worked with in the past. Not at the same company, and I've never talked to him outside of phonecalls and corporate email, but he's still popped up in my 'do you know' list. No mutual friends, but still linked.

    There's also possibilities like you both looked at something on Facebook, coming from the same source, on a number of occasions. They're very very good at drawing this kind of conclusion.

  • CCP - Do you feel bad when a star citizen video 3 days old.... in EVE Communication Center

    Shae Tadaruwa wrote:
    You mad bro?

    Definitely mad

  • XML API (angry thoughts) in EVE Technology and Research Center

    https://community.eveonline.com/news/dev-blogs/introducing-esi/
    https://developers.eveonline.com/blog/article/introducing-the-esi-api

  • XML API (angry thoughts) in EVE Technology and Research Center

    Jone Sad wrote:
    Steve Ronuken wrote:
    Jone Sad wrote:
    Steve Ronuken wrote:
    ...


    Man you linking all the time ESI latest... But SIMPLE QUESTION, that any developer look in this "manual" - WHAT IS THE BASE URL? Where is manual? LOL Only description of simple queries. STOP linking that uncomplete site... It's annoying.

    Link it when it will be totally ready. Stop rly...

    And you linking your code... =\
    BTW fix first your site. Half of data\code you presented doesn't work or old (calculations).



    There is no base URL. This isn't CREST which you can walk.

    If you're asking 'what is the URL to make requests', you've obviously never actually used the examples on site. Which give you it.

    An example:

    Go to the ESI site. (That's https://esi.tech.ccp.is/latest/ if you've forgotten)

    Pick an API to look at. Lets pick the assets one. So hit show/hide, then click on "Get character assets"

    That little exclamation mark in a red circle lets you know you need to have esi-read-assets.v1 as your scope.

    So hit the authorize link at the top, select that scope, then scroll down and click authorize.

    Go through that auth flow. and it'll return you to the esi site.

    Fill in a character ID (your own, as your token is only allowed to read your assets) then click 'try it out'


    You'll see something like

    curl -i --compressed -X GET --header 'Accept: application/json' --header 'Authorization: Bearer y-CKI1oXOlYF5jjYc1o8-EEQL4OWZeGc_axRU1YdeL32s0MWNzWgT-Jmi1XwULuYLcaqCNpHoDS_T1rwIGTTbw2' 'https://esi.tech.ccp.is/latest/characters/90926985/assets/?datasource=tranquility'


    followed by a listing of your assets.





    Okay. But where it's written mate? Only by this post I learn that api-url is relative. And what about others? They should search this post to understand that? That's I'm talking about! "API described somewhere in a forum... Search and you will find... Maybe..." - is a bad manual. =\


    Edit: I've taken out an insult that I shouldn't have put in.

    To expand:

    Swagger is a specification for APIs. http://swagger.io/ for details

    The swagger file, which can be used to automagically generate code, is available at the top of the page. That's the json link.

    The link for the 'latest' version of the API is at the top of the page, "URL"

  • XML API (angry thoughts) in EVE Technology and Research Center

    Jone Sad wrote:
    Steve Ronuken wrote:
    ...


    Man you linking all the time ESI latest... But SIMPLE QUESTION, that any developer look in this "manual" - WHAT IS THE BASE URL? Where is manual? LOL Only description of simple queries. STOP linking that uncomplete site... It's annoying.

    Link it when it will be totally ready. Stop rly...

    And you linking your code... =\
    BTW fix first your site. Half of data\code you presented doesn't work or old (calculations).



    There is no base URL. This isn't CREST which you can walk.

    If you're asking 'what is the URL to make requests', you've obviously never actually used the examples on site. Which give you it.

    An example:

    Go to the ESI site. (That's https://esi.tech.ccp.is/latest/ if you've forgotten)

    Pick an API to look at. Lets pick the assets one. So hit show/hide, then click on "Get character assets"

    That little exclamation mark in a red circle lets you know you need to have esi-read-assets.v1 as your scope.

    So hit the authorize link at the top, select that scope, then scroll down and click authorize.

    Go through that auth flow. and it'll return you to the esi site.

    Fill in a character ID (your own, as your token is only allowed to read your assets) then click 'try it out'


    You'll see something like

    curl -i --compressed -X GET --header 'Accept: application/json' --header 'Authorization: Bearer y-CKI1oXOlYF5jjYc1o8-EEQL4OWZeGc_axRU1YdeL32s0MWNzWgT-Jmi1XwULuYLcaqCNpHoDS_T1rwIGTTbw2' 'https://esi.tech.ccp.is/latest/characters/90926985/assets/?datasource=tranquility'


    followed by a listing of your assets.


    Now onto the rest of what you said:


    Which bits of my site are you complaining about? Things on github, or on my actual site?

    And as for linking the site when it's complete, I suspect you'll never be happy. Welcome to the real world.

  • XML API (angry thoughts) in EVE Technology and Research Center

    Farmer Johnson's Daughter wrote:
    Steve Ronuken wrote:



    https://github.com/fuzzysteve/fleetTracker

    is a crest example.

    (rename secret.php.example to secret.php, and give it the details from your app on the dev site)

    ESI is pretty much the same as crest from an auth perspective. You hand the auth header in the same way.


    Auth is OAUTH2. An industry standard.

    https://esi.tech.ccp.is/latest/ has all the endpoints, and has the option to do lookups with it, for example.


    Thanks steve but this is what im talking about, you showed me a crest example, not a esi example, then referenced the esi latest again which is useless as it doesn't show me how to actually use it with php from my local testing environment.

    Example: how do i, from scratch, simply get the wallet of my own character.

    for example, i have this so far, and that's it, where the hell do i start lol. I know its a lot to ask but so frustrating without a clear example for less experienced devs. I can work laravel pretty well but cant figure out this sso crap to save my life

    "$authorization = "Authorization: Bearer how the hell do i get this, from where, what process";
    $ch = curl_init("https://esi.tech.ccp.is/latest/characters/{character_id}/wallets//?datasource=tranquility");
    curl_setopt($ch, CURLOPT_HTTPHEADER, array(
    $authorization,
    ));
    // curl_setopt($ch, CURLOPT_CUSTOMREQUEST, "POST");
    curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
    // curl_setopt($ch, CURLOPT_POSTFIELDS,$authorization);
    // curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
    // curl_setopt($ch, CURLOPT_POST,false);
    $result = curl_exec($ch);
    //dd($result);
    curl_close($ch);
    return $result;"




    hopefully someone will whip up a CLEAR laravel package :)



    Laravel isn't a framework I've used. And I'm not planning on learning it Blink

    However, you get the authorization header in exactly the same way as you do with CREST. You just request ESI scopes, rather than CREST ones. Nothing has changed, with regards to the SSO.



    Some links which _may_ be useful:
    http://stackoverflow.com/questions/29441954/laravel-oauth2-client-authorizing-and-redirecting-with-guzzle


    (Things can be a touch confusing, because there are packages to make laravel a oauth server, as well as a client. You just need it to be a client)



    Short explanation of OAUTH 2:

    The user clicks on login. This is normally a link directly to the login server, in this case, at CCP. This link contains your client ID, where to send the user back to (CCP have set this so it _must_ match what you set in the developers site), the list of scopes that you want (space seperated), and a state id. (The state isn't needed. but is handy if you want to make sure a session exists. Or want to store where to send the user back to, or something along those lines)

    Once the user has authenticated, and approved scopes, they're sent back to your site, using the url which you passed (for CCP's, this must be what's in their database) along with a token.

    The site must then take that token, and send it to CCP along with their clientid and secret ( base 64 encoded).

    CCP then send (as a response to the site. This happens entirely server side, between the 2 servers) an access token, and a refresh token. (if no scopes were requested, it's just the access token) There's also a character owner hash (this is non standard) which lets you know if a character is moved between accounts. If it changes for a character, it's changed account.

    You now have your access token, and your refresh token.



    You can see the communication between the sites on https://github.com/fuzzysteve/fleetTracker/blob/master/auth.php

    This is the same regardless of if you want to use CREST or ESI.


    In my example, the login is handled by a redirect, rather than a direct link. This is just so I can set up a few session variables first. https://github.com/fuzzysteve/fleetTracker/blob/master/login.php


    The access token is only valid for 20 minutes. Once that expires, the token is useless.

    If you have a refresh token, you can use this to get a new access token at will. That's what the refresh_token() function does in the following file.

    https://github.com/fuzzysteve/fleetTracker/blob/master/auth_functions.php#L9

  • XML API returning incomplete blueprint list. in EVE Technology and Research Center

    Whitney Aubaris wrote:
    Savaal Aideron wrote:
    other people in my corporation are having the same issue.
    it seems blueprints in citadels are being (for the most part) ignored.

    i'll file a bug report, if that makes any sense for an API issue


    Any reply from the CCP on this?



    It's a known issue. I don't have anything more than that to share.

  • XML API (angry thoughts) in EVE Technology and Research Center

    Farmer Johnson's Daughter wrote:
    One of the things that drives me nuts is this sso crap. Everyone points to the docs with endpoints and says "its all there" , you know...except and actual working friggen example for php.

    A full, complete example to check any authenticated endpoint with this sso garbage. Laravel support?. Anything. One simple example. Show me the light :)

    Phealng is great but how long will crest be around? 16months?



    https://github.com/fuzzysteve/fleetTracker

    is a crest example.

    (rename secret.php.example to secret.php, and give it the details from your app on the dev site)

    ESI is pretty much the same as crest from an auth perspective. You hand the auth header in the same way.


    Auth is OAUTH2. An industry standard.

    https://esi.tech.ccp.is/latest/ has all the endpoints, and has the option to do lookups with it, for example.

  • CREST connection reset in EVE Technology and Research Center

    Pete Butcher wrote:
    Steve Ronuken wrote:
    Has anyone submitted a bug report? I'll wave it at the relevant people.



    Yup.



    throw me the bug report number, and I'll wave it.

Forum Signature

Woo! CSM XI!

Fuzzwork Enterprises

Twitter: @fuzzysteve on Twitter