Motivation
While this is perfectly doable without involving nohub ( game server validates password when client connects ), it would be nice to have an extra layer of protection. To that end, nohub should check passwords on lobby/join, and refuse to share the lobby's address if the password doesn't match.
Goals
- Lobbies should have an optional password attached
- During
lobby/get and lobby/list, a password flag should be present if the lobby is password-locked
- On
lobby/join, nohub should reply with a command, asking for password
- On password mismatch, nohub should refuse to share lobby address
Notes
- Does it make sense to hash passwords? Since lobbies are ephemeral
- Probably put it behind a feature switch
- Allow clients to supply password in join command?
- Otherwise might complicate client integration flows
Motivation
While this is perfectly doable without involving nohub ( game server validates password when client connects ), it would be nice to have an extra layer of protection. To that end, nohub should check passwords on
lobby/join, and refuse to share the lobby's address if the password doesn't match.Goals
lobby/getandlobby/list, apasswordflag should be present if the lobby is password-lockedlobby/join, nohub should reply with a command, asking for passwordNotes