Re: [OT] Re: Google-like API keys

2006-08-11 Thread Don Arbow
On Aug 11, 2006, at 5:59 AM, Aidas Bendoraitis wrote: > > As far as I undersand, API KEY is not something like ID, it's more > like a password for user's website URL, so it does not necessary have > to be unique. > > For example, when you register an account for GMaps, you get an API > KEY for a s

[OT] Re: Google-like API keys

2006-08-11 Thread Felix Ingram
On 8/11/06, Jyrki Pulliainen <[EMAIL PROTECTED]> wrote: > > On 8/11/06, Felix Ingram <[EMAIL PROTECTED]> wrote: > > > > On 8/10/06, Jyrki Pulliainen <[EMAIL PROTECTED]> wrote: > > > On 8/10/06, Felix Ingram <[EMAIL PROTECTED]> wrote: > > > > On 8/10/06, hernan43 <[EMAIL PROTECTED]> wrote: > > > >

Re: Google-like API keys

2006-08-11 Thread spacedman
Felix Ingram wrote: > Well that's true but 128 bits still gives you 3 x 10^38 possible > strings, so you could probably give everyone on the planet a key an > still not have a collision. Understatement of the week! The human population is currently about 6.5x10^9. You could give every teaspoon

Re: [OT] Re: Google-like API keys

2006-08-11 Thread Aidas Bendoraitis
As far as I undersand, API KEY is not something like ID, it's more like a password for user's website URL, so it does not necessary have to be unique. For example, when you register an account for GMaps, you get an API KEY for a specific URI. Aidas Bendoraitis [aka Archatas] On 8/11/06, Felix I

Re: Google-like API keys

2006-08-11 Thread Jyrki Pulliainen
On 8/11/06, Felix Ingram <[EMAIL PROTECTED]> wrote: > > On 8/10/06, Jyrki Pulliainen <[EMAIL PROTECTED]> wrote: > > On 8/10/06, Felix Ingram <[EMAIL PROTECTED]> wrote: > > > On 8/10/06, hernan43 <[EMAIL PROTECTED]> wrote: > > > > Nowadays(is that a word?) a lot of fancy web services use API keys t

[OT] Re: Google-like API keys

2006-08-11 Thread Felix Ingram
On 8/11/06, Jay Klehr <[EMAIL PROTECTED]> wrote: > Felix Ingram wrote: > > On 8/10/06, Jeremy Dunck <[EMAIL PROTECTED]> wrote: > >> Just username+randomstring is good. > >> SHA better than md5. > >> > > Choice of hashing algorithm means nothing here. The only thing about > > SHA is that you'll get

Re: Google-like API keys

2006-08-11 Thread Jay Klehr
Felix Ingram wrote: > On 8/10/06, Jeremy Dunck <[EMAIL PROTECTED]> wrote: > >> Just username+randomstring is good. >> SHA better than md5. >> > > Choice of hashing algorithm means nothing here. The only thing about > SHA is that you'll get a longer string (160 bit rather than 128). > > If

Re: Google-like API keys

2006-08-10 Thread Felix Ingram
On 8/10/06, Jeremy Dunck <[EMAIL PROTECTED]> wrote: > On 8/10/06, hernan43 <[EMAIL PROTECTED]> wrote: > > If I wanted to make a Django app that utilized a custom authenticator > > and my own "API key" what would be the best way to generate unique API > > keys for my app. Would running a md5/sha su

Re: Google-like API keys

2006-08-10 Thread Felix Ingram
On 8/10/06, Jyrki Pulliainen <[EMAIL PROTECTED]> wrote: > On 8/10/06, Felix Ingram <[EMAIL PROTECTED]> wrote: > > On 8/10/06, hernan43 <[EMAIL PROTECTED]> wrote: > > > Nowadays(is that a word?) a lot of fancy web services use API keys to > > > allow an individual access to a service without requir

Re: Google-like API keys

2006-08-10 Thread Ian Holsman
personally I would DES encrypt their email address.that way you have a contact if something goes wrong.On 11/08/2006, at 3:01 AM, Jyrki Pulliainen wrote:On 8/10/06, Felix Ingram <[EMAIL PROTECTED]> wrote: On 8/10/06, hernan43 <[EMAIL PROTECTED]> wrote: Nowadays(is that a word?) a lot of fancy web s

Re: Google-like API keys

2006-08-10 Thread hernan43
Thanks for all of the help and responses. You have helped give me ideas on how to implement something like this. --Ray --~--~-~--~~~---~--~~ You received this message because you are subscribed to the Google Groups "Django users" group. To post to this group, sen

Re: Google-like API keys

2006-08-10 Thread Jyrki Pulliainen
On 8/10/06, Felix Ingram <[EMAIL PROTECTED]> wrote: > > On 8/10/06, hernan43 <[EMAIL PROTECTED]> wrote: > > > > Nowadays(is that a word?) a lot of fancy web services use API keys to > > allow an individual access to a service without requiring a username > > and password. Google, flickr(I believe)

Re: Google-like API keys

2006-08-10 Thread Felix Ingram
On 8/10/06, hernan43 <[EMAIL PROTECTED]> wrote: > > Nowadays(is that a word?) a lot of fancy web services use API keys to > allow an individual access to a service without requiring a username > and password. Google, flickr(I believe), Akismet, so on and so on. > > If I wanted to make a Django app

Re: Google-like API keys

2006-08-10 Thread Julio Nobrega
On 8/10/06, hernan43 <[EMAIL PROTECTED]> wrote: > > If I wanted to make a Django app that utilized a custom authenticator > and my own "API key" what would be the best way to generate unique API > keys for my app. Anything random and unique will do it. You just need to differentiate between req

Re: Google-like API keys

2006-08-10 Thread Jeremy Dunck
On 8/10/06, hernan43 <[EMAIL PROTECTED]> wrote: > If I wanted to make a Django app that utilized a custom authenticator > and my own "API key" what would be the best way to generate unique API > keys for my app. Would running a md5/sha sum on username + randomstring > + email be safe? Or is that s

Google-like API keys

2006-08-10 Thread hernan43
Nowadays(is that a word?) a lot of fancy web services use API keys to allow an individual access to a service without requiring a username and password. Google, flickr(I believe), Akismet, so on and so on. If I wanted to make a Django app that utilized a custom authenticator and my own "API key"