Have special access commands

[DavidBakerEffendi]

So to limit the havoc that can be caused on public servers - I suggest to have the following configurables:

• The ability to specify commands which require certain permissions e.g. admin
• A list of which usernames (case-sensitive) or account IDs which are considered a part of a role.

If we do string checks this may not be the most secure but it's definitely a start.

[skiqqy]

I was thinking about this, i suppose the easiest (and most secure for now) is to have a config file, containing full discord names (including the hash discord gives a user, ensuring no one can copy your name) and if this user is in the config file, they can access these special commands.

[deavmi]

Sounds good.

Have an ACL.

Access Control List.

We can use JSON and a parser and roll our own syntax vv ez

On 01 April 2020 13:33:41 SAST, Stephen Cochrane notifications@github.com wrote:

I was thinking about this, i suppose the easiest (and most secure for now) is to have a config file, containing full discord names (including the hash discord gives a user, ensuring no one can copy your name) and if this user is in the config file, they can access these special commands.

-- You are receiving this because you are subscribed to this thread. Reply to this email directly or view it on GitHub: https://github.com/Skippy404/C45DiscordBot/issues/14#issuecomment-607195789

-- Sent from my Android device with K-9 Mail. Please excuse my brevity.

[DavidBakerEffendi]

@deavmi Are you sure you don't want to use something like a YAML config file? See #13