![]() There is NO need for them to have this information since it's all available through the legitimate Steam API. I used the old version of Galaxy and I was using the beta for a while before it just started requiring this unacceptable password login. It didn't used to require my steam credentials plus it's against Steam TOS to share your password to begin with. Originally posted by skippysonics:I don't care if it's a "safe" platform. The game being sent directly to a steam account means scammers coudln't spam a bunch of alt accounts and then sell keys for free on scam websites. To send you a game directly to your accountĪmplitude used this in their recent community promotion so users could select a single sega megadrie game as a bonus. I suppose for completeness, the OpenID on Steam allows developers, and developers who haev games on steam only, one additional extremely specific abiility Because they can only see literally what every other steam user already sees on your account. Thus even if you log in via OpenID, and GOG has your SteamID, they can't do anything useful with it if your profile is private. ![]() ![]() Your profile has to be public for the system to work In fact if you look at GOG Galaxy and GOG connect, they both have a very specific requirement They know literally nothing about your account other than "Ok I definitley know this user owns the profile with the SteamID of "Ħ) There's functionally no security issue with this as nothing that isn't 100% already public by just looking at your profile page is ever exposed to the 3rd party site. Just to clarify here is how OpenID works on steamĢ) You are redirected to a Steam website to authenticateģ) You authenticate to Steam directly, the 3rd party webstie DOES NOT see your account name or password in any wayĤ) If you are successful steam sends the 3rd party site eh following information ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |