Last post about the whole thing. I am just trying to figure out the best way to do a web based client. Ideally I wouldn’t want any of the users data touching my server.
If opening the flash policy file seems too risky I have a few ideas that come from web irc.
Would it be possible to send say a “TMICLIENT appclientid user hostname ip” command before PASS and that would set up all of the variables that would be changed upon connection / the USER command. At least this way we can have an indirect client have more connections than what is possible right now. This could be setup for TMIBOT as well for those large multi channel bots.
Way more work but a very great idea for a direct client. If the flash policy server can “tell” the irc server hey a connection from so and so is coming in check for a TMICLIENT command then if the clientid is a true clientid then allow, if not then disconnect. This along with the connection/msg limits in place, would pretty darn hard to abuse. That way “you” could track specific apps going through a flash socket instead of having it wide open.
Note, I am happy as is with you guys even reading and responding. I know you have a lot on the table as is with getting everything going with ircv3 and everything that it allows the web devs to do.
The simple fact that I can even come here and talk to you guys is amazing.