This suggestion applies to backend API development stuff, normal users probably won't see any difference with how the site functions.
I'll explain the issue:
I've been working on an API wrapper for the MC-Market REST interface recently, and noticed that I have to manually specify and check private and shared key types, on the user-end. This is a slight inconvenience to anyone who develops with the API, as they have to check which keys apply to which methods (which involves reading documentation, or doing tests on the requests).
As it stands, the keys currently generated are random encoded bytes, identical in generation for each key type. The new system I'm suggesting is a change in how each of the keys are generated, this can be implemented a few ways.
Implementation Method #1:
Include a unique character or series of characters before each key. I.e. Include "Shared-[key]" and "Private-[key]" before each key type. This way the security benefits of shared/private keys remain the same as they are at current, however they're detectable as the specific key type.
Implementation Method #2:
Differentiate between the length of each key type. I.e. Make private keys have one more base64 encoded byte.
I.e.
Shared: XXXXXXXX-XXXXXXX-XXXXXXXX
Private: XXXXXXXX-XXXXXXX-XXXXXXXX-XXXXXXXX
As a developer, differentiation between public and private keys is important to the overall usability of the API as a whole. Specifying it manually on the developers end is inefficient and overly complex. As well as wasting their precious time reading documentation.
I'm trying to make an API which is as easy to use as possible.
I'll explain the issue:
I've been working on an API wrapper for the MC-Market REST interface recently, and noticed that I have to manually specify and check private and shared key types, on the user-end. This is a slight inconvenience to anyone who develops with the API, as they have to check which keys apply to which methods (which involves reading documentation, or doing tests on the requests).
As it stands, the keys currently generated are random encoded bytes, identical in generation for each key type. The new system I'm suggesting is a change in how each of the keys are generated, this can be implemented a few ways.
Implementation Method #1:
Include a unique character or series of characters before each key. I.e. Include "Shared-[key]" and "Private-[key]" before each key type. This way the security benefits of shared/private keys remain the same as they are at current, however they're detectable as the specific key type.
Implementation Method #2:
Differentiate between the length of each key type. I.e. Make private keys have one more base64 encoded byte.
I.e.
Shared: XXXXXXXX-XXXXXXX-XXXXXXXX
Private: XXXXXXXX-XXXXXXX-XXXXXXXX-XXXXXXXX
As a developer, differentiation between public and private keys is important to the overall usability of the API as a whole. Specifying it manually on the developers end is inefficient and overly complex. As well as wasting their precious time reading documentation.
I'm trying to make an API which is as easy to use as possible.
- Type
- Suggestion
Banned forever. Reason: Scamming (https://builtbybit.com/threads/wizard-chan-v-rockdub-transaction-dispute.704893/)
