Submit templates for repl.it/templates here.

← Back to all posts
Serverless Repl Auth
h
AdCharity (1322)

This project is in no form endorsed or created by Repl.it. I am not responsible for any: leaks of data, misuse of data, etc.

If it doesn't fit or disregards the repl terms of service, please take this down.

FYI

  • does not work gmail/other auth versions on repl - I had to make a new testing account for this to work :(

INTRODUCING REPL AUTH!!! (Serverless)

Ok I cheated with cors anywhere but whatever.
Includes:

  • custom repl-like styles ripped off from the login
  • not so-secure login (depending on how this is used, it could potentially be abused)
  • no servers except for repl itself
  • somewhat easy integration

This is a simple template that should allow you to have really easy auth without a server.

Comments
hotnewtop
HackermonDev (2020)

I don't think this is allowed by the terms

HackermonDev (2020)

@PDanielY Well you can get repl.it's permission

AdCharity (1322)

@PDanielY
I feel that this application does not impact repl in any negative way, and have made it clear that this project is in no form supported by Repl.it. In addition, I have distributing through the service offered by Repl.it, which seems to fall under "permitted by applicable law".
I talked to turbio and he said it was interesting and probably fine since all it does is make a post request to /login.

HackermonDev (2020)

@AdCharity, In my opinion, it does impact repl.it. You're telling people to give their account information to a website that doesn't even have a secure connection.

AdCharity (1322)

@PDanielY it piggybacks off of repl.it's SSL meaning it does have a secure connection. Yes, some people could abuse and store information, but that's why I claimed it was 100% serverless. Did you know that Doyla.me was built on this form of auth?

HackermonDev (2020)

@AdCharity When doyla.me was made there was no repl auth so the only option was to do this and then repl auth was built. The reason repl auth was built is to stop people from entering their information on other websites

Coder100 (18167)

pog
pog
pog
thankfully i didn't use a 3rd party login.
Whats my password?

AdCharity (1322)

@Coder100 dude I literally said serverless I don't store anything

Coder100 (18167)

lmao idc tell me my password now lol @AdCharity

AdCharity (1322)

@Coder100 -_- I don't know your password

Coder100 (18167)

oof you're supposed to be like google and steal it bad boi lmao @AdCharity

Coder100 (18167)

console.log(username, password) XD @AdCharity

AdCharity (1322)

@Coder100 I wouldn't see it anyways. If you look at the code you'll find I only reference them by the inputs, not as a username/password basis.

AdCharity (1322)

@Coder100 yes it's insecure if others abuse it, but the point is I'm not

lynnlo (51)

@Coder100
Most* passwords are encrypted using sha and salt.

AdCharity (1322)

@tharlynnhtetong no the point is I'm a third party and I could just take your password directly

StringentDev (229)

actually no due to insecurity

StringentDev (229)

i'll use this on my cloud service app.