[Phoenix]

Alright, first of all: It was a mistake to respond to such an offer in public. It isn’t really a subject everyone is supposed to know and read about. I’m sorry for that.

Second of all, it was my desicion and I don’t have to explain myself, but in this case I will and hopefully it ends this discussion.

So, UnnDunn:
You are probably right. And it seems to me like you know what you are talking about. Maybe you have professional experience as well? I don’t know. If you don’t, allow me to use an analogy which might sound a bit far fetched but could be compared in a way.
Imagine you encounter a person that asks for your credit card and promises you to help you with your money and eventually make you more wealthy. Would you hand it over? Probably, if not most likely not. Why? Because you don’t know and trust him. And it’s pretty much the same for me here.
I have heard many stories about the old Brawna and how unstable it sometimes was due to hackers or ddos attacks. Or spam. So my initial goal was to make the new Brawna a more secure place. And while I genuinely doubt everyone on the internet has bad intentions, there might be 1% or even 0.1% that does. And this results in me assuming the worst to begin with.
P.E. Sherman might be a honest and trustworthy person, but I don’t know it or him. And after looking at his profile, which looks like it was almost exclusively made only to offer his help here, I have to assume the worst to KEEP the new Brawna a safe place. If he were something which is around for years on Amaz0ns with a lot of content, my responce might have been different. I am usually one to be open to other people and take their advices or at least consider them, but who knows if he actually wanted to help me or if he was just looking for a loophole in my code that enables him to hack, spam or attack it in any way? Or even have me insert a bit of code from him that has a backdoor included? It probably is because I am a newbie that I am so paranoid about this, because more experienced people could trick me into things that arent intended to help but harm me and the site in return.
This is basically the reason why I declined his offer. But please don’t be mistaken about what I’m doing. Maybe you know stackoverflow.com? I have asked various questions there and got help through it. So I’m not opposed to help, I just select my sources carefully.

That is my point, which I hope closes this dicussion and explains my thinking. I don’t mean to offend anyone here, I’m just trying to protect and be (extremely) careful. Thank you!

[Phoenix]

To be totally honest with you. A few monthes ago, I might have gladly accepted it, but since the main page is already up and running, I will probably decline it. No offense but I don’t know you and thus don’t trust you enough to show you my code or anything along those lines. No offense to your person of course!

[Phoenix]

comment feature seems to be not working yet on the brawna2.0 so i’ll make a comment here.

Comments, rating and favorizing stories is only available to registered users. A means to prevent spam.

[Phoenix]

The Beta has started!

Brawna 2.0 Beta

I will add the domain and implement a forum for better communication if people have issues or want to become an Author. The other major thing missing is the Logo which I’m still tinkering on. Those left aside and as long as my beta testers don’t encounter massive unsolvable issues, the site is pretty much finished.

Also, if you want to become a beta tester, message me. Authors prefered (they have to deal with more complicated stuff!).

[Phoenix]

With the development going on quite nicely (implemented rating and commenting system today), I think it’s save to say that the alpha developing is about done and we can head into beta testing in the next week or so.

How I imagine the beta going down:
The website will go live but the registration will be closed. I will create beta accounts, though which I will give out to authors so they can test the functions and give me feedback. Especially in spelling and grammar as I’m not native to english. Once issues are sorted out and fixed, I think we can call the beta done as well and we have a finished site.

If you would like to help me out here and participate in the beta, please message me or respond to this thread. Like I said, authors highly preferred as they have to deal with the more important functions.

[Phoenix]

Hey there. Just a quick question, though I do feel it’s the most important factor: How do you intend to handle password storage and hashing with Brawna 2.0, compared with how it was done so with the original Brawna? I reckon more than a few people would feel the site could go off to a very rocky start if that’s not implemented yet.

I felt like I answered such a question before, but I didn’t. Just felt similar regarding the captcha. So first of all, I have actually no idea how the original handled anything. I haven’t had an account or stories on brawna. But I did attempt to register a couple of times but couldn’t even find a “register”-Button. But back to your question:
The password is encrypted and stored in my database. So even if I as admin would go in the db and look at your password, all I would see is gibberish that looks like this: “$2y$12$P13eCbHogg0amXfzgdpqXeh6awmd4ucI8TTiWp99fRz9lEABcvo/q”
I took a framework for the User Management System called “UserSpice”. The owners wrote this about their security on November 15th 2016:
“We just passed a security audit as of 4.1.8 and everything we do is pretty industry standard. Bcrypt for password encryption, SSL/TLS compatible out of the box, token system to prevent XSS attacks, automated sanitization of all form and database input.”

I hope this answered your question.

[Phoenix]

Just a small update:

Search engine as well as editing and deleting functions are implemented and working. Gonna work on commenting and ratings this week and if everything goes well, I think I can release it in Febuary 2017.

[Phoenix]

No.
What you see is run by a local server on my personal computer. No outside access.
I want to add the mentioned features before this goes live on the Internet. And before that I need a server to host on and a domain. Brawna.org still belongs to lingster and since I don’t seem to be able to reach him, we would have to settle for Brawna.net for example.

[Phoenix]

:laugh:
Good point actually. But let me answer your question in a different way:

As for now, there is noone I know and trust enough to give him/her the status of moderator. So consider this more a “in-case-of” solution. In case I announce a mod, the system is prepared.
The site itself doesn’t have a ticket system, so unless people want to email me for wanting to be upgraded to author, we would need a forum. Or at least a subforum in an excisting one.(wink-wink) I’d be fine with either way as long as it’s performant enough.(WINK WINK)

[Phoenix]

Story Submission 1/2:

Story Submission 2/2:

Reading Page:

Alright, let me leave a few words to the current state of development:

Whats working:

• Registration & Login
• Story Submission
• Browsing & reading submitted stories

Next up:

• Searching stories (Will include search after tags, authors and titles)
• adding voting system and comments for stories
• editing and deleting stories

So far there are 4 User groups. Admin, Mod, Author and User. While I propably don’t have to loose much words about the first two, the other two are rather interesting.
Guests can read and browse, no rating, no commenting available.
Users can read, browse, rate and comment on stories. NO story submission, I’m afraid.
Authors are users with the privledge of submitting stories of course. They also are able to change their submitted stories and delete them if they feel so.
Mods will be able to promote a user to author and (eventually) change and delete stories which violate the rules.

So some of you might question: How do you become a author?
Well as a means to prevent spamming and other trolls on the internet, you will have to ASK a mod or admin for it. Said person will then promote your account and thus give you the privledge.

What you see up there is on my local machine and not available to the public yet, despite it’s ability to already deliver the core functions. But I want to add at least the search system, votes and comments as well as the editing and deleting functions before I will make it public.

Last but not least, I spent some thoughts on new tags to open brawna more for more content. They are not implemented yet as I would like some feedback on them, but if things remain just as silent as they are at the moment, I will just add them how I see fit. Here’s the link to the sheet I wrote and you see below so you can read it a bit better and comment on it. No changing though.

Tag Sheet

Tags WIP:

[Author]

Posts