I feel like you will hit a snag with trying to establish a recovery method because there’s not really a way to do it that doesn’t just allow the “hacker” to be able to recover it. Also I quote “hacker” just because in my experience, most accounts are breached because they entered their account info into phishing websites. The other way for an account to be breached is a breach on Roblox’s end which would be a bigger deal and not as likely to happen as phishing.
If you have any other idea how to address it properly, please say. For now, i will delete that part.
The proper way to go about addressing this is to not make an account system in the first place. You have your Roblox account, which is already a unique identifier – what more do you need?
why would someone put they’re password in sites or just give it to someone else?
Perhaps more use cases would become legitimate if the topic was fully discussed instead of dismissed immediately because its too close and scary.
A hacker themed game where accounts are created and meant to be hacked by others is just one idea. Banking systems. Persistent worlds with houses or chests owned and locked.
You can create systems that allow account creation without personal info. Best methods should be the idea being discussed. If someone fails to implement it properly that is their failing.
Roblox could truly use some more complex interactions for the growing population of mature players.
It’s my last time saying this.
A user may get banned for nothing like many users get. If that happens, they will recover they’re accounts and work again at their games
Phishing websites target people to enter their information through deception. The website may look like the official Roblox website or a website that offers “free” Robux. The user enters their account information and then a bot can swoop into the account and change the password / hijack the account.
Also @Pharyx_Styx , this isn’t in the means of content, he wants to make this to “secure” his game. If it was content related, this would be a totally different story.
@Pharyx_Styx that is a good idea. But OP doesn’t seem to plan to execute it this way.
@TheTurtleMaster_2 that is highly unlikely. Some false positives have come up when uploading images etc for development, but I don’t believe you’ll get terminated. Again – this is too niche of a scenario to even be worth accounting for.
The question is: Can I?
the answer is clearly yes.
Caution is greatly expressed so I suggest the next question be How?
Which is being ignored because of not enough use cases.
I have an idea if you lost your password. You need to put some information like account creation day (Day, Months, Year), a username and something like that.
If someone has a better idea, please tell me
But they already have their username. Their Roblox account one.
Plus usernames and join dates are public information, so easily one could hack.
After arguments over arguments over arguments, my brain hurts so much I will make a poll if I should make this or not.
I got 81 posts in 23 hours, my head hurts
The poll:
- Yes, make one
- No, don’t make one
0 voters
First of all, I’m explaining how a system like this wouldn’t work and how it’s not necessary so I’m not ignoring it because of “no use cases”
@TheTurtleMaster_2 The issue I see is, if someone forgets that information, they are screwed if they also forgot their password. What is the likely hood of someone getting banned for no reason? I feel like this isn’t really a thing, something must of happened. If someone gets their account breached, I feel like most of the time it’s their own fault.
Well yes, my list of uses wasn’t directed at you 
A real length passkey used for the account certainly has issues. I wouldn’t recommend using this for anything that would be hard to regain.
Recovery is really difficult. You could use a pin from main account and have the long key be a back up for if your account dies you can regain from a different one. Probably how i would do it for this use case.
this can help prevent using real pins, etc.
I apologize if I came off a bit aggressive. I agree with you with this. I honestly think this makes user experience suffer without having a lot of benefits from having this system.
I suppose they can type their own password as long as you don’t have a database logging all of their names.
I can’t recommend you make it in the manner you wish, the topic is still very sensitive to the community and it might need to be eased into.
The idea and methods of implementation need to be hammered out, and preferably a nod from Roblox wouldn’t hurt.
2 Likes
You can make one on my opinion, but make sure they can’t put in their own password in the field. Let them choose 3 emoticons as password (or something like that).
They can’t. Collecting passwords of players of your game will be punished by the moderation team. It may be considered as phishing.
Ok so here’s what I see is going to happen. You’re trying to get a yes so you can bend the rules with a scape goat. No matter what as my previous posts as well as others have said this is not allowed there is no point in moving forward at this point unless you wish to be banned or deleted for violating Roblox’s TOS and actual laws that protect children -13 from this like I said COPA. So needless to say at this point it’s on you. We’ve given you plenty of warnings and you’re still trying to find a way around it. It’s not like you’re getting advice from a few randoms. Please don’t do this there is no need when you can just use data store as I brought up before. This is all I have to say to close off my remarks warning you with a final warning before you take a step that I nor no one can control till It’s too late even maybe not then. From John.
Edit: Ok so I saw the solution and read over it one thing that popped out to me is “generating” one. Now this is a problem because younger users might start using this for more than this game and start using it as their everyday password.