Guild Wars 2

Forgive my ignorance, but wouldn’t a first place server running away with a match under the new system just show that it has the best overall coverage, and it’s opponents had been relying on shorter periods of massive population imbalance (e.g. night capping)?

In other words, isn’t that exactly what the new system is supposed to do?

Alpine Borderland is back today! Thanks for that.

With this change, we’ve already tested if spawn trebs work (building trebs from the invulnerability spots around the spawn areas that pour into Northeast and Northwest tower).

They still work. This was a prime exploit that much of the WvWvW community asked to be fixed because it allowed you to constantly treb NE and NW tower (even GARRISON!) with trebs that are very difficult if not impossible in some cases to counter.

It isn’t in the spirit of fair play or sportsmanship that appears to be very important to ANet. With the recent changes to DBL being so quick, I imagine this will be a quick fix (in short, expand the area at which siege can not be thrown to be farther out from spawn then it currently is).

Nah, I don’t really see it that way.

Guild halls run at the expense of players. Considering how much gold you can earn in PvE if you sell things like flaxseeds, sand, ectos, quartz, etc. instead of donating them, I think it’s relatively fair.

Laraley.7695:

baylock.1703:

Revs with shiro glint have close to 0 condi clense btw

Not true. Only if they’re using Retribution and hammer instead of staff. With invokation you got one condi cleanse on legend swap and two on staff (if it decides to work).

Reason for word close

Block and report.

Good luck.

Thank you for these useful endpoints, but I have already a question.
Why there isn’t a property like “mini_set” or “mini_group” that let us know in which set/group a given mini belongs to, expecially for the 3 known mini sets, but also for the halloween minis, the wintersday minis, etc…?

So atm on land I am using Jalis/Ventari stances. Problem is, every time I enter water I have to choose different stances? The problem here is when I leave water the chosen water stances are saved and I have to change for land again – every time.

Will this get a fix? I main an engi and there are separate saved setups there for land and water why not for Rev?

And simply do the balance right as it was supposed to be. Increase energy cost instead of slapping cd on everything. 5sec not a big deal huh? Nobody thought that it is also affected by chill, interrupts and still goes on cd if it fail to teleport? And that cast animation..whats the point of it with slapped cd on it? Can we also get it as ground targeted ability now?

Also. I demand nerf to infiltrators arrow in a form of 5cd. That thing is far more broken than our teleport with casttime which require a target

smitske.4912:

ColinJohanson.2394:

Hey folks,
Fractal Dungeon Leaderboards

Back when we announced all the updates to Fractals for Heart of Thorns – the announce blog also discussed more information coming before HoT about leaderboards for Fractals. Our team of folks working on Fractal dungeons kept iterating on this concept and ultimately we have decided to make it something more involved (re: exciting) than our original plans which will extend our development a bit more. This also means you’ll be able to earn the new fractal backpack precursor, but a few of the components for the new legendary will come with this expanded future fractals feature.

As always, we’ll discuss features once they’re far enough along to share development details on; our Fractal Dungeon team will be back with more updates about this and other plans for Fractal Dungeons in the future: when it’s ready™.

So again a feature pushed back?
I mean you caught it early that you won’t be able to get all legendaries added so you announced only 3 will be added, raids are also already a few weeks in + the new squad system needing a lot more work.
Add to that limited testing of some classes so there will be issues there too.

Perhaps lessons learned for next xpac, wait longer with a release date until you are sure everything can be delivered and you dont end up in the week(s) before release already needing to tell people yea that wont make it. I mean the price for the xpacis already quite steep without taking things out. Sure they might come at a later date but you should really deliver whats promised at the promised time.

No different from the Guild Wars 2 launch. We didn’t have guesting working at launch (or the trading post for that matter). We didn’t have a way to preview on the auction house even.

Truth be told, if you took a poll, I’m pretty sure most players would vote not to wait. Let us get into the game, start earning masteries and get the other stuff out “when it’s ready”. At least I can move out of the holding pattern I’ve been in.

Gunner Morton.8340:

Exactly, nobody wants this yet the devs shove it through our throats. WvW devs seem to have lost all touch with the community. What a sad day it is.

I don’t know.. I have heard plenty of people talk about how pointless most match-ups are on Monday/Tuesday because during Friday evening to Monday morning the gap between the servers have been made too big due to some servers having more people.

Putting reset on a Saturday instead however, would mean that they cut the time in which such difference can happen quite a bit, which might very well lead to match-ups being interesting for a larger part of the week instead of just the first three days.

Time will tell.

Am i the only person that thinks this is normal? No offense but dungeons were by far the best way to earn gold, topping fractals and open world content, and they were easy as kitten compared to fractals.

This is a good thing and can only be good for the game in the long run.

It sounds to me, like they’re giving a less RNG dependant way to acquire some materials, so that you can ACTUALLY grind certain materials if you want, while also trying to make the current worthless materials, not worthless.

The game won’t die from these changes, no matter how drastic they might be, or perceived to be. Don’t be a drama queen.

You have zero idea what grinding is.

Should have the word Copy (or regional equivalent) on it in addition to the symbol.

Before I clicked it I didn’t 100% know it’s function and I’d imagine most users would have the same issue.

http://guilds.gw2w2w.com uses Heroku for hosting, and they just announced today that they’re restricting the free tier to 18 hours per day, which of course means the site’s usefulness is severly diminished

https://blog.heroku.com/archives/2015/5/7/new-dyno-types-public-beta

It looks like I have until July to come up with a new hosting option, but I wanted to try to give the community sites who rely on the service a heads up just in case

They aren’t used as much, but my other sites are at risk of going away too

http://gw2w2w.com/ http://dyes.gw2w2w.com/ http://state.gw2w2w.com/ http://piely.net/

edit (2015-05-31):
I’ve gone ahead and setup a VPS where these projects will live going forward. Still sad about heroku, but I’ll be keeping everything online indefinitely.

The process with OpenAuth2 needs a few clicks including authentication at guildwars2.com. Everybody should be able to succeed this and it is a well known process.

I totaly agree that most ppl won’t ever read and just click-through. Even “warning, ArenaNet will provide your wallet, inventory, .. Information for a third party application” will be ignored by some users.

Increasing the need of IT skill won’t change anything. The skill needed for copy&paste of a “weird looking” API key is independet of the awareness of data security.

Do it like Android or do it like Apple, but never do it like Microsoft ..

- You can tell the user and hope that (s)he reads and understands.
- You can try to control (have some kind if contract/ agreement between ANet and) the third party application.
- But you won’t ever change the user behaviour/ awareness with the need of increased IT skill. They simple won’t use the feature or follow a guide making them even less understand the consequences.

Cheers

Previously we had a link “Click here to login with your Guild Wars 2 account”, now we have “Click here to login to your Guild Wars 2 account, create an API key with the permissions X, Y and Z and then come back here, paste it into that input and in case you did something wrong, do it all over again”.

It is only harder for the user, and every malicious site/app can still link to a fake login screen. I really don’t see how that is supposed to help with phishing. (Except for a few users saving their API keys in a password manager. But those few responsible users would probably want to generate new keys with specific permissions for every app, so they’d need to reauthenticate anyway. And they would probably not fall for phishing in the first place.)

TL;DR of the remaining post: Users are lazy, UX is horrible, doesn’t fix the phishing problem, OAuth was better for everyone.

OAuth was easy to implement (with thousands of tested libraries available for all languages/frameworks) and had great UX for users. API keys are horrible UX-wise. There are just so many scenarios that just don’t work well with API keys.

1.) Most Users will just generate 1 key with full permissions and reuse it for all apps. Once they want to revoke access to their account from one app (and the app doesn’t provide an easy way of doing that in the app/the user doesn’t trust the app to completely remove the key), the users has to generate a new key and reenter it in all other apps he uses. (There could be quite a few “passive” apps he doesn’t often visit and only notices the errors months after).

2.) An app requires the permissions X, Y and Z, but the users forgets that by the time he has logged in to the account page (can take quite some time: 2 factor, email for unknown IP, looking up password in password manager/phone/notebook, …) and only allows access to X and Y. Now the users has to do all that again after entering the API key in the app and getting an error. Maybe he was using private browsing and has to do the login to his account page all over again.

3.) An app requires new permissions after an update, the user now has to create a new key and enter it again, maybe even for multiple apps that required the same permissions before and he was sharing the key for.

4.) You create a new scope for the API, the user now also has to update all apps in case he only uses one key for all apps. And no matter how much we tell the users to generate new keys with specific permissions for each app, most users won’t do that because they are lazy and don’t see the problems of it in the future.

5.) Probably way more than that, those were just a few off the top of my head, but we will run into more problems once we are using them…

OAuth had easy solutions for most of these problems by simply doing most of it behind the scenes, leaving the user no way to mess up. Just clicking one button and the app had all required permissions with an easy way of updating/revoking permissions per app.

I know OAuth has some flaws, but API-Keys for users that don’t understand them are way worse IMHO.

I highly agree with smiley.

I still need to redirect my users to the official site. (Letting them create an API key.) The only relevant thing that changed is that there is no pingpack from official site and the rdirect is not officially included but necessary.

However i don’t think that it was a decision made by the programmer team. I think it’s better than nothing and i can deal with it …

Lawton Campbell.8517:

instead of registering an app and going through the OAuth2 code flow, users simply create and copy-paste an API key into your client.

I doubt that this would make anything better for the users. There are a lot of people out there who hardly know to start a pc and run their game – imagine these to create and use an API key. Despite of it’s flaws, OAuth2 is being used all over the web for way more sensitive applications and most users are used to it. I mean, we’re talking about an API account which reveals little sensitive data, not actual user account info (e.g. real names, address, billing info).
So the only thing you might mitigate is that a user gets their login data scammed (which also happens in so many different ways) at the cost of making the login flow less user friendly. You cannot mitigate PEBCAK.