If the server script knows the acceptable date from the database, it can
just ignore early requests.
Is the problem that Kevin doesn't want the client swf to hold the date
for fear of it being known?
If so, a key could be sent instead that relates to the download date and
stored in the database. Each time the swf runs it sends the key and the
server checks that against the date.
John
On 14/03/2011 12:19, Developer wrote:
No, I get it. The client and data transfer are insecure.
The hidden information (or the trigger to show the information) should
come from the server not from the client.
Don
On 3/14/2011 3:54 AM, Henrik Andersson wrote:
Developer skriver:
Wouldn't it also be helpful to have the server-side script verify
(validate) the data the swf is sending back up?
That way if someone manually triggered the date, the server would not
accept it because it doesn't match it's system date.
Don.
You have a point. The server can reject anything that the client sends.
But at the same time you also fail to get it. The client doesn't have
to care for what the server does. So what if the server doesn't like
the date? The client has no obligation to care about that.
_______________________________________________
Flashcoders mailing list
[email protected]
http://chattyfig.figleaf.com/mailman/listinfo/flashcoders
_______________________________________________
Flashcoders mailing list
[email protected]
http://chattyfig.figleaf.com/mailman/listinfo/flashcoders
_______________________________________________
Flashcoders mailing list
[email protected]
http://chattyfig.figleaf.com/mailman/listinfo/flashcoders
