lennaert's Recent Forum Activity

  • it's fine if u use https

    How come ?

    Whether https or http is used, the user instantiating the app could still be able to see the involved URL and the post parameters ...

  • Yup, that happens.

    A thing to consider is that the dev tool is used by the browser, does not exist in an app form.

    Several things to consider regarding the POST action:

    You can and should obfuscate the variable names in the links (POSTs), or at least use things not overly obvious (userid, password, etc).

    And perhaps add some extra values, also obfuscated to act as decoys/fakes.

    You can encrypt and or encode the variable post values within your code which the server knows how its encrypted and decrypts it on received.

    You can add double checks like a MD5 hash between 2 posted values, or even from 2 combined values (1 from a previous post) and check the hash server side again.

    You can add several methods of increasing values that do not correspond with numbers.

    A returned value double check, where the received value is send back to the app and double checked.

    A check server side that tracks 'irregular' values versus expected values. (i.e. normally only 5 points gets added, suddenly >100 gets added)

    And a lot more options to make it harder to manipulate what is send and what is accepted upon reception.

    It will never be 100% safe, but in reality, that goes for most information online, it's generally a matter of how much effort was poured into protection, and how much time and energy an abuser is willing to spent to make hos hack happen ....

  • (it's weird but i've never had access to the "Edit Post" feature for Forum posts, no matter what device (PC/Mac/Phone) and what browser (Chrome/Edge/Firefox) I use, no matter if I'm in incognito mode, if I disable all chrome extensions or not. So pardon me if there are a lot of typos as I can't edit and preview my forum posts)

    I think that's due to you needing to post more, it's a restriction for "new" users lol

    Just 9 posts, perhaps 1 more :P

  • I am not seeing many of these topics, so I'll just throw one in here, to hopefully get some more eyes on the whole suggestions platform and get more people to vote.

    The following are mostly from a personal stance:

    I made 2 smaller suggestions on: construct3-21h2.ideas.aha.io

    1.

    Resize all animations, for the purpose of easily updating the size of all the animations in a sprite, in stead of just 1 of the animations:

    construct3-21h2.ideas.aha.io/ideas/C321H2-I-346

    2.

    Export to FTP / FTPS for the purpose of quicker and easier testing for those with their own upload location because large size games can take a lot of time to upload through the remote previewer, plus some other advantages:

    construct3-21h2.ideas.aha.io/ideas/C321H2-I-345

    And this is one of personal interest, isometric tiles, posted by a guest:

    Isometric is a standard amongst 2d games, and having a decent isometric system and logic would be really nice, kinda weird it is not been build before really. And yes, we can fake isometric .... but it is definitely not the same.

    construct3-21h2.ideas.aha.io/ideas/C321H2-I-78

  • Try Construct 3

    Develop games in your browser. Powerful, performant & highly capable.

    Try Now Construct 3 users don't see these ads
  • I also have unbound scrolling turned off.

    I thought this had to be turned on for scrolling near the sides of layouts.

    From the manual:

    To scroll, the size of the layout must be bigger than the project's viewport size, or the layout's Unbounded scrolling property must be enabled. Otherwise there is nowhere to scroll to and scrolling will have no effect.

  • Hmm, would storing the session ID locally really be that bad security wise? This will all be in app so URLs wont be visible to the user.

    Security is a fickle thing, over time I have come to look at it with : "What's there to steal, or take"

    If you have a simple game with no payment or purchase options, then, what's the worst they could do with the information ?

    Personally, if I were to retrieve information from a database, I wouldn't even use the session ID, and simply create a log in system over PHP and Ajax. This also isn't as secure as I'd like, but it's more standard, and gives me more options to somewhat secure my information.

  • From a construct perspective, no.

    There are options to get it working, but you'll have to resort to storing an existing session in a database on the php side, and in the CS3 app, and later use the stored ID from CS3 to contact the database, and see if it exists, and has extra session variables stored.

    Not the most ideal solution.

    I have similar problems testing a multiplayer setup :\ need to export and upload to have any sense of rapid testing effect.

    Ashley can we get an option to export HTML version to a FTP location ?

  • Just slap an ID on the inputtext, and add a css file ....

    You can style it with all the css possibilities that are out there, from animating to to fade effects, gradient coloring etc etc etc

  • Your welcome, sorry for the hassle, its rather early here ^_^

  • Haha, no worries

  • Make the audio checks Sub events of the LOS checks and change the cPlayer.UID to Drone.UID

    for each

    - LOS Check

    - sub event to LOS check - audio not playing check and action play "Drone" & Drone.UID

    - else (this needs to be below the the 1st LOS check, same level)

    - sub event to Else - Does not have LOS

    - sub event to Does not have LOS - audio playing check and action stop "Drone" & Drone.UID

    Hope thats clear, otherwise I'll make an example ^_^

  • Sorry, I misread one of your events, the cPlayer is just 1 ID I assume, so base the IDs on the drones.

    Perhaps, to make it more effective, loop it too

    for each drone

    - drone has LOS to cPlayer

    -- not playing "Drone" & drone.UID -> action play audio "Drone" & drone.UID

    - else

    - drone does not have LOS to cPlayer -> action stop tag "Drone" & drone.UID

lennaert's avatar

lennaert

Early Adopter

Member since 8 Oct, 2013

Twitter
lennaert has 13 followers

Connect with lennaert

Trophy Case

  • 11-Year Club
  • Forum Contributor Made 100 posts in the forums
  • Forum Patron Made 500 posts in the forums
  • Forum Hero Made 1,000 posts in the forums
  • x5
    Popular Game One of your games has over 1,000 players
  • Famous Game One of your games has over 10,000 players
  • x2
    Coach One of your tutorials has over 1,000 readers
  • Educator One of your tutorials has over 10,000 readers
  • Regular Visitor Visited Construct.net 7 days in a row
  • Steady Visitor Visited Construct.net 30 days in a row
  • Enduring Visitor Visited Construct.net 90 days in a row
  • RTFM Read the fabulous manual
  • x2
    Great Comment One of your comments gets 3 upvotes
  • Delicious Comment One of your comments gets 10 upvotes
  • Email Verified

Progress

25/44
How to earn trophies