Closed. This question needs to be more focused. It is not currently accepting answers.
Want to improve this question? Update the question so it focuses on one problem only by editing this post.
Closed 1 year ago.
Improve this question
I am creating an application in the MERN technology stack. This project is a gallery of graphics. Some of the graphics are paid and some are free. I am wondering which way to store these paid images will be the most secure ? I put the free graphics in a static uploads folder stored on the server where the application is running. The path to the file is stored in the database.
Easiest way to do it is to have the paid images in some storage that is not publicly accessible. Then you put some form of a api/proxy in front of it that can verify users. If user is verified you show the picture, if not you show something else.
Related
Closed. This question needs details or clarity. It is not currently accepting answers.
Want to improve this question? Add details and clarify the problem by editing this post.
Closed last year.
Improve this question
Anyone tell me that where the user data (like photos, videos, posts) is saved?
Because I don't think that they goes in SQL or any similar database.
Typically you will use a service like AWS S3 for media (photos, videos, files, etc.). Blog posts (just text) will be in the database in a text type. Media is usually renamed to a unique value and then referenced in the database.
However if this is a personal project not meant for public use you could store media locally in the filesystem (NodeJS, PHP)
Closed. This question needs to be more focused. It is not currently accepting answers.
Want to improve this question? Update the question so it focuses on one problem only by editing this post.
Closed 2 years ago.
Improve this question
I am developing a VR game in unity. I want the players to make decisions in a scene and once they have completed the scene, their decisions would be sent to a website where the data is converted into a graph. The idea is that every time they run and complete a scene, the data is automatically sent as a new session under their unique ID on the website side. This to be able to see if decisions improve with the user over time. Is this possible and if so, where do I need to look to make this happen. I am new to this so thank you in advance!
You should consider reading about REST or SOAP
https://en.wikipedia.org/wiki/Representational_state_transfer
https://www.restapitutorial.com/
https://www.smashingmagazine.com/2018/01/understanding-using-rest-api/
https://smartbear.com/blog/test-and-monitor/soap-vs-rest-whats-the-difference/
https://raygun.com/blog/soap-vs-rest-vs-json/
https://en.wikipedia.org/wiki/SOAP
https://www.w3schools.com/xml/xml_soap.asp
https://searchapparchitecture.techtarget.com/definition/SOAP-Simple-Object-Access-Protocol
Basically you send messages from your app to a web server and viceversa... each message is an order to the server requesting data or the modification of existing data, this also needs security and OAuth to prevent hacking
https://en.wikipedia.org/wiki/OAuth
Closed. This question needs to be more focused. It is not currently accepting answers.
Want to improve this question? Update the question so it focuses on one problem only by editing this post.
Closed 4 years ago.
Improve this question
How to secure firebase code,I mean can anybody edit its code through google chrome console like view items or other things or there is any thing to prevent it?I am fairly new and only now the basics.
Your firebase code is sitting with the rest of your website code. I do not believe there is any major issue unless you are using a client side rendered framework for your web application and have left your configuration keys for firebase in the frontend and on top of that your firebase access rules are set to public. Setting the proper firebase rules - you may want to read this: https://firebase.google.com/docs/database/security/
is most important. This applies to all Storage, Database and Authentication.
Closed. This question needs details or clarity. It is not currently accepting answers.
Want to improve this question? Add details and clarify the problem by editing this post.
Closed 6 years ago.
Improve this question
The site stores personal information on the local machine. This sensitive data contains personal details like their names, their date of birth, their identity card, etc. This data can be access later by a third party either at the machine through the browser when the user visits their site. How to prevent this case?
Screenshots
Attached
If you own the site, you can easily clear localStorage as a whole or in pieces. Run this code after you're through using the local data.
localStorage.clear();
You can remove specific variables like:
localStorage.removeItem(key_name);
Closed. This question needs to be more focused. It is not currently accepting answers.
Want to improve this question? Update the question so it focuses on one problem only by editing this post.
Closed 6 years ago.
Improve this question
I am building a web browser text base RPG game with PHP/Javascript/HTML and CSS.
Each user has some information like his Name, Level, Experience, Gold and more. All the data is saved in the database.
When moving from pages in the game what will be the right method to store the data to be use in all the pages?
I thought about the following options:
PHP SESSION
Cookie
Using GET with the info in the link.
What do you think is the right way to do it?
In aspect of data security, hacking, easy etc.
Currently I am thinking about using PHP SESSION.
Assuming that most of your game logic is executed on the server side, keep the game state in the PHP session. Other than cookies and GET parameters, the session information is stored on server side and for this reason out of reach for manipulations by the user.
In addition to that, save consistent states to the database often to make the game information persistent.