Closed. This question needs to be more focused. It is not currently accepting answers.
Want to improve this question? Update the question so it focuses on one problem only by editing this post.
Closed 6 years ago.
Improve this question
I'm looking to create a "local" photo sharing application with Meteor, which allows visitors to either create a sort of private lobby, or post photos to a private lobby (allowing for local slideshows, for example).
To do this, I would need to be able to generate some kind of unique password or code, which people could use to gain access to the local slideshow and then be able to add pictures to it.
Can anyone give me pointers on this? Or Meteor resources I can take a look at in terms of setting up "private lobbies" of this sort, accessible only by a generated key?
Create a collection called "Lobbies"
Add documents to that collection, each will have a random id automatically
Create a route (using FlowRouter or iron-router) that loads that lobby document and all related photographs, ex: /:lobbyId
Don't publish these lobbies unless they are requested specifically by _id, this will prevent them from being accidentally discovered
Now your users can add pictures to lobbies and exchange the urls of these lobbies and only the people who know the url will gain access.
Related
Closed. This question needs to be more focused. It is not currently accepting answers.
Want to improve this question? Update the question so it focuses on one problem only by editing this post.
Closed 3 years ago.
Improve this question
I have an idea to develop a multiple school management system web app using Google firebase, but I don't know how go about it yet because am still a young programmer. please can anyone help with the followings.
How the data base will look like in firestore.(In such a way that it
will accommodate multiple schools, staffs and student.)
The security Rule to deny and allow access to Collections and Documents
Please also suggest a better and easy way this project can be achieve. THANKS
Make the security only private read and write in the firebase CLOUD database, so that only you can write or read to the database. Make sure that the firestore structure has a collection of "schools" where you can put separate schools in the collection with the fields of name, location, and other information about the school. The ID is automatically provided. You should be able to work something out of that from there. Please mark this as the answer if this was helpful by clicking the checkmark.
Closed. This question needs to be more focused. It is not currently accepting answers.
Want to improve this question? Update the question so it focuses on one problem only by editing this post.
Closed 3 years ago.
Improve this question
I think it might be a silly question to ask but trust me I am really confused and stuck. Actually I have an object array where I am showing different events in a calendar. Object array is stored in localstorage. I want to do something like when a user opens a page, I want to store that array on the user's computer. I know I am storing the array in localstorage so if the same user visits the page from another computer, then the array will be erased. I want data that will persist.
Can you please help me?
Because security reasons it's impossible to manipulate files into the file system in a web application, the browser doesn't have this kind of permission.
What you can do is to save your array into a backend, and when the user login, you retrieve this information from your backend.
If I understood you correctly you want the same users to be able to retrieve their data regardless of the machine they access the site from. In order to do so you need to implement some sort of backend that will persist the data. LocalStorage is only local to that computer and won't be accessible from other machines.
AWS Amplify and Firebase are two tools that you might find useful for building backends for persisting user information.
Closed. This question needs to be more focused. It is not currently accepting answers.
Want to improve this question? Update the question so it focuses on one problem only by editing this post.
Closed 6 years ago.
Improve this question
I am building a web browser text base RPG game with PHP/Javascript/HTML and CSS.
Each user has some information like his Name, Level, Experience, Gold and more. All the data is saved in the database.
When moving from pages in the game what will be the right method to store the data to be use in all the pages?
I thought about the following options:
PHP SESSION
Cookie
Using GET with the info in the link.
What do you think is the right way to do it?
In aspect of data security, hacking, easy etc.
Currently I am thinking about using PHP SESSION.
Assuming that most of your game logic is executed on the server side, keep the game state in the PHP session. Other than cookies and GET parameters, the session information is stored on server side and for this reason out of reach for manipulations by the user.
In addition to that, save consistent states to the database often to make the game information persistent.
Closed. This question needs details or clarity. It is not currently accepting answers.
Want to improve this question? Add details and clarify the problem by editing this post.
Closed 8 years ago.
Improve this question
I have an application done fully in JavaScript using Ember.js. What I want help with is the following:
I have two account types: basic and premium.
Depending on what account type the user have I wish to display ads him.
The user can use parts of my application only if he has a premium account.
What I must have in mind in order to protect my application so it's secure against people trying to use premium features without having that privilege? Because all Javascript will be sent as a single file, people can just look at all my app code and maybe reverse it or even copy it and use locally without even entering my site, which would put all my effort to waste.
Your client side code shouldn't be considered more than sugar for the user's experience, not a layer that is trusted.
That means your backend should be pessimistic in nature, not trusting requests from the client, but making sure they can make said request, and sanitizing any data sent to them assuming the user is trying to do harm.
Closed. This question needs to be more focused. It is not currently accepting answers.
Want to improve this question? Update the question so it focuses on one problem only by editing this post.
Closed 8 years ago.
Improve this question
I just made some changes to my website, it will display different greeting text for different continents, I have used Google's API to get location of the user
region = google.loader.ClientLocation.address.region;
country = google.loader.ClientLocation.address.country;
countrycode = google.loader.ClientLocation.address.country_code;
But now i want to test this, so is there any way that i can access my site with the IP of another continent or country, or any other solution for this.
I've built a tool that you might find useful, called GeoPeeker. In my own testing I found proxies to be unreliable, so I designed GeoPeeker to use actual servers that render a site and provide DNS information from various remote locations. It's handy for troubleshooting CDN and DNS issues.
It's also free to use and there are no ads.
You could use an online proxy service, located in the country you want to test for. A list of free online proxies can be found at http://proxy.org/.