Forum | Appery.io

Catch up wih the Appery.io community on our forum. Here you'll find information on the lastest questions and issues Appery.io developers are discussing.
https://forum.appery.io/

Not mobile app but I use app server code and db for a website. how to prevent unauthorized db posts?

https://forum.appery.io/viewtopic.php?t=6251

Page 1 of 1

Not mobile app but I use app server code and db for a website. how to prevent unauthorized db posts?

Posted: Sat Jul 25, 2015 5:15 am
by Matt6607699

This may be a bumb question but here goes. I have a website that updates appery DB entries through appery server script. How do I prevent people from making entries to my db by just copying my js code? The server script hides the db master key but will execute if someone does their own request through the dev console.

Not mobile app but I use app server code and db for a website. how to prevent unauthorized db posts?

Posted: Sat Jul 25, 2015 9:56 pm
by Illya Stepanov

Hi Matt -

I'm not understand how exactly you are implemented server scripts on your site, but to make them secure you need to include some athentification logic to your scripts calls, like for example our prebuild Database User services with session tokens.

And call to retrieve data that was updated by user will looks like this:
https://devcenter.appery.io/documenta...

All times are UTC
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited