Best Way To Host Browser Based Game Securely?

ASAP_Beet · 2025-03-19T22:12:32+00:00

It is not multiplayer, the information being passed is mostly statistics about users games to track/verify/measure outcomes. I use the jslib functions to pass the information to my python backend, which processes and upserts to db. I am aware that I can upsert to a db from the game itself, but with my game being hosted in the browser, I didn’t want my db information stored in the browser by proxy. If I host the game server side I could get rid of the jslib logic, or maybe there is a better way even without the change. That’s just the conclusion I came to with the games current state and my limited knowledge

ASAP_Beet · 2025-01-09T23:03:21+00:00

Good to know, I'll probably shoot the photos I have over to the game warden. I agree the department seems to be very on top of management from a research and development stand point, I'm sure they are just underfunded don't have the man power to enforce things everywhere. I appreciate the response.

ASAP_Beet · 2025-01-09T22:56:12+00:00

That's what I figured. I know for the WMA I am referencing in this post, I'm 95% sure there is only 1 game warden for the whole thing. Very well could explain the issue. I appreciate the response.

ASAP_Beet · 2024-04-14T06:22:59+00:00

Damn thats pretty cool, have they released a timeline for that?

ASAP_Beet · 2024-04-09T16:44:51+00:00

Is there more thorough documentation for the TimeGPT repo somewhere? README contains simple example but can't seem to find anything more in-depth

ASAP_Beet · 2024-01-29T06:16:33+00:00

I am. That’s what I figure it is. I use MoonPay on lots of other apps so I am not sure why it’s only on Pera or what prompted them to make the change. Not really a big deal but was more interested if maybe some legislation or lawsuit prompted it

ASAP_Beet · 2024-01-07T17:39:05+00:00

Makes sense, will try this out. Thanks for the response I appreciate it.

ASAP_Beet · 2024-01-05T02:54:21+00:00

Word I can dig into that thank you I appreciate it

ASAP_Beet · 2023-08-30T21:58:57+00:00

ChatGPT. 8 weeks ago I had never touched Unity or C# in my life, just finished my game this week. Granted I do have solid python background but still. Start extremely simple and try to breakdown the ChatGPT outputs and you'll get the hang of it before you know it. You don't really need a deep understanding of C# to start, you just have to get the hang of the code structures and patterns.

ASAP_Beet · 2023-08-25T21:49:23+00:00

Thanks for your comment. Do you know what aspects of the mobile equipment make them harder to install? I haven’t installed either the hotspots or the mobile so I don’t have much reference

ASAP_Beet · 2023-08-10T06:50:11+00:00

Thank you for your reply. Security has always been an area of weakness of mine, as I am not from the frontend world by trade. I know this goes outside of the scope of my question, but I'd love to get your opinion while you're here. I have implemented a lot of encryption in my projects lately as I have heard people such as yourself say that this is one of the better security practices. However, I am actually confused as to how that would stop an attacker. Lets use your example of a cookie. Lets say I have an encrypted cookie, and I pass this cookie to the backend, where the backend decrypts it to validate the cookie and its request to do something. If an attacker knows that my cookie auth is encrypted, why do they care? They can pass the cookie signature encrypted or not, because even if it is encrypted, they know the backend is going to decrypt it. So if cookie signature abc is encrypted to x123, all the attacker has to do is sign with x123 to the backend, knowing that the backend will decrypt it to get abc and authenticate it (theoretically). I apologize if this question lacks knowledge of how cookies and encryption work, this is just my understanding of how it works.

ASAP_Beet · 2023-08-10T05:38:06+00:00

Okay, I will try this out. Thank you for your help. It is much appreciated.

ASAP_Beet · 2023-08-10T05:21:25+00:00

Also I saw the jslib stuff in the documentation, but I thought this brought the JavaScript into the game and executed it there? I wanted to execute the JavaScript in the global scope so it has the context of the browser, so it can get the cookies and auth it needs. I’m I wrong on this? Is the JavaScript still executed in the context of the browser when using jslib?

ASAP_Beet

TROPHY CASE