jK wrote:its content is read from the lobby created script.txt
ow damn, thats just plain text then, that everyone can read. Thats not an ideal scenario for what I had in mind.
I had hoped to do something like
Code: Select all
http://gamedomain:80/rest/army?supersecrethash=(hashvalue)
for each player , to get all the units that player has to it's disposal. But if all those hashes would be plain text in the script.txt, it wouldn't be that supersecret anymore ...
Well not that this was a foolproof system anyhow, but still better a tiny bit of security in REST calls then none. In a pure java environment I would base64 encode username+password and use Spring(Java framework Spring not SpringRTS) security to decode on serverside.