0

I have made a basic javascript game of blackjack (21) were the page does not refresh/post. I am wanting it to change a entity in a database (money) with out a user being able to easily access the page/method of changing the database. I was thinking about ajax but even this way a user could finde the page and then access the db. Is there a better way of doing this??? Thanks.

Improve this question
0

2 Answers 2

Reset to default
2

See this question for reference:

Preventing cheating for on-line arcade high score board

Blackjack is a simple enough game however where you can simulate every single variable server side, there is no need for client side processing in your case. Move all your code to the server side, feed the result to the client, feed the clients actions back to the server and it will be for all intents and purposes cheat proof.

This way, the client cant send scores/card ID's etc, only their actions stick|split|draw etc.

Improve this answer
Sign up to request clarification or add additional context in comments.

Comments

0

Anything the client can do, the client can hack. Javascript is quite open and not secure.

You can type javascript:... in the address bar and execute code arbitrarily, including calling any function in your application.

Improve this answer

Comments

Your Answer

By clicking “Post Your Answer”, you agree to our terms of service and acknowledge you have read our privacy policy.

Start asking to get answers

Find the answer to your question by asking.

Ask question

Explore related questions

See similar questions with these tags.