> Input check – In WG2 some inputs are numeric only and some > are English only – Simply build 2 controls, one that only > accepts numeric input and one that accepts only English > input. Problem solved.
I want to follow up on this one point. Controls are in the user's browser and you have the ability to control them via JavaScript, however, you can never ever trust what is submitted from any user. It's not hard at all to turn off JavaScript or to circumvent any browser side protection you might have for invalid data. _Always_ check the user's submitted data on the server side if it is anything which could corrupt your data, cause an error, or possibly even allow for cross-site scripting.
jannesiera
· 1 year ago
Nice Post Mortem :).
Sebastian
· 1 year ago
Ron, thanks for sharing those insights. It was a very interesting read. Maybe in a second post you could share your experience regarding starting a project like this. I would be interested in knowing if it is/was a hobby project, how you started out and if you earn money or can cover your expenses.
Sebastian
Ron Rejwan
· 1 year ago
Thank you John, I forgot to mention that.
All client-side controls only allow users to enter valid input via javascript code while the back-end code checks for the validity again.
This is only to prevent double posting by users, and not to be relied on.
Sebastian, I'm glad you've liked the post - I might add a new article about my new project soon.
Rome
· 1 year ago
RON THIS GAME ROCKS!!!!! Im Rome on fs#1 and on the forums =)
Cannabis Island
· 1 year ago
haha, Rome, lol. Nice post Ron, i like hearing about the passion you truly have for the game, I feel as if a few players sometime lose sight of this. Thanks for making a great game, which ive played for over a year, and continue to play til this day. -John- aka, Cannabis Island
All Comments
> are English only – Simply build 2 controls, one that only
> accepts numeric input and one that accepts only English
> input. Problem solved.
I want to follow up on this one point. Controls are in the user's browser and you have the ability to control them via JavaScript, however, you can never ever trust what is submitted from any user. It's not hard at all to turn off JavaScript or to circumvent any browser side protection you might have for invalid data. _Always_ check the user's submitted data on the server side if it is anything which could corrupt your data, cause an error, or possibly even allow for cross-site scripting.
thanks for sharing those insights. It was a very interesting read.
Maybe in a second post you could share your experience regarding starting a project like this. I would be interested in knowing if it is/was a hobby project, how you started out and if you earn money or can cover your expenses.
Sebastian
All client-side controls only allow users to enter valid input via javascript code while the back-end code checks for the validity again.
This is only to prevent double posting by users, and not to be relied on.
Sebastian, I'm glad you've liked the post - I might add a new article about my new project soon.
Im Rome on fs#1 and on the forums =)
-John-
aka, Cannabis Island