Why is it not possible to do something this simple in cloud script:
On_ALL_Login_Methods:
if (verified) login
else NOPE
)
Also, for those who might want to reply or think about this. Please don't give answers that are also security flaws themselves like doing ExecuteCloudScript in the client lol. Any basic hacker can de-compile and rip out every single one of those calls.
If you don't have basic email verification required on literally every login then anyone could easily make bots to flood the server with accounts.
If this is already possible please update your documentation because currently you just show how to setup the email verification but you have no way to enforce it properly across all login methods.
Another basic security issue that I really want to mention right now is I should be able to completely disable certain types of login methods. You can decompile a game, get the ID information, then create any type of exe you want and do any of these login calls any way you wish because there is just no limitation on the account creation process.
I have stopped all development even though I have just started because there is simply no reason to even continue with so many security flaws. There is more but let's at least start with this.
Also, Hello! Did I mention I'm new? :)