Is there any way to prevent users and hackers from receiving title ID by using a network sniffer(and other possible data, for instance, Cloud Script names and parameters), and from using a PlayFab SDK to change user data?
Is there any way to prevent users and hackers from receiving title ID by using a network sniffer(and other possible data, for instance, Cloud Script names and parameters), and from using a PlayFab SDK to change user data?
A user or a hacker needs the title ID and CloudScript names and parameters in order to call the CloudScript functions. Unless you don’t expose the your title and the relevant APIs to anyone, it is hard to prevent users or hackers to get the title ID and the request information. In order to be more secure, what you could do is not to completely trust the data from the client and do some verification on the data from the client. You could also refer to this thread: https://community.playfab.com/questions/22238/playfab-client-api-security-with-unity-sdk.html.
2 People are following this question.