question

Cullis avatar image
Cullis asked

Is enabling server Api that dangerous?

I have seen tons of people saying that by enabling Server API your game can be easily hackable and was wondering is this true?

10 |1200

Up to 2 attachments (including images) can be used with a maximum of 512.0 KiB each and 1.0 MiB total.

1 Answer

·
Rick Chen avatar image
Rick Chen answered

Do you mean enabling server API in some SDK such as Unity PlayFabSDK? The dangerous thing is not the action of enabling server API, but it is when you expose the developer secret key to the client. Because the attacker can use your developer secret key to call most of APIs and make changes to your title. If you are building a server, which you can hide the secret key from client, then it is fine to enable the server API. But if you are building a client App, please be careful and not exposing your secret key to client side.

10 |1200

Up to 2 attachments (including images) can be used with a maximum of 512.0 KiB each and 1.0 MiB total.

Write an Answer

Hint: Notify or tag a user in this post by typing @username.

Up to 2 attachments (including images) can be used with a maximum of 512.0 KiB each and 1.0 MiB total.