Scripting Helpers is winding down operations and is now read-only. More info→
Log in to vote
3
How would you go by securing remotes?
How would you go about securing a remote that handles an in-game store purchases, would you check on the client if they have the valid amount of money then fire the remote or check on the server? I'm a bit conflicted on this
0
I am not too keen on remotes either, but I think you first check if the client has enough money to buy an item (to prevent most remote spam), then it will fire a remote, the server will then verify if this is true, if it is, the item is purchased. Sergio4755 21 — 4y
0
So what you said is likely the way to go about this, but I do not know the next step either Sergio4755 21 — 4y
1 answer
Log in to vote
0
The main rule is that unless something is COMPLETELY client exclusive, you are always to assume that the client is wrong to protect yourself again exploits. All data is to be stored on the server, it's important to do all of your 'has enough money?' checks on the server instead of the client.