javascript - Recommend Security procedures for Anon Users to write data -
we working on simple widget on our website or abled embedded on others sites. simple star rating widget allows anonymous user click on rating , gets submitted our parse backend. (btw doing way more our native clients ios/android) need small js version.
the concern here after reading https://www.webniraj.com/2013/08/01/using-the-parse-javascript-sdk-be-careful/ sort of makes me not want this. have read though old blog posts of parse security , http://blog.parse.com/announcements/protect-user-data-with-new-parse-features/ anon users.
question if have anon users thats able write lets voting class, able use dev console spam or post more votes via parse query calls? have acl set custom role called anon have write need pointers or should not @ all.
Comments
Post a Comment