flex-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Alexander Farber <alexander.far...@gmail.com>
Subject Re: Air apps easily decompiled and hacked
Date Tue, 25 Feb 2014 13:14:05 GMT
You can't keep OAuth secret or
any other "secrets" at the server side.

If you keep it there, your app needs to download it -
then the attacker can do it as well.

You need something "secret" to be at the app.
And the ease of decomilation doesn't help there.

  • Unnamed multipart/alternative (inline, None, 0 bytes)
View raw message