Copy link to clipboard
Copied
setPublishPassword and setPostingPassword Helpful?I do not quite understand, do not use an example. Ideas or examples can you provide a
But those methods are the client, I set him groupspecWithOutAuthorizations, but was illegally set to groupspecWithAuthorizations how to do ah。
the groupspecWithAuthorizations includes the passwords. therefore, the groupspecWithAuthorizations must be treated as a secret password. it must only be given to clients that are allowed to publish/post in your group.
one way to do this is to generate the groupspec strings in a central place (either on an authorized client, or on FMS), and only give out the pre-computed groupspec strings to other clients. since all of the information (including passwords) is needed to generate the groupspec using
...Copy link to clipboard
Copied
Someone help you, I point wrong, I did not solve the problem, has been plagued for several days. I set the password, but that these passwords are written on the client, it is not being seen, ah
Copy link to clipboard
Copied
Hello, master. My question is, I gave tourists groupSpecWithoutAuthorizations (), but he can easily access after login to groupSpecWithAuthorizations () value, then you can as a tourist, but there are POST and publish permissions, and ask how to deal with this
Copy link to clipboard
Copied
the groupspecWithAuthorizations includes the passwords. therefore, the groupspecWithAuthorizations must be treated as a secret password. it must only be given to clients that are allowed to publish/post in your group.
one way to do this is to generate the groupspec strings in a central place (either on an authorized client, or on FMS), and only give out the pre-computed groupspec strings to other clients. since all of the information (including passwords) is needed to generate the groupspec using the GroupSpecifier class, you don't want to generate the groupspecs using GroupSpecifier on each client, since that would involve transmitting the passwords to every client, whether each was authorized for publish/post or not.
Copy link to clipboard
Copied
Thank you very much Michael.I generate the groupspecWithAuthorizations in FMS.like this
function getSpec()
{
var spec=new GroupSpecifier("my-group");
spec.postingEnabled = true;
spec.serverChannelEnabled = true;
spec.multicastEnabled=true;
spec.routingEnabled=true;
spec.setPostingPassword("aa");
return spec.groupspecWithAuthorizations();
}
client call:
var specResponder:Responder=new Responder(setGroup);
nc.call("getSpec",specResponder);
However, hackers can still get to groupspecWithAuthorizations, then he can be destroyed