0 Replies Latest reply on Feb 25, 2010 4:32 AM by hidarikani

    Zend_Amf_Server Zend_Auth

    hidarikani Level 2

      Zend_Amf_Server performs authentication only if it receives AMF CREDENTIALS_HEADER.
      So if my Flash app doesn't send the CREDENTIALS_HEADER it gets access to all server methods.

       

      Authentication that can be turned off by the cliet, makes no sense to me.
      Please explain why is it implemented this way