So, what are the Pros/cons for the security side of the Data Transfered between devices and server ?
Is encryption enuf to protect your data privacy ..or is VPN required too ..?
Is there data other than the stack being transferred between devices and server? I mean are you accessing a database or something else on the server?
If not, then once the stack is downloaded onto the device, there is not a streaming connection, per se. The stack is downloaded and then runs from the memory of the device.
Your main concern would probably be securing the stack on your server so it is not available to just anyone with the url. Instead, they would need the launcher to access it. There are different ways of securing that.
I was using a VPN, since the people using the application were within a small office (it was not a publicly distributed app).
If you have php or (better yet) Livecode Server running on the server, you can write a script that the launcher sends a message to and if the request is valid you deliver the stack that is in a separate folder (not available from the webserver).
The LC Server Script might be something like:
Code: Select all
<?lc
--if this is a request for the stack, give it and exit
if $_GET[""] is "stackme" then
put url ("binfile:/var/www/stacks/yourstack.livecode") into tStackData
-- Always check for errors with file I/O:
if the result is not empty then
put "Error: "& the result &"("& sysError() &")" & the address
quit
end if
-- Deliver the goods:
put tStackData
quit
else --if this is just an empty html call
put "<h1>This is not the website you were looking for..</h1>"
end if
?>
and your launcher script might look like this:
Code: Select all
on openStack
//request the stack
go url "https://yourserver.com/index.lc?=stackme"
//close this window
close stack launcher
end openStack
Of course, these are basic examples and there are more elaborate ways you could set that up, but you get the idea.
