Exposed App ID

Options
Shiffed
Shiffed
in Photon Unity Networking (PUN)

Hi all, I'm helping out with some development for a game built in WebGL on Unity 2021 LTS, whilst realizing that a webhook URL is exposed in the Browser's Inspector, I also noticed that the PUN App ID is also freely available to see by anyone :/

Is there any known ways to be able to hide this?

Comments

  • Meep
    Meep ✭✭✭
    Options

    No. The AppID is part of the initialization request to Photon so encryption is not established at that stage. On self-hosted Photon this would be possible, but at that point you don't even need an AppID to begin with.

    Protect your game with authentication and webhooks instead of security by obscurity if possible. However, if you are looking to hide some of your data from potential attackers, know that AppVersion is consistently more difficult than AppID to obtain since it's sent during the authentication operation (always encrypted). If you make sure to conceal this value until the last moment where it's sent, you could artificially separate the hackers from the real player base for a while.

Cookies,
anyone?

We use cookies and related technologies to enhance your experience, show you personalised content and analyze performance and traffic on our website. By clicking on the „Accept All“ button you consent to the use of non-functional cookies and the subsequent processing of personal data to optimize our website and services as described in more detail in our Privacy and Cookie Policy.

By clicking on the „Customize or Deny all“ button you can decide otherwise. Clicking on the „Customize“ button will take you to a page where you can configure the usage of non-functional cookies (and related technologies) or deny all of them. You can access these settings at any time and also subsequently deselect cookies at any time in the footer area of our website.

ACCEPT ALL

Cookie Overview

We use the following categories of cookies and related technologies to enhance your experience, show you personalized content, and analyze performance and traffic on our website. We respect your right to privacy and accordingly you can chose to not allow some types of cookies (and related technologies). Click on the different category sliders and change our default settings to manage your cookie settings.

For more information on the specific cookies/related technologies we use and on how we use these, please see section 15 E. of our Privacy and Cookie Policy.

ABSOLUTELY NECESSARY

Authentication cookies we use are required to run our services … Cookies are required: Link

FUNCTIONAL AND MARKETING COOKIES

These cookies collect anonymous data and allow us to optimize our website and user experience. These cookies are listed here:

ANALYTICS

Help us to understand how visitors interact with our services, enables us to analyze and improve our services (also through third party analytics).