Associate
- Joined
- 11 Oct 2008
- Posts
- 268
Hey guys,
I am using request to pass a variable to my code that I need to update my database. Its for a game, you click on the character to attack them.
But at the moment anyone is free to simply change the url and enter a different username to attack someone else.
Is there any way to verify that the user hasn't tampered with the code? or maybe a different approach I cant think of?
I am using request to pass a variable to my code that I need to update my database. Its for a game, you click on the character to attack them.
PHP:
<a href="?attackverify=yes&username={$row['username']}">
But at the moment anyone is free to simply change the url and enter a different username to attack someone else.
Is there any way to verify that the user hasn't tampered with the code? or maybe a different approach I cant think of?