Problem with the anti piracy placeholders is that someone can find user id or username in string editor and just change user id (or username) to some other user id (or username) of someone who posted an review on your plugin.
Very simple and effective solution is to add optional encryption + base64 to placeholder values where user will have key which can be used with (AES) encryption to decrypt placeholder values. This is effective because key doesn't need to be provided in jar file and plugin can just send the encrypted value (which got encoded from the placeholders) to some backend and decrypt it there, it is impossible to know what was the value, therefore string editors become pretty much useless.
The key could be 16/32/64 bit value in string representation (initiation vector must be the same as the key)..
Very simple and effective solution is to add optional encryption + base64 to placeholder values where user will have key which can be used with (AES) encryption to decrypt placeholder values. This is effective because key doesn't need to be provided in jar file and plugin can just send the encrypted value (which got encoded from the placeholders) to some backend and decrypt it there, it is impossible to know what was the value, therefore string editors become pretty much useless.
The key could be 16/32/64 bit value in string representation (initiation vector must be the same as the key)..
- Type
- Suggestion
Last edited:
