I have a client-side web application running on SharePoint Site Collection, each site collection has it's own unique id. I want to use a licensing process to lock the app to a site collection.
This is the challenge-response process I'm trying to implement:
challenge codechallenge code is site_collection_id processed through some functionchallenge codechallenge code with a private keylicense key which I send to userlicense key into the applicationValidation Process:
license keylicense key using a public key stored in appchallenge code the user had sent beforechallenge code revert it back to a site collection idsite collection id app is currently running onlicense key is validDoes this make sense? The one thing I'm not sure about is the public/private key stuff and if there's a way to do this in JavaScript.
I know it's impossible to 100% secure client-side applications. I'm just looking for something to prevent someone from easily distributing the application
You can use public/private key in javascript, I just used in my recent project. Check openpgp.js. The scenario you describe looks fine. You may also use daily tokens client will ask your server to be able to run, sharepoint site may send the token you give them back with a request for daily license, and you send license code and a token which is valid for 24h.
Este artigo é coletado da Internet.
Se houver alguma infração, entre em [email protected] Delete.
deixe-me dizer algumas palavras