Open swisstackle opened 2 years ago
swisstackle
commented
2 years ago This is the javascript function we will use to encode the get parameters clientside: https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Global_Objects/encodeURIComponent
We will also have to figure out how to encode them serverside. I am thinkin we probably will use the same method.
Leftover then is to hash stuff in the contract
swisstackle
commented
2 years ago Or we can just only encode the url get paremeters server side.
swisstackle
commented
2 years ago We will not use cryptography to hash stuff like the service description or name or price because it is not confendiantial data.
swisstackle
commented
2 years ago Encoding in the backend still needs to be done.
swisstackle
commented
2 years ago Should be done. Needs to be tested
Hashing in the Players.sol contract. Use html encode functions for inputs on website. Make sure everything is secure for injection attacks.