I want to develop a web site as an android app backend using Backendless. I think this is very easy
with javascript sdk. but my main concern is the visibility of javascript code to hackers ( server ip and js keys etc is open to everybody). Do you recommend designing a backend web site with just javascript or I have to design it using php scripts?
The key to security of your app is not hiding the secret keys. An app becomes secure when you apply proper permissions and restrictions for your data tables/objects, users and files. Hiding a secret key is only a half measure, which in the case of JS does not really matter.
Whether you do it in PHP or JS is up to you. In my mind security is not the factor that would drive the decision between the languages.
Mark
I think php scripts will be more secure than javascript because it resides on server side and does not load like javascript on client browser. which one is easier?
Hi mark
what about performance in javascript code? Do you know any website which is designed on top of javascript Backendless Api?
backendless.com uses in several places. For example here (see the “Feature Explorer” section):
I couldn’t find any Backendless Api calls and methods like Data service or init method in javascript files
there. I also deobfuscated javascripts but nothing found related to api calls
Here’s a JS call using our API. I am not going to tell how we do it, since ALL the JS code is right there…
http://support.backendless.com/public/attachments/8ffbb33e7446ceb48c934d9e13a84756.jpg</img>
How is it related to Backendless support anyway?
Thanks a lot I will start with javascript examples .things are complicated there