Forum ‹ BigDB ‹ one user can delete PlayerObjects another

[Neutrino]

Iam now create simpleConnect from one user and deleted key in PlayerObjects another user
example

Code: Select all

private var login = "fff"
      private var pass = "fff"
      private function Login(){
         PlayerIO.quickConnect.simpleConnect(
            stage,
            'blablabla',
            login,
            pass,
            function(client:Client):void{
               trace("Все отлично, мы снова в матрице!")               
               handleConnect(client)
            },
            function(e:PlayerIOError):void{
               trace(e)               
            }
         )
      }
      private function handleConnect(client:Client):void{         
         client.bigDB.deleteKeys("PlayerObjects", new Array("simpleeee"),
            function():void{
               trace("cool");
            },
            function(e:PlayerIOError):void{
               trace(e)
            }
         )
      }

[Benjaminsen]

This is only possible if you configure your BigDB access such that it's not secure.

Under the settings of your connection uncheck the Delete access right.

[Neutrino]

I have now standart public connection
delete is uncheck

[Neutrino]

May be I create two accounts from one ip

[Henrik]

This bug is now fixed. For some weird reason it was possible to delete the objects of other players if there were no indexes on the table, otherwise you got the correct error message.