So I made a recreation of Flappy Bird:
https://studio.code.org/projects/gamelab/m0bwIoBO4uf6HepyQwPigT86U8T8DxBzO7UkYLsRHKQ
and I to make it more engaging I added a leaderboard and some other features. It had only been published for half an hour and was almost at 1000 views when someone hacked all the leaderboard data to say whatever then wanted. I had to completely erase all the cloud data and restart. Is there any way to prevent people from doing this?

      Binary_Coder well there is a way... but it won't stop everyone for me it's worked quite well using the honor system or just don't use saves at all and inform everyone why the game can't have nice things, either that or you set up your own table with encryption and API keys but that's a bit further than beginner level though

          8 days later

          Varrience Thanks, I added some name encryption to try and make it a little more difficult to hack. It's not perfect, but it's only been hacked twice with over 1500 views so not too bad I guess.

            Completely offload all your data to an external server that handles all the user data, leaderboards, etc. Have users sign in with their user id and hash that in a secure firebase storage that can only be accessed by the backend. Once you’ve completed these steps, to make sure there is no cheating you need to keep saves of all the data (almost like an audit log) and decrypt code.org’s tokens to determine whether or not the user is signed in. Implement either a JWT encryption system (the most likely for a code.org project) or use AES keys to securely send data from the server to the frontend.

            most cdo "hackers" are stupid, if you just put links to them in app lab or something its so much less likely to get hacked
            like make a cool little app lab with all your games and then post that

            Chat