Chris dev
Chris dev2w ago

Security Question: Is the app key stored in the Unity APK?

Is it possible the APK could be reverse compiled and the app key stolen?
4 Replies
kapa.ai
kapa.ai2w ago
Hi @Chris. I'm kapa.ai, your friendly support bot. I will try to answer your question by searching through the knowledge base. :wave: ---------------------- The documentation does not provide specific information on how the app key is stored in the Unity APK or if it could be potentially stolen through reverse compiling the APK. However, it's generally a good practice to secure sensitive data like app keys. If you're concerned about the security of your app key, you may want to consider additional security measures outside of what's provided by Normcore. For more detailed information, you may want to reach out to NormalVR directly or consult with a security expert. ---------------------- Note: you can ask me a follow up question by @ mentioning me again :speech_balloon: ----------------------
kapa.ai
kapa.ai2w ago
<@182570065022025728> kapa.ai is still learning and improving, please let us know how it did by reacting below
maxweisel
maxweisel2w ago
by default yes, but you can construct a NormcoreAppSettings object at runtime and furnish the key if you’d like to store it somewhere more secure we’re about to ship an update that obfuscates it heavily but there’s no way to implement a system that can’t be broken. if you’re worried about it, your best bet is to implement your own backend that furnishes app keys after you’ve authenticated your users Normcore Private also has a webhook option that can be used to authenticate server joins via the server to server API
maxweisel
maxweisel2w ago
Webhooks | Normcore Documenation
Normcore Private Cloud and On-Premises both support using the Webhooks API to verify whether an application or user is entitled to access Normcore.
More Posts
Normcore headless buildCan we create a unity headless build and deploy to one of our cloud platforms instead of using normchow to handle code server sidehow do i run a timer for example on the server and get a signal sent to all the clients when that tiWhat is the best way to get the exact time a room is created?Is there a way to find the room start time?Bandwidth usage analysisI wanted to analyze my application's bandwidth usage more thoroughly to see if I'm sending unnecessaAllow RealtimeView.realtime and RealtimeView.viewUUID to be set from the editor inside prefabsWe have a use case where we want to be able to dynamically spawn a normcore room from a prefab. UnfoRealtime.Destroy On owned realtime prefabs.Can I destroy a RealtimePrefab by calling Realtime.Destroy even if someone else is an owner? Or do IHow can I distort the mic audio in RealtimeAvatarVoice to be higher or lower pitch?Is it possible to distort the mic audio from RealtimeAvatarVoice so the player is heard with a squeaAre there any best practices for syncing a large number of variables in one script?For instance if we have a large script with many bools floats, integers etc and they all need to be First player isn't synced to other players, while other players are visible to the first playerNo idea why this started happening - didn't change any code from what I can tell, but now whenever aReadStream was expecting to read a Null type from the stream, but was asked to read a Model typeI started getting this error in my game when I started disconnecting from it by closing the app. My