tincan api protecting files
Dec 22, 2012
I am creating launch links for tin can api and my URL looks something like this:
this basically launches and my tincan.php file manages all of the tcapi statements. This works nicely and I am able to log the users experience
my current problem is if the user hits server.com/story.swf they can see all the content with out being logged, or if they visit server.com/tincan.xml they can analyze the file and see correct answers to multi choice style questions pretty easily.
Is there a recommended way to protect some of these files?