Forum Discussion
Creating downloadable pdf files in Storyline - an update on earlier methods
Hi Virineia
Sorry I misunderstood your question I thought you were asking if you were breaching any rules on usage by using the libraries rather than was there a risk to your own data. Again a very good question...
Obvioulsy, there is always a risk if you introduce third-party code into your application that it might open up some security vulnerabilities. As with all software, it is best to keep it up to date and to check regulary if any vulnerabilities have been reported. Plus the usual advice on anti-virus software and regular backups also apply.
That said, JavaScript is a pretty safe language to use when running under a browser. The browser will not allow it to perform tasks like accessing the local file system (CORS standards) or perform system tasks.
As to the pdf file that you create if you use a JavasCript library - like pdf-lib - it will be under the users control where they save it and it will then be protected by the local system file protection rules. So it may be necessary to think about the use of shared libraries if the file contains sensitive date. Also, with pdf-lib, the pdf file starts life as a pdf 'form' template. Make sure, once the learner has completed the form that you use a 'Flatten' Javascript command to turn the pdf form into a standard pdf.
It is also possible to create the pdf file as read-only and also to password protect it using pdf-lib. You should also be able to encrypt it - but I would need to check that.
If you are really worried about the data then you might want to consider creating the pdf file on a server, rather than the users local system. This would give you more options to protect it.
Hope that helps.