Hello,
I have been developping a CEF application in the last month, it works like a charm ! Thanks a lot.
But now, I have some concerns about the security/protection. Currently, my html/css/js are stored on the disk in a hardcoded folder. The thing is, if the user get to this path and changes the script, he could modify some behavior of our code and then by-pass some features, such as call to Web API, login, etc.
So Im wondering, what is the way to protect my application UI ? Should I just put the file online on a server and point directly there instead of file:/// ? Is that the best way ? Does the caching can cause another issue with security ? Is there anything I can do on C++ side ?
I have search around, but I didn't found any topics about this. Im wondering how the big name such as Spotify or Steam are using CEF and protect there UI from edition.
Regards,
Alex