Reverse-engineering a Dashboard Widget?
Question
Is it possible?
I understand that Dashboard widgets are simply Javascript packaged up nicely, but is it possible to view the source of that Javascript?
I realise this might be a silly question, but before I create a Dashboard widget for my site accessing an API URL I don't want to be public yet, I'd just like to check.
And yes, I know I'm being paranoid! ;)
Jack
1 answers
solution1
4 ACCPTED 2010-08-27 11:15:00
Yes, and no.
Yes, it is possible to view the widget Javascript. The script used to access your site's API would most definitely be visible (the URL has to go somewhere, right?). Anything that's available to the browser will be available to the user.
No, it may be possible to prevent reverse engineering. If you minimize and obfuscate the Javascript, it will be fairly difficult to see what its doing. Of course a determined attacker would always be able to reverse the minimization and obfuscation, given enough time, but it is up to you on whether you want to take that risk.
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.