I have a problem with send Flash variables to PHP.
I use the sendAndLoad (POST) command to send variables to PHP. Everything works fine, the PHP file stores certain variables in a database.
The problem is that if you decompile the swf you can have a look at the code and the variables, fake a post and send it to the PHP that stores the data.
What I need is something that verifies if the sent data comes from my SWF or from something else. I’ve been reading about HTTP_REFERER, but that doesnt seem to be all that secure… any ideas?
hope you guys can help! thanks!