Webplayer unity.sendMessage - possibility to retrict access?

venice · September 18, 2012, 8:51am

Hi there,

I’m working with webplayer and have some communiction between webplayer and embedding website via unit.sendMessage(…). In my tests i found out, that you can call every function, if you just know object’s and function’s name. Is there a way to restrict access to objects/methods (e.g. via whitelist/blacklist, …) ?

Example:

(embedded in Webplayer.html’s javascript ):
…
// get unity object
function GetUnity() {
if (typeof unityObject != “undefined”){
info(“GetUnity: found unity object”);
return unityObject.getObjectById(“unityPlayer”);
}
return null;
}

// call to Object.FunctionName(“Parameter”) in current scene.
var unity = GetUnity();
unity.SendMessage(“Object”, “FunctionName”, “Parameter”);
…

What i want:
Restrict access to one object (to handle and validate calls).

Please don’t come up with “i belive…”, “i think…” answers - this is development and not religion.

Dreamora · September 18, 2012, 9:42am

Thats not possible at the time. Unity lacks a [ExportFunction] attribute to declare what functions exist in the web handling (similar to flash) at least at the moment.

But we can hope that this is going to change along Unity 4.x

venice · September 18, 2012, 10:12am

Thanks for your fast response. I’ll have a look at changelog for next unity version.

Topic		Replies	Views
unityobject and webplayer Questions & Answers legacy-topics	1	1846	June 8, 2011
cannot make unityObject.SendMessage working Unity Engine Scripting	2	1609	February 3, 2012
SendMessage and WebPlayer Unity Engine Scripting	1	674	May 22, 2018
Other Browser GetUnity() functions? Unity Engine Scripting	1	1451	October 8, 2008
Sending messages to UnIty through JS Unity Engine	1	1666	August 21, 2007

Webplayer unity.sendMessage - possibility to retrict access?

Related topics