order on the server time and for a message in the ...
# random
e
order on the server time and for a message in the process calculate it on client applying the delta calculated on sync
­čĹŹ 1
­čÖé 1
u
is however letting the client dictate the timestamp/ordering safe as api? what about some bad client sending timestamp=1? etc
e
Do you control the client code? How client could send bad time?
u
Well nobody for real controls client code when its in a apk, ready to be downloaded and chamged and repackaged or whatever
i.e. im talking about an attack attempt
they can send bad values on pourpose, and the api will happily take them