Obfuscate SQL results

Wappler General Need Help
1

Maybe somebody knows whats the best way to obfuscate SQL Results for “Paid” users or “Free Users”.

Example for a project I have “Free Users”. They see just:

Work for rebuilding a ********************* **** ***
Category: Machine, Technology, Digital
Employer: Peter *******
Phone: ************

A paid user would see smth like:

Work for rebuilding a new Website for Ambassadors
Category: Machine, Technology, Digital
Employer: Peter Marchievzksi
Phone: +41 442 764 23 23

So I guess I could just use in my Serveractions a IF statement where I check the “Paid” / “Free” of a User, then query the SQL Query statement with *** obfuscating or the full one ?

Or maybe better to go with some Server Side / Expressions ? Perhaps thats the better way… ?

2

Hi Freddy,
Are you storing both versions in the database?

3

Why do this at server level? It would be much easier to select a single result and obfuscate it at app connect level with a simple IF

4

@teodor no only storing one version. @hyperbytes okay thats what I thought. Just not sure which function to use to strip away some chars…?

5

I don’t think that would be a good solution.
Everyone who runs the server action in their browser will see the original results.

1 Like
6

@teodor thats exactly what I thought. I mean its not high secure and I guess just leaving away the neccessary fields would also work and just show ******** statically…

1 Like
7

Yes that would definitely do it.
Just use two queries - for free and for paid users.

8

@teodor okay but can‘t I just use conditional stuff on the website itself? So I would say, that I‘ll not obsfuscate fields, no I would NOT SHOW that {{name}} or {{phone}} number and go with a conditional statement / expression…? :thinking:

9

Freddy, the conditional stuff must be done on the serverside.
I.e. a condition with two queries, depending on user - one that returns all the table columns, and another that only returns a few.