How to secure member data in Memberstack without a custom authentication database solution?
I'm building out another Memberstack project, and the client wants a list of all the risks of not using a fully custom coded solution where data is pulled in from a database only after the client is authenticated on the page. Ideally there is a way to securely gate content, where it can't be hacked with javascript or CSS. That stated, what's most important is that there's no way that secure unique data of a user in Memberstack can be accessed or viewed by anyone.
Comments
2 comments
Hey there Hal Zeitlin
You're right, once the specified page/block/content is gated based on your conditional implementation on MS, no one would be able to view/access the gated content without logging in..unless there's no loading/page rendering issue.
Although!, this isn't a very secure solution. If Memberstack fails to load and a visitor knows the exact URL of your content, they will be able to access it. For higher security, consider Memberstack's Hosted Content option or follow their security checklist.
To understand this workflow comprehensively do refer to their official docs here -
https://docs.memberstack.com/hc/en-us/articles/7402927868443-Gated-Content
Let me know if that clarifies the question about your gated content security.
Cheers.
Hey there Hal Zeitlin! Seems like there hasn't been any response to my my reply. I'm going to consider this question resolved. If you need further 1on1 support, you can post a new question at hiophelia.com.
Please sign in to leave a comment.