Y
Hacker News
new
|
ask
|
show
|
jobs
by
denom
4250 days ago
After doing some poking it looks like you can access `this.userId` in the server-side publish and Meteor.methods functions. That's enough to prevent a lot of client-side tampering