I need to do a product having monthly subscription. what i have done is that when Customer uses the product DB for first time the code is setting an activation date in a profile form of that DB. After each month a request will be send from the Db(Customer) to a Db in our server as XML request(having activation date). So by checking activation date the server will send an XML msg to clent regarding the product purchase/trial over.
The problem is if the user Check the profile of the Db programatically he could see the activation date. and also if he change it programatically to more than a month the REQUEST WILL NOT SEND TO SERVER after each month. So monthly subscription is not possible.
is it possible to hide the field from user? but the user need to use the Activation date programatically after each month to check whether Activation date >1month. The User will be having manager access to db.ACL cound not be changed. So I AM HIDING THE WHOLE CODE IN SCRIPT LIB . . Please help me .
Interesting thing is that how your user is accessing database profile document. Don’t you have role based system where users are bound with their roles ?
The db is on the client’s server – Full Access Admin would let them get around the ACL and Readers fields (for human users) and the server itself would need to have access to the field in order to make the license-check request.
There is no reason for the activation date to be stored in the clear at the customer’s end. While it would not be a perfect solution, you can store a salted and encrypted version of a string representing the date in a standard format (eg. ISO). The client would need to discover the salt string and the algorithm in order to reset the date.