Zoom Webinar info security breach

rpelisson · September 17, 2020, 8:47pm

Description
We are using the Web SDK to perform join in the Webinar in our FrontEnd application.

We have the BackEnd application responsible to generate the signature as you all recommend in the docs.

Our concern is about the requirement of the SDK need the meeting number, meeting password and the API Key placed in the FrontEnd application to perform the Join.

We have all the Webinar meeting information stored in the BackEnd application to generate the signature (Meeting Number and Password)

The main question is:

Is there any way to don’t expose the Meeting Number / Meeting Password in the SDK, since we already have one of it in the Signature?

Let me know if you all need more info on this.

Regards

Which version?
1.8.0

tommy · September 18, 2020, 3:51pm

Hey @rpelisson,

We will consider changing how the meetingID and passcode is passed into the frontend.

That being said, you don’t have to hardcode it, you can set it as a variable, or pass it in through an input, which would allow the user to type in the meeting number and passcode.

Thanks,
Tommy

system · October 19, 2020, 1:51am

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Joining meeting created using api through web sdk Web	2	287	February 27, 2021
What is the purpose of the signature? Web	4	1158	March 12, 2021
Web Meeting SDK 2.3.0 New Releases	5	3001	March 28, 2022
Zoom Meeting/Webinar SDK Web	5	511	August 28, 2022
How to create meeting id using SDK? Web	2	1906	October 25, 2020

Zoom Webinar info security breach

Related Topics