Someone draws, the others guess!
How simple is that!
One of my first encounters at Spiced about Socket.io!\
Active player: Has the pencil in his emoji and a light blue border. Active player has to look for the correct answers in the chat. If the correct answer is under the guesses, than the active player should click the "thumbs-up"-button. The player, who guessed right, gets a point and the next player's turn! And so on! You can leave the "room", come and go! Only 10 players allowed. Player, who cannot enter the "room" will be redirected in to the "waiting room", and when someone leaves the "room" will be reconnected to the "room". Who guesses four times correctly is the winner!
Good example to show Cross Site Scripting (XSS) Attacks Cross Site Scripting attack is a malicious code injection, which will be executed in the victim’s browser.
Prevention: Sanitize the users input (use a library)
- Data validation
- Filtering
- Escaping
Example input for sending via Websockets to all connected clients:
<img src="empty.gif" onerror="document.body.innerHTML = YOU SHOULD SANITIZE THE USERS INPUT;alert('XSS attack'); " >
- Express
- Socket.io
