14.07.2014, 15:56
You could check the source IP addresses using $_SERVER["REMOTE_ADDR"], which cannot be spoofed. Any other IP headers can be easily spoofed, and you shouldn't rely on them.
Alternatively, you could use API keys, which you would include in every request made by the client and verify it on the server side. However, any sensitive data (the key for instance) should be transmitted using SSL encryption (https), which is not supported by SA-MP.
Alternatively, you could use API keys, which you would include in every request made by the client and verify it on the server side. However, any sensitive data (the key for instance) should be transmitted using SSL encryption (https), which is not supported by SA-MP.