Android Question SQL Question - connect local db to main db

trepdas

trepdas

Active Member
Licensed User
Hello there good people.



I am working on my final studies project and I was wondering if any of you can throw me some leads to help me learn while I make the progress.

here are my needs :

every app creates a unique id of itself when installing.
(already done).

each app has it's own local db (very simple table, 50 items, two rows, two strings)
(already done)

all apps can connect to the main web hosted sql server (linux)
(almost done)

This main database will contain all app's local databases in one table.(app id , string1, string2)

app users can read the complete main database but able to modify or delete only the data that matches in their own local db.

how this is done?

(I assume that app id will be the key)

in other words,
every time a user is modifying his own listing (in the local db) , the listing in the main db has to be synced.

your help, thoughts, ideas, code samples will be very and extremely appreciated.

🙏 🙏 🙏
 
Sort by date Sort by votes
drgottjr

drgottjr

Expert
Licensed User
Longtime User
in theory, relatively simple:

user updates local database
user updates main database with a constraint, eg, WHERE ... AND app_id = 'this_unique_app_id'. (assuming you can guarantee a unique app_id).

in practice, you have no guarantee user will be online when local db is updated, so you have to be prepared to copy local updates to a local file (as sql statements). the next time user is online, she updates the main db from the local file BEFORE any new updates. (or keeps adding to the local file until she gets online.)

and, for the conspiracy-minded, you have no guarantee that some ill-tempered state actor doesn't send an app_id belonging to someone else and wipes out
that user's db or worse. having multiple copies of data is always risky. if user gets a new device or resets device or reinstalls your app, how does she recover her data?
 
Upvote 0
OliverA

OliverA

Expert
Licensed User
Longtime User
aeric said:
I think you need extra security. An App Id is not sufficient.
I recommend to use user id and password pair (and salt) in main database. Optionally use a token pair with your App id at the client app.
Click to expand...
drgottjr said:
and, for the conspiracy-minded, you have no guarantee that some ill-tempered state actor doesn't send an app_id belonging to someone else and wipes out
that user's db or worse. having multiple copies of data is always risky. if user gets a new device or resets device or reinstalls your app, how does she recover her data?
Click to expand...
I think these are valid points for production projects, but I think the author here is just looking for a "simple" solution to the given problem. It's great to point out though that such simple solution would be really bad out in the wild...
 
Upvote 0
trepdas

trepdas

Active Member
Licensed User
OliverA said:
I think these are valid points for production projects, but I think the author here is just looking for a "simple" solution to the given problem. It's great to point out though that such simple solution would be really bad out in the wild...
Click to expand...

Yes, this is exactly it.

Thank you so far all of you good people for helping examine and refreshing my mind :)
 
Upvote 0
trepdas

trepdas

Active Member
Licensed User
aeric said:
I think you need extra security. An App Id is not sufficient.
I recommend to use user id and password pair (and salt) in main database. Optionally use a token pair with your App id at the client app.
Click to expand...

Yes, the App id is completely unique per each app.
but ,You're right, I can't relay on a single app id only.
I will adopt the user id as well...
Thank you
🙏
 
Upvote 0
trepdas

trepdas

Active Member
Licensed User
drgottjr said:
in theory, relatively simple:

user updates local database
user updates main database with a constraint, eg, WHERE ... AND app_id = 'this_unique_app_id'. (assuming you can guarantee a unique app_id).

in practice, you have no guarantee user will be online when local db is updated, so you have to be prepared to copy local updates to a local file (as sql statements). the next time user is online, she updates the main db from the local file BEFORE any new updates. (or keeps adding to the local file until she gets online.)

and, for the conspiracy-minded, you have no guarantee that some ill-tempered state actor doesn't send an app_id belonging to someone else and wipes out
that user's db or worse. having multiple copies of data is always risky. if user gets a new device or resets device or reinstalls your app, how does she recover her data?
Click to expand...
Thank you so much for this valuable info.
I will work on backing up and restoring later on. I am still building the main shield...
🙏
 
Upvote 0
You must log in or register to reply here.

Similar Threads

Cliff McKibbin
  • Article
Android Example Syncing local databases using PHP to access a database on a hosted server
Replies
1
Views
3K
thetrueman
T
Star-Dust
  • Article
B4J Library [B4X] [B4XLib] SD_SQL (direct access to MySQL, MariaDB, MS SQL, FireBird)
2 3
Replies
56
Views
18K
amorosik
amorosik
Erel
  • Locked
  • Article
B4A Library JdbcSQL - Directly connect to remote databases
2
Replies
23
Views
61K
Erel
Erel
Erel
  • Locked
  • Article
B4J Library [B4X] KVS2 / KeyValueStore 2 - Simple & Powerful Local Datastore
2 3 4
Replies
74
Views
54K
Erel
Erel
Erel
  • Locked
  • Article
B4J Library [B4X] jRDC2 - B4J implementation of RDC (Remote Database Connector)
5 6 7
Replies
138
Views
134K
Erel
Erel
Top