Yes, that makes sense! And more importantly shows my question/point wasn't completely stupid
- - - - - Additional Content Posted / Auto Merge - - - - -
Indeed - https://forums.frontier.co.uk/showthread.php?t=99437&p=1545056&viewfull=1#post1545056
The reason I questioned it is I can't imagine personally they'll open up their webserver for calls. Too much risk of too many calls and people trying to hack information out.
I suspect all calls will have to go through the/an ED app on your PC. That way you are already securely logged on etc.
This can be quite easily handled with a cached API server. Data is offloaded nightly or weekly. Player API calls are policed using network policies. Since they are with Amazon, Amazon should also be able to provide them some kind of flood protection.
From an infrastructure perspective, it's safer to have the API hosted on a separate webserver than allow direct game client access. Game clients can be hacked and provide multiple points of vulnerability to exploit. A single webserver provides a single point of control for admins.
When dev's mention API's, I generally assume they mean a webAPI since it is far easier to manage than to integrate into game clients. The patching of all the player clients to support a client side API alone is a logistical nightmare...