Even though the post is answered, let me know if you have your thoughts on this.
I’ve been thinking to make an admin system for my game which would use the dev console to accept commands.
It would work in a very simple way: instead of using chat you would have to open the developer console and manually fire a server storage bindable event in the command bar with all of the necessary arguments. Then a serverscriptservice server script would pick up on that event and arguments, and execute the commands.
I’m the only developer and also only admin so access to the console isnt an issue. Im thinking the only way to use the admin is to have access to the roblox developer console (which means only I can use it), but Im not entirely sure as I have no experience scripting admin.
Would this sort of system be secure from exploiters and whatever?
Exploiters would just trigger the remote event. Don’t try to find convoluted ways to do your systems. The simplest answer is the best answer in this case. Keep a list stored either in a module or in a data store of who has access to admin privileges, and any time the server receives an action from a client, make sure that the player who triggered the remote event is actually an admin before doing anything with their action.
None of that mattered since the post was about using the command console with bindable events, not remote events like I misunderstood.
It’s not a remote event. It’s a bindable event stored in serverstorage which would only allow for server to server communication. Would exploiters still able to access it?
My bad. I just woke up and misread the post. What I said doesn’t even make sense since the console is only for servers. Still, you should do what I said. A system of admin which involves remembering bindable event parameters doesn’t make much sense. It’s a simpler to just make commands or an interface and use remote events/functions with sanity checks. You CAN do what you said, but I wouldn’t personally do that.
I agree. I wasn’t gonna do a billion bindable events, just one which would have the command name as one of the arguments. But I am gonna do user checks aswell.