4335 posts
  • 6 Years of Membership
  • Affiliate Level 1
  • Author Level 3
  • Beta Tester
+11 more
Reaper-Media
says

Good idea… Or not…

Here’s how I see it: if some person makes a BIG Activeden of Themeforest file, for example a super CMS shop with paypal, moneybrokers, invoices, themes and the works, they will want to make sure that a useable version didn’t go floating around the interwebs on warez sites. So by product activation, I mean create another envato API which will give the information of all products purchased and under which license, using that api and your own server, you could create a validation so that every so often, the file would check to see that this user is allowed to use this file under that envato username + pass, and that he/she has only done it to the number of websites that the license allows. And make the validation really hard-coded in the file.

This could also open up the possibility of 1-click updates of your php files, if you create a secure enough server and envato would allow it… Which is doubtful, at least in the short-run

but anyway, I am making this big php file which I will not describe in case someone steals my idea, and I really don’t want this file floating around for any Tom, Dick or Harry to use on their site.

Thoughts?

Reaper.

366 posts
  • Industrious API Inventor
  • Top Monthly Author
  • Weekly Top Seller
  • Envato Team
+11 more
Philo01
Envato team
says

+1

It would be great to track php applications. I was thinking about as well, but I don’t think it is allowed to use trace-backs in your application regarding the customer privacy.

Something like this would be nice:

1. User starts the install wizard of the application.

2. User needs to enter his Envato username and Password.

3. This data will be send to the Envato API

4. The API will check if the login is correct and if the user has purchased the application.

5. If all correct, the install wizard will continue

536 posts
  • Affiliate Level 3
  • Author Level 5
  • Collector Level 4
  • Croatia
+2 more
darius9000
says

and what, for example, if envato server is down for several hours?

230 posts
  • 6 Years of Membership
  • Exclusive Author
  • Collector Level 1
  • United States
Meshach
says
4. The API will check if the login is correct and if the user has purchased the application.

Easily hackable. ;)

60 posts
  • 6 Years of Membership
  • Affiliate Level 3
  • Bolivia, Plurinational State of
  • Collector Level 2
+1 more
Slimmity
says

yeah this is being done by big script companies like mint tracker or vbulletin, but theres always some bastard that comes and nulls it.. i would be a waste of time to try and do this tbh..

4335 posts
  • 6 Years of Membership
  • Affiliate Level 1
  • Author Level 3
  • Beta Tester
+11 more
Reaper-Media
says

I don’t think it would be a waste of time, vbulliten is much bigger than my product will ever be, every little you try to try and stop piracy is good. No effort, no matter how useless, is a waste of time ;)

159 posts
  • 7 Years of Membership
  • Author Level 4
  • Collector Level 1
  • Exclusive Author
peex
says
yeah this is being done by big script companies like mint tracker or vbulletin, but theres always some bastard that comes and nulls it.. i would be a waste of time to try and do this tbh..

+1

Instead of making a product activation encourage people to by legal software. With some nice campaigns (like birthday bundle), or extra freebies etc. For example if customer buys 20 products then he will get one free.

20 posts
  • 6 Years of Membership
  • Affiliate Level 1
  • Author Level 1
  • Canada
+2 more
Braunson
says
4. The API will check if the login is correct and if the user has purchased the application.
Easily hackable. ;)

Agreed, there is many ways around this, and even encoding with IonCube can be decoded and nulled. Say have the script retrieve news from say your site in a certain area, and you can post updates to the script but in order to download those updates via the script they need to login through Envato. Hmm. I’ll keep thinking, hold that thought.

5441 posts
  • Author Level 11
  • Moderator
  • Winner
  • 6 Years of Membership
+20 more
dtbaker
Moderator
says

Yea I’ve thought about this too.

The only real way would be if themeforest offered some oauth feature like twitter – that could be used to confirm the user has a themeforest account and that they have infact purchased the item.

But for ongoing use or preventing someone from copying the script after setup, you would need to encrypt the php and make it read from some 3rd party licensing server.

Would be cool to setup but quite a bit involved to make something that is hard for majority of coders to break.

306 posts
  • Author Level 4
  • Collector Level 4
  • Weekly Top Seller
  • Exclusive Author
+3 more
DigitalRicky
says

I don’t think catching someone who is using a ripped theme is going to be possible I mean even if you add an installation, once installed someone could just package the installed file and share it

Why don’t you figure out WHO shared it in the first place, I mean you have their contact info… Someone had to pay for it using their info

So in each theme have some sort of bar code ID, and you look for a shared version of the file, find it, read the bar code number and track it down to who started it… if doesn’t even have to be a code, you can use an image in the theme that has like 90+ % chance of not being changed, like maybe a twitter icon, smiley face, etc just add some sort of miniature ID in there

by
by
by
by
by
by