Forum Replies Created
-
Posts
-
I give you a very simple scenario
1: Some one make a fake ticket, very easily, he can make up the URL with event id and ticket id and make a QR code and print it on the ticket.
2: He shows up with the ticket. The ticket is scanned, pass, he is in.
3: A few hours later, the guest with the authentic ticket comes, the ticket is scanned, it fails. Now you are warned and you check his ID. His ID is fine. You just let the person with fake ticket in but the person with the REAL ticket is stopped.
You definitely have to let the real guest in. I am not arguing with this.
4. The problem is – you can not know the person with the fake ticket at the first place. You have not received any warning! The check in processes with only event id and ticket id is a flaw design. You shall embed additional information for validation.
5. What happen if I have a recurring event last for more than a month, with thousands of attendant expected. A general admission ticket allows guest come on any day between the opening and the closing day. If the public knows this flaw, what happen if hundreds or thousands of fake tickets be made?
1:
The way you validate only event id and ticket id is a design flaw. You need to fix it next release because it is impossible for us to check whether a ticket is fake or not manually. We can check in 10 thousands guests a night.When I see your QR code only embed event id and ticket id, I absolutely know you have no way to check the fake tickets without additional validation code. You shall embed the security code with the QR code and pass it along with the URL for the system to validate the security code passed through URL is the same to the one stored in the system. That is one way you can validate fake ticket.
I need to post this to the forum so other know you have no way to automatically identify fake tickets at the current release.
2:
BTW, the check it still not working. You have not identify why the check in goes to the ticket/event page yet.Please check my first post. I followed all the instructions and it didn’t work. The QR reader is able to read the URL and redirect to the browser. I already logon the browser so the URL is passed with authentication already.
It still did not work.
