Did some testing, you can work locally. Hosted the following script at http://127.0.0.1/localtest.php
<?php
print('GET:<br>');
var_dump($_GET);
print('<BR>POST:<br>');
var_dump($_POST);
?>
and added it ingame as "App".
Here is the (blackened) result:
http://i50.tinypic.com/mt02lu.jpg
None of this data should be taken as validation without confirmation, if the api script works this might be a possibility. I would suggest adding a simple password form to get access, keep it simple as they say :)
<?php
print('GET:<br>');
var_dump($_GET);
print('<BR>POST:<br>');
var_dump($_POST);
?>
and added it ingame as "App".
Here is the (blackened) result:
http://i50.tinypic.com/mt02lu.jpg
None of this data should be taken as validation without confirmation, if the api script works this might be a possibility. I would suggest adding a simple password form to get access, keep it simple as they say :)