hi there, For our application, we need to have two applications share the same database. I have done the following:
1. assigned each application the same 'SharedUserID' 2. used Context.CONTEXT_INCLUDE_CODE in the 'calling' application to access the db defined in the 'called' application 3. signed both apps with my key By doing this both apps are able to share the same db. My questions: 1. Can some 3rd party app figure out the sharedUserID and also gain access to the db using the Context.CONTEXT_INCLUDE_CODE 2. can the 'calling' app be inspected to figure out how to use the database i.e. what calls to use? 3. is signing enough to prevent a 3rd party from getting access to both my 'called' and 'calling' app? or do the apps needs to be obfuscated(I saw a post about using 'Proguard'?) 4.Finally, is this the best way to achieve my goal of sharing the db? I read about using ContentProvider method also, but people say its slower than using direct db access? Does ContentProvider method provides better security? thanks very much!
