Unfortunately not very insightful… What I am asking can be divided in 2 parts:
- when variables are set to private are the data private when produced by internal functions?
let’s say you set:
private stable myVar = 0;
and a private function not in candid then is called and sets myVar = 5;
can anyone see the myVar has become 5? and what if i return it as a result of a query call? is it still kept private for everyone except for the user that got it as a result of the query call of course?
- is the data sent on an update call private? so if my functions is myFun(string) and string is something i send with my JS client… is string possible to unveil?
I believe in those topics it sais the latter is not private… the data I send from client can be unveiled. correct?
However if the first is at least correct i can make a fucntion that generates a kind of private key so i can give back to the user so the user can send me encrypted data that i can decrypt and save safely… so the encrypted data would be discoverable as part of the update request but at least it wouldn’t be “naked”…