Well, I'm working on a system SaaP (PHP / CodeIgniter + MySQL).
Initially the idea would be to deploy the deploy system to the client's choice hosting. The entire "setup" process would be performed by my team, so it would not have direct contact with the system code itself.
The fact is that I caught myself thinking, what would prevent one of my clients from hiring an obscure developer and asking him to hack the code? That way the customer could pass on to the "friends" or even resell at an extremely low value.
Of course, from a legal point of view, the integrity of my system can be protected, but we know that this alone does not inhibit malicious people.
Well, I burned a phosphate thinking about everything above and I came to basically a solution, which is not 100% efficient or practical, but that's what I thought.
Solution
Create a central class that connects to an external server (in my case) and, in a token-like schema, sends a hash (from the client) that was generated at the time of purchase and thus compared to the my server. If the hash was invalid, the class would make it impossible for the system to roll.
Illustration:
The problem is that any malicious developer could easily open the class and modify it so that this check was not made.
Then the doubt continues:
Does anyone know of any method or theory that could be applied in preventing piracy of PHP systems / codes?