There should be a minimum server-side involvement:
-
Answers should be validated on the server. It’s a useless quiz if you ship the answers with it to the browser. It’s like handing a student a quiz paper, with the answers at the back of the page. Similarly, a few breakpoints in dev tools can reveal where your answers are being compared against the user’s answer.
-
The actual record of the users accomplishing the quiz should be recorded on the server. The certificate would only be something to represent the achievement. For example, If the certificate is just a printable HTML, I would just edit the page to contain my name and presto! Instant achievement! With a certificate alone, you wouldn’t know if it’s legit.
solved how to generate trusted certificate in the browser