SitePoint Sponsor

User Tag List

Results 1 to 3 of 3
  1. #1
    SitePoint Guru defiance's Avatar
    Join Date
    Oct 2004
    Location
    United states
    Posts
    663
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)

    suggestion for a one-time landing page

    Hello there..


    i ve been thinking for a simple yet secure logic to set up a one-time landing page,

    the background for lanfing page as follows;

    1. send out an email ( prefer automated email ) with the url for landing page
    2. recepient click on the link
    3. enter the authorazation code/pass (sent together with the email)
    4. authenticate
    5 good, continue. bad kick him off.
    6. good, pull existing database for details and let him edit it.


    what i have in mind is that pretty simple.
    like create a field in the database where store his authorasation code, then of coz email it to him,.
    and when arrive at the landing page, compare his entry with the one in database.


    any thoughts?
    thanks

  2. #2
    SitePoint Wizard HarryR's Avatar
    Join Date
    Dec 2004
    Location
    London, UK
    Posts
    1,376
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    Hi,
    I think you may be going to extremes with the multiple different authentication methods (their username/password, and the secret token you emailed them).
    Users are likely to get pissed off, and some may not even bother unless your site is really worth it.

    You should consider the two options that are widely used and impossible to spoof without access to the users email account it'self.

    1. You store a md5 'activation' hash in the database that points to their account, and has a certain expiry date. You send them a link in the email which goes to the activation page with that special hash in the querystring. Upon visiting that page it gives them a page to setup their account, change their name/password etc.

    2. You just set their account a random password and email it to them.

    Personally I prefer the first.

  3. #3
    Fully Sweet Car noddy's Avatar
    Join Date
    Aug 2002
    Location
    Perth, Western Australia
    Posts
    759
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    like a double opt in is what i do.


Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •