lopes_andre Posted November 3, 2008 Share Posted November 3, 2008 Hi, I need to use a function in a mailing list that does the following: 1 - When the current customer of the shop clicks in the given link in the newsletter, the customer autologon. 2 - For non customers yet, when a non customer clicks in the given link in the newsletter, the customer will autologon in a guest account. PS: I'am using OsCommerce, but php programming is php programming... The question: What should I use to star designing one function to do this? Best Regards, Andre. Quote Link to comment https://forums.phpfreaks.com/topic/131273-how-to-deal-with-autologon-feature-in-a-given-link-by-email/ Share on other sites More sharing options...
awpti Posted November 3, 2008 Share Posted November 3, 2008 So, how are you determining that the user who clicks on the link is who they claim to be? This is just a bad idea. Don't do it. Quote Link to comment https://forums.phpfreaks.com/topic/131273-how-to-deal-with-autologon-feature-in-a-given-link-by-email/#findComment-681620 Share on other sites More sharing options...
matto Posted November 4, 2008 Share Posted November 4, 2008 I agree with awpti - Don't do it. One thing to consider: What happens if the email sent to a customer is forwarded onto someone who is a non customer.... Quote Link to comment https://forums.phpfreaks.com/topic/131273-how-to-deal-with-autologon-feature-in-a-given-link-by-email/#findComment-681682 Share on other sites More sharing options...
laffin Posted November 4, 2008 Share Posted November 4, 2008 I need to use a function in a mailing list that does the following: If this is a mailing list (mass mail), there isnt a convienent way of saying 5 users of 20 get a specific email. (reasion its mass mail, everyone gets the same piece of mail). First ya have to learn/code, how to seperate the members from the guests. than mass mail the guests, and send the members specific emails. as with others I wuouldnt automatically do this, I wud make this optional at user request. Quote Link to comment https://forums.phpfreaks.com/topic/131273-how-to-deal-with-autologon-feature-in-a-given-link-by-email/#findComment-681753 Share on other sites More sharing options...
lopes_andre Posted November 4, 2008 Author Share Posted November 4, 2008 So, how are you determining that the user who clicks on the link is who they claim to be? This is just a bad idea. Don't do it. Hi, When we send an email to a current customer(registred), we send the email to the email he have used in the registration. When we send email to a non registred customers we will confirm before send if the email is on the list of registred customers. If not we will send the e-mail with a link to autologon to a guest account. This is possible? There is "the best way" of doing this? Best Regards, André. Quote Link to comment https://forums.phpfreaks.com/topic/131273-how-to-deal-with-autologon-feature-in-a-given-link-by-email/#findComment-681937 Share on other sites More sharing options...
JonnoTheDev Posted November 4, 2008 Share Posted November 4, 2008 You need to flag which members are customers and which are not in your mailing list table. Use the flag to determine what link you place in the newsletter email. Write a login script for each type of user (this will be the link in the email). This script will retrieve the customer details, set login sessions etc or set a guest session if not a customer. As others have stated this is a poor idea as you are stripping the authentication process out and leaving a massive security hole in your application. All it will take is for one of the email links to get posted on the web somewhere and your site will get abused. Quote Link to comment https://forums.phpfreaks.com/topic/131273-how-to-deal-with-autologon-feature-in-a-given-link-by-email/#findComment-681979 Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.