shoebox Posted March 29, 2010 Share Posted March 29, 2010 Hi, I have a logon system with a forgotten password process that mails the user a link like: http://localhost/myProject/[email protected]&key=28623674 to change their password; it works fine. I was just wondering, from a security perspective, like facebooks, is there a way to redirect the user is they go mucking with the URL in the browser toolbar? thanks, SB Link to comment https://forums.phpfreaks.com/topic/196845-activation-url-security/ Share on other sites More sharing options...
GetPutDelete Posted March 29, 2010 Share Posted March 29, 2010 Where do you want them to be redirected to? You could just check in the database that a user with that email address and key exists, and if not bring up a message saying there was an error. Link to comment https://forums.phpfreaks.com/topic/196845-activation-url-security/#findComment-1033489 Share on other sites More sharing options...
shoebox Posted March 29, 2010 Author Share Posted March 29, 2010 cheers; was just not thinking about it properly. Link to comment https://forums.phpfreaks.com/topic/196845-activation-url-security/#findComment-1033502 Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.