shoebox Posted March 29, 2010 Share Posted March 29, 2010 Hi, I have a logon system with a forgotten password process that mails the user a link like: http://localhost/myProject/[email protected]&key=28623674 to change their password; it works fine. I was just wondering, from a security perspective, like facebooks, is there a way to redirect the user is they go mucking with the URL in the browser toolbar? thanks, SB Quote Link to comment https://forums.phpfreaks.com/topic/196845-activation-url-security/ Share on other sites More sharing options...
GetPutDelete Posted March 29, 2010 Share Posted March 29, 2010 Where do you want them to be redirected to? You could just check in the database that a user with that email address and key exists, and if not bring up a message saying there was an error. Quote Link to comment https://forums.phpfreaks.com/topic/196845-activation-url-security/#findComment-1033489 Share on other sites More sharing options...
shoebox Posted March 29, 2010 Author Share Posted March 29, 2010 cheers; was just not thinking about it properly. Quote Link to comment https://forums.phpfreaks.com/topic/196845-activation-url-security/#findComment-1033502 Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.