On Nov 23, 12:04 pm, Ants Pants <antsmailingl...@gmail.com> wrote:
> Hello all,
>
> I was wondering if anyone has had experience of users registering to your
> application and you send an email to the address they provided and they have
> to click it to complete registration. Standard stuff but how best to do it?
>
> What should I put in the query string of the link I send?
>
> The session id? I cold always take that from the cookie.
> An encrypted version of the session id?
> Or something else.
>
Authlogic has the concept of a perishable token.
http://www.binarylogic.com/2008/11/16/tutorial-reset-passwords-with-authlogic/
shows how to use this to do password resets, which from this point of
view is practically the same as what you're trying to: the important
bit is that users can login via something other than their password,
which is sent by email. Even if you're not using authlogic you may be
able to draw some inspiration from it
Fred
> How have you tackled this?
>
> I look forward to your replies.
>
> CIA
>
> -Ants
--
You received this message because you are subscribed to the Google Groups "Ruby on Rails: Talk" group.
To post to this group, send email to rubyonrails-talk@googlegroups.com.
To unsubscribe from this group, send email to rubyonrails-talk+unsubscribe@googlegroups.com.
For more options, visit this group at http://groups.google.com/group/rubyonrails-talk?hl=en.
No comments:
Post a Comment