Saturday, August 30, 2014
Op zaterdag 30 augustus 2014 18:22:14 UTC+2 schreef Hassan Schroeder:
On Sat, Aug 30, 2014 at 8:05 AM, Roelof Wobben <rwo...@hotmail.com> wrote:
>> > > The only thing I need is that I as admin can register user with a
>> > > password.
>> > > If the user looses her/his password then I get a mail and I as admin
>> > > can make a new one.
> Why I need a password for staff members so they can only see which invoice
> is not payed or add a payment.
Requiring staff to authenticate makes sense.
Having *you set the password* for each staff member does not.
For one thing, it doesn't scale. More importantly, how do you plan
to communicate this password to the person? By email? Extremely
insecure. By phone? In person? Not always convenient.
Enabling each staff member to *set/reset their own password* is a
far more efficient (and common) pattern.
--
Hassan Schroeder ------------------------ hassan.s...@gmail.com
http://about.me/hassanschroeder
twitter: @hassan
Oke, So im on the wrong path. That is why I could not make it work.
Anyone suggestions how I can make it work with invites or another way ?
Roelof
You received this message because you are subscribed to the Google Groups "Ruby on Rails: Talk" group.
To unsubscribe from this group and stop receiving emails from it, send an email to rubyonrails-talk+unsubscribe@googlegroups.com.
To post to this group, send email to rubyonrails-talk@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/rubyonrails-talk/17657adf-c8af-46de-a497-11ca139f1913%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment