Results 1 to 2 of 2

Thread: Account Activation

  1. #1
    Join Date
    Jul 2006

    Account Activation

    Hi, i have a few questions in relation to account activation, which i hope someone can help me with:

    01 - when a user creates an account, should we limit the time in which they can activate the account using the link in their email

    02 - if so, how should we handle the link if the token no longer appears in the database

    03 - is there anything i need to look out for in terms a user misusing the link below


    Thanks in advance for your help

  2. #2
    Join Date
    Aug 2004
    When I've done something along those lines, I include both the token used in the link and the timestamp when it was generated/sent as 2 fields in the relevant db table. Then if a request comes in with a token, I only process it if (a) the token is found in the DB and (b) the current date/time is no more than the stored timestamp + whatever max interval you choose.
    "Well done....Consciousness to sarcasm in five seconds!" ~ Terry Pratchett, Night Watch

    How to Ask Questions the Smart Way (not affiliated with this site, but well worth reading)

    My Blog
    cwrBlog: simple, no-database PHP blogging framework

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
HTML5 Development Center