Quantcast
Channel: Review my design: Password resetting facility for web site - Stack Overflow
Browsing latest articles
Browse All 4 View Live

Answer by Jeff Meatball Yang for Review my design: Password resetting...

First, I would suggest you treat a password-reset like a secure business transaction. SSL on, and a single request is independent of other requests for the same account. Generate a random, non-reusable...

View Article



Answer by integer for Review my design: Password resetting facility for web site

Optimally: Log me in through OpenID. Less coding complexity, less clicking, less typing, less time wasted. Done. Question is moot. No need to worry any more, someone else already solved this problem....

View Article

Answer by Arseni Mourzenko for Review my design: Password resetting facility...

Q1. IMHO, there is a flaw. Why are you asking the user to enter a new password? I would rather generate a new random password and send it to him. After receiving it, the user can login using this...

View Article

Review my design: Password resetting facility for web site

When someone has lost a password, they click on the lost or forgotten password link. They will need to enter their email address, then answer their own secret question if the secret question is...

View Article
Browsing latest articles
Browse All 4 View Live




Latest Images