Hi there.
I have been asked by a client to develop a user authentification system. Where a user can login and edit their details and submit it. However, he wants the users of the system to be able to login to the site from a URL he emails them and not have to go through the process of entering a login and password atall. But it still must be secure.
Is there any way of securely sending the username/password in the URL inorder to access the admin section or concept of doing something similar?
Thanks
User Authentification System Guidelines
Moderator: General Moderators
What do you mean by token?
Thanks
There's no way to guarantee that the URL can't be sent by a third party. Tell your client he's out to lunch. You can make that token as complex as possible, but Joe Script Kiddie will still be able to copy and paste it into his browser.
Real programmers don't comment their code. If it was hard to write, it should be hard to understand.