DesignersTalk - View Single Post

tejssidhu · 17-07-2006, 14:05

Hi

Wasn't sure which forum to put this in so thought I'd put it in this one.

Basically I have a SQL DB which has a table of users. These users receive customised emails that are created using a VB.NET app. These emails contain links to our website (some of which require the user to first log in).

I am wondering if you guys know of a way to implement a fairly secure method of allowing this. We (as a company) dont store anything tooo serious about users (i.e. we are not an ecommerce site), however we do hold quite a bit of personal information (like stuff u would find on a CV).

I have one method in mind but am not sure of the advantages + disadvantages of this. This method requires a GUID to be created for each user and this be sent in the email as part of the link. When the link is clicked the page on our side checks to see if the GUID in the link matches the GUID in the db for that particular user.

Do you guys have any other ideas or any better methods?

Thanks in advance.

17-07-2006, 14:05	#1 (permalink)
tejssidhu Registered User Join Date: Jul 2006 Posts: 1	Implement 1click sign in Hi Wasn't sure which forum to put this in so thought I'd put it in this one. Basically I have a SQL DB which has a table of users. These users receive customised emails that are created using a VB.NET app. These emails contain links to our website (some of which require the user to first log in). I am wondering if you guys know of a way to implement a fairly secure method of allowing this. We (as a company) dont store anything tooo serious about users (i.e. we are not an ecommerce site), however we do hold quite a bit of personal information (like stuff u would find on a CV). I have one method in mind but am not sure of the advantages + disadvantages of this. This method requires a GUID to be created for each user and this be sent in the email as part of the link. When the link is clicked the page on our side checks to see if the GUID in the link matches the GUID in the db for that particular user. Do you guys have any other ideas or any better methods? Thanks in advance.