dpdhf02040 2011-10-19 16:27
浏览 50
已采纳

重发确认电子邮件问题

I'd like to offer a way for me to "resend confirmation" email to users who have recently signed up for accounts at my site.

What is a good way to look up their info and make sure the request came from them?

They are able to log in without confirming their email. I was thinking I would use jquery.post to send their id to a page, which looks up their email and resends the confirmation. Is this secure enough?

If I have a session set in one page where I am sending a jquery.post from, will the session variables be passed to the page I post to?

  • 写回答

1条回答 默认 最新

  • dsfs23434 2011-10-19 16:29
    关注

    The cookie identifying the user's session will be passed along when the jQuery post is sent which will automatically populate $_SESSION.

    Make sure you store their user ID in their session, not as a separate cookie that the user could tamper with.

    本回答被题主选为最佳回答 , 对您是否有帮助呢?
    评论

报告相同问题?

悬赏问题

  • ¥15 使用EMD去噪处理RML2016数据集时候的原理
  • ¥15 神经网络预测均方误差很小 但是图像上看着差别太大
  • ¥15 Oracle中如何从clob类型截取特定字符串后面的字符
  • ¥15 想通过pywinauto自动电机应用程序按钮,但是找不到应用程序按钮信息
  • ¥15 如何在炒股软件中,爬到我想看的日k线
  • ¥15 seatunnel 怎么配置Elasticsearch
  • ¥15 PSCAD安装问题 ERROR: Visual Studio 2013, 2015, 2017 or 2019 is not found in the system.
  • ¥15 (标签-MATLAB|关键词-多址)
  • ¥15 关于#MATLAB#的问题,如何解决?(相关搜索:信噪比,系统容量)
  • ¥500 52810做蓝牙接受端