Skip the ID and encrypted email, and just use a hashed email: test.cfm?e=#hash(q.email)#
it's easy to look up, uniquely identifying, will generate a relatively short URL, has only safe characters, etc. cheers, barneyb On Tue, Jun 16, 2009 at 12:42 PM, Chad Gray<[email protected]> wrote: > > I have a program that emails a user a link to verify their email. > > So I thought I would take their email and use encrypt to mask it. Then > decrypt it to verify the email against the database. > > So I wrote this and put it in the email so they could click on it: > > <a href="test.cfm?UID=#urlencodedFormat(encrypt(q.email, > "somelongkey"))#&id=#arguments.userID#"> > > I am getting some errors where some users the URL variable "ID" (the second > variable in the hyperlink) is not defined. Like they clicked on the link in > the email and part of the URL variables were chopped off. > > Anyone recommend a better way of making the URL so I can validate the users > email address? > > I thought URLEncodedFormat would fix any strange characters that would not > pass in a URL variable. > > Maybe it is their email program chopping off the URL variables? > > > > ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Want to reach the ColdFusion community with something they want? Let them know on the House of Fusion mailing lists Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:323553 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
