That would be nice too -- you could use roles to distinguish between confirmed and unconfirmed users (and just restrict the sensitive areas of the site to the "confirmed" role) but I guess there still needs to be application logic to generate the unique URL, email it to the user (given that RIFE has no built-in concept of a user having an email address) and add the appropriate role to the user once the link is followed.
That should indeed be possible. It would actually be an implicit feature since the account would already be created by the credentials manager, it would however not yet be possible to authenticate.
How much of that necessarily has to be application logic and how much of it RIFE could provide as built-in services, I'm not entirely sure, but based on how often I see it, "click a link in the confirmation email before we let you access the whole site" seems like a very common thing for people to want to do. (I will want it on this project, in fact; I was assuming I'd just roll my own.) It also feels like something that *could* be made fairly generic.
That's a good idea actually, I didn't even think that far ;-) -- Geert Bevin Uwyn "Use what you need" - http://uwyn.com RIFE Java application framework - http://rifers.org Music and words - http://gbevin.com _______________________________________________ Rife-users mailing list [email protected] http://lists.uwyn.com/mailman/listinfo/rife-users
