What are you guys using to validate new user logins? CAPCHAs? Email
validation?
Here's what I'm doing:
1. User registers
2. Rails adds a SHA-1 validation key to the user account
3. Rails sends user an email with a link that contains the SHA-1 key
4. User gets email and clicks link
5. If SHA-1 is valid, user account is activated (by setting
validation key to '')
6. User can now login
I'm also using routes to hide my controller and action name...
http://url.com/a1ea55a264d39addbabaa967269aee40a951bb84G5
Best,
Patrick
_______________________________________________
Sdruby mailing list
[email protected]
http://lists.sdruby.com/mailman/listinfo/sdruby
