Here are some of the ideas I'm playing around with: Option 1: automagically create an email address I've been reading on Login Methods from the book. I wonder if there's an easy way to create a third-party email address (gmail for example) for those users who have none? If a user say they don't have an email address, they will be given an option to automatically create a gmail address for them using the basic necessary data they provide.
And then authenticate the user via SMTP/Gmail? Or ... Option 2: basic_auth service for users without email addresses The user without an email address is required to nominate a security question and answer for their account and added to the basic_auth server. The login form will ask them to provide: lastname, firstname, dob, and then select the security question they nominated last time. If they fail this step, they will have to re-enter their complete data again and treated as new users instead of returning users. The issue I see with option 2 is that the database might be littered with duplicate users who cannot authenticate themselves against the server. (You see, the returning visitors may not have to come back until 4 months later, or longer - like a year. Thanks for allowing me to pick your brain, and the feedback. :D On Apr 12, 9:22 am, pbreit <[email protected]> wrote: > So how do you want to identify users? Maybe auth_user.username would work?
