Himself Posted January 6, 2003 Share Posted January 6, 2003 I'm sorry if this appears in the wrong topic or has been discussed before - I couldn't find it if it has. A beta tester for our site has commented that security would be better if we auto generated a password for them, rather than allowing them to select their own password. This avoids the problem of users using the same password from one site to another and allowing anyone with this knowledge and their email address to order (in the event of cash on delivery). Has their been an attempt at producing this code already? Link to comment Share on other sites More sharing options...
burt Posted January 6, 2003 Share Posted January 6, 2003 This would be quite easy to achieve, however the onus for choosing a password is on the customer. To implement it you will need; remove the password and confirm for create_account_process.php make a random password function to create the password and insert to the database. email the password to the customer remove the ability for the customer to change the password change the forgotten password routines to create a new password, email it to the address on record and then crpyt it into the database. Everything you need is found at www.php.net Anything I've missed ? Maybe. Good luck. Link to comment Share on other sites More sharing options...
New 
Recommended Posts
Archived
This topic is now archived and is closed to further replies.