richlewt Posted January 1, 2004 Share Posted January 1, 2004 Hi I noticed that a lot of shops now ask you to enter your email address twice to make sure you have not made a typo. Does anyone know if there is a mod to the signup page that will make you enter your email address twice and do a little compare on it? thanks Rich "May the seam be with you" Link to comment Share on other sites More sharing options...
richlewt Posted January 5, 2004 Author Share Posted January 5, 2004 Anyone please? I think this is quite important because if someone enters an email address incorrectly then all correspondance is going to be lost. thanks Rich "May the seam be with you" Link to comment Share on other sites More sharing options...
Guest Posted January 5, 2004 Share Posted January 5, 2004 don't know if there's a contrib, but it'd be fairly easy, I imagine to put a second input box into the HTML and use a javascript to check if they're the same. It's a good idea... please be sure to feed back here if you do it! Link to comment Share on other sites More sharing options...
kair528 Posted January 5, 2004 Share Posted January 5, 2004 There is actually a better way to do it, I've seen a contribution that sends password to the email account, so they cannot login unless they provided a valid email address.... I thought this might be useful. Link to comment Share on other sites More sharing options...
richlewt Posted January 5, 2004 Author Share Posted January 5, 2004 That sounds a lot better, I have just had a trawl through but can not seem to find it. Does anyone know the name of that contribution? thanks Rich "May the seam be with you" Link to comment Share on other sites More sharing options...
Guest Posted January 5, 2004 Share Posted January 5, 2004 I made my own email validation by comparing two email fields at signup. I then send out the password to that email and they need that password in order to log in and buy. Then I know that at least all customers entering are valid. There is a contribution: http://www.oscommerce.com/community/contributions,1296 /Fred Link to comment Share on other sites More sharing options...
Guest Posted January 5, 2004 Share Posted January 5, 2004 freds way of doing it seems much more sensible - We don't want to lock people out with draconian security methods, just to make sure that they don't lock themselves out by mis-typing their email. Link to comment Share on other sites More sharing options...
Guest Posted January 5, 2004 Share Posted January 5, 2004 Also, I know that I, for one like to use the same few passwords for lots of sites - then I don't have to keep remembering them. I hate it when sites send me a password rather than let me choose my own. see article here:http://www.useit.com/alertbox/20001126.html Link to comment Share on other sites More sharing options...
1quicksi Posted January 5, 2004 Share Posted January 5, 2004 Also, I know that I, for one like to use the same few passwords for lots of sites - then I don't have to keep remembering them. I hate it when sites send me a password rather than let me choose my own. see article here:http://www.useit.com/alertbox/20001126.html This is not a good idea on how to manage passwords. And sites that generate passwords are increasing your security as it stops people from choosing a dictionary easy to figure out password. Although I do like sites that allow you to modify it once it has been set. knowledge base | Contributions | Search Link to comment Share on other sites More sharing options...
Guest Posted January 5, 2004 Share Posted January 5, 2004 This is not a good idea on how to manage passwords. And sites that generate passwords are increasing your security as it stops people from choosing a dictionary easy to figure out password. Although I do like sites that allow you to modify it once it has been set. I know that technically it's risky, and I'm much more careful with things like ftp/cpanel passwords etc, but for sites that only store my address and email, such as forums, download sites and e-commerce sites that don't store my credit card details (none should, IMO), then I'd rather take the risk of someone bothering to find out my (pretty sensible) password than phaff around making up a new one for every site. Link to comment Share on other sites More sharing options...
richlewt Posted January 6, 2004 Author Share Posted January 6, 2004 I made my own email validation by comparing two email fields at signup. I then send out the password to that email and they need that password in order to log in and buy. Then I know that at least all customers entering are valid. There is a contribution: http://www.oscommerce.com/community/contributions,1296 /Fred Fred, Thanks for the contribution, i have installed it successfully and all is working great. Thats just what was needed. thanks Rich "May the seam be with you" Link to comment Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.