0

Email-confirm-url

I have created an url: path(r'myurl/<str:userid>/<str:username>>', views.MyView.my_def, name = 'myname') The client receives an email with this link, to confirm his email-address. Now I'm wondering, if it makes sense - from a security-perspective - to put some kind of identifier in the code. Some kind of token, or the users session-id. Otherwise I think s.o. could guess the next id and then confirm an email-adress, he has actually no access to. Does that make sense? Best practices?

django security user-confirm

14th Apr 2021, 12:25 PM

Fu Foy

3 Answers

+ 2

Why don't you try the user management from django.

19th Apr 2021, 7:47 AM

AKSHAY🇮🇳

+ 2

You can follow this tutorial https://medium.com/@frfahim/django-registration-with-confirmation-email-bb5da011e4ef

26th Apr 2021, 10:32 AM

AKSHAY🇮🇳

+ 1

Reinventing the wheel :) Thank you for your input! I'll try this next time!

26th Apr 2021, 7:13 AM

Fu Foy

Hot today

What's wrong with this code ? ( Beginner)

3 Votes

Ejercicio Pytho

0 Votes

Please rate my code from 1 to 10

2 Votes

Bug on "Java for Beginners Module 3 Quiz"

1 Votes

Write a program to find the strings are in isogram or not

0 Votes

0 Votes

0 Votes

1 Votes

Currently learning C++, I’m getting into socket programming with C++

0 Votes

0 Votes