We are setting up a couple web pages that we want to “register” users.
I wanted to do a confirmation email – and have them click a link to confirm the registration.
Here’s the problem.
You can’t just give a URL that contains a token in a parameter (GET or POST) since a lot of email hosts, will hit the URL in order
To show in the preview page, or to download an image. So it looks like the user clicked on the link, but in many cases it’s just
The mail server that the user is using….
Yes, I can have the user click a web page, then physically click a submit button after entering the token into a text box, but
That’s a two step process.
Looking to make it a one step process.
Is there anyway to know whether it’s the user or a mail preview that’s hitting a URL? I’ve tried check the agent string, but nothing really
Jumps out, and most times, the string is identical to a browser agent string (most likely being used by cURL or something).
Has anyone else come across this? Or just settled with the 2 step process?
Thanks
funny. that's as good as driving through the neighborhood pushing your garage door opener - to see who has the same frequency as you!
I was thinking about this more.
I could still use the GET to prepopulate the fields (with the emailed token in the URL) - but still require a click to submit the form -
using two webpages instead of one - but at least they wouldn't need to copy/paste and then submit.
George
yup....seems I wasn't the only one.
I like the idea of the phantom link to identify - but then it would be a matter of integrating two single click pages and putting
a delay in the primary URL that if the phantom URL didn't get clicked or was clicked within the same second to ignore.
George
To unsubscribe, email to: mvdbms+unsubscribe@googlegroups.com
For more options, visit http://groups.google.com/group/mvdbms
--
You received this message because you are subscribed to
the "Pick and MultiValue Databases" group.
To post, email to: mvd...@googlegroups.com
To unsubscribe, email to: mvdbms+unsubscribe@googlegroups.com
Depends on who the KISS is for. KISS for programming – yes, landing page best – but would take 2 clicks minimum
KISS for the client – then phantom link and timed delays – as it would allow 1 click .
But the uncertainty could still apply even with the delay – if the email scanning doesn’t scan all links in the email
Then the system could still think the client requested the action.
I think it would depend on the severity of the click – if it was just to pull/display data – doesn’t matter
But if it were say to opt out of something, or worse opt in – which could cause the client to receive future
Mailings, especially with GDPR looming around the corner….and CAN SPAM act in the US.
Given those two – 2 clicks might be a very small price to pay vs downstream $$ price in fines.
George
From: mvd...@googlegroups.com <mvd...@googlegroups.com>
On Behalf Of Kevin Powick
Sent: Monday, May 7, 2018 4:47 PM
To: Pick and MultiValue Databases <mvd...@googlegroups.com>
Subject: Re: [mvdbms] Re: [slightly offtopic] - methods used to verify a registration - by a confirmation email/web page
I think that "phantom" links and timed delays will lead to more problems and uncertainty than it's worth. Just KISS.
--
I see what your saying…hmm. An Onload auto submit – I don’t think the email scanners execute javascript
Or hopefully they shouldn’t. That would be one distinction.
Thanks. Wasn’t thinking that route.
George
From: mvd...@googlegroups.com <mvd...@googlegroups.com>
On Behalf Of Albert Kallal
Sent: Monday, May 7, 2018 7:58 PM
To: Pick and MultiValue Databases <mvd...@googlegroups.com>
Subject: Re: [mvdbms] Re: [slightly offtopic] - methods used to verify a registration - by a confirmation email/web page
I guess the quick question is:
--
--
You received this message because you are subscribed to
the "Pick and MultiValue Databases" group.
To post, email to: mvd...@googlegroups.com
To unsubscribe, email to: mvdbms+unsubscribe@googlegroups.com
I forgot about the hidden links thing. Yes we also implemented an href that was invisible and impossible for a human to click on. This finds bots 100% of the time.