I've completed a 5200 word white paper on User Registration and Login Methods, Using A5 Security Framework. You can find it at http://alphatogo.com/learning.htm.
The paper ended up being a good discussion on the Security Framework as an integral component of user registration and login. It's written in terms of "process" not "coding", so should be useful for anyone who has already built a web application, and those just considering the task. I'd appreciate any comments.
If you have not already done so, complete the form on my Contact page and I'll keep you informed of any new documents.
Here's the table of contents:
Background
- Purpose of Registration and Login
- User Registration requirements
- User Login requirements
- Examples of Registration and Login
Alpha Five
- Why is Alpha Five used here?
- Alpha Five Security Framework
- Security Groups
Registration Components
- Opt-In � Single or Double?
- Login - Email Address or non-email value?
- The Registration Form
- Security Question
- Captcha Validation
- Assigning Users to Security Groups
- Opt-out
- Terms and Conditions / Privacy Policy
Registration Models
- Open Model
- Subscription Model
- Authenticated Model
- Methods for Established Companies
Login Models
- Login Dialog
- Lost password
- Lost Username
- Remember Me and Login Expiration
- Recording Logins
- Login using a Script
- Deny user access
Conclusion
The paper ended up being a good discussion on the Security Framework as an integral component of user registration and login. It's written in terms of "process" not "coding", so should be useful for anyone who has already built a web application, and those just considering the task. I'd appreciate any comments.
If you have not already done so, complete the form on my Contact page and I'll keep you informed of any new documents.
Here's the table of contents:
Background
- Purpose of Registration and Login
- User Registration requirements
- User Login requirements
- Examples of Registration and Login
Alpha Five
- Why is Alpha Five used here?
- Alpha Five Security Framework
- Security Groups
Registration Components
- Opt-In � Single or Double?
- Login - Email Address or non-email value?
- The Registration Form
- Security Question
- Captcha Validation
- Assigning Users to Security Groups
- Opt-out
- Terms and Conditions / Privacy Policy
Registration Models
- Open Model
- Subscription Model
- Authenticated Model
- Methods for Established Companies
Login Models
- Login Dialog
- Lost password
- Lost Username
- Remember Me and Login Expiration
- Recording Logins
- Login using a Script
- Deny user access
Conclusion
Comment