[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[List Home]
|
RE: [higgins-dev] UI Mockups for Authentication Service 1.1
|
- From: Tom Carroll <TCarroll@xxxxxxxxx>
- Date: Tue, 27 Oct 2009 05:43:36 -0700
- Accept-language: en-US
- Acceptlanguage: en-US
- Delivered-to: higgins-dev@eclipse.org
- Thread-index: AcpWO/ZUiVzGKy4TTz+vta+GJq38xwAxrrNw
- Thread-topic: [higgins-dev] UI Mockups for Authentication Service 1.1
>> But i think we have to use captcha with case #1 for "Check Availability" and "Confirm Email & Continue".
Do we need to protect the "Check Availability" with a CAPTCHA, or just the "Confirm & Continue" transaction? If the former, then I think we need to break out CAPTCHA/Check Available into its own page. If the latter, then maybe we put it all into the one page.
-----Original Message-----
From: higgins-dev-bounces@xxxxxxxxxxx [mailto:higgins-dev-bounces@xxxxxxxxxxx] On Behalf Of Alexander Yuhimenko
Sent: Monday, October 26, 2009 8:57 AM
To: Higgins (Trust Framework) Project developer discussions
Subject: Re: [higgins-dev] UI Mockups for Authentication Service 1.1
Thanks Tom,
But i think we have to use captcha with case #1 for "Check Availability" and "Confirm Email & Continue".
Email is only one of possible ways (channel) to obtain one-time authentication code, but i couldn't find UI for using sms or something else.
I believe we don't have to store passphrase on server, do we?
--
thanks,
Alexander Yuhimenko
...