Short Story: I'm a Newbie in application security. I need to implement a login via email.
Long Story: I have built a basic web chat application using SignalR, now i'm working in saving conversation in SQLServer Db. But my next challenge is to create a chat invitation email that will be send to all users from my db. The email should contain a link that when users will click they will be redirected to the chat web-page and automatically signed in.
My question is: Can it be done? And if it can, how can it be done
A very insecure method to be actually implemented in an applicaton (or in any application).
But, yes, if you want to login the users automatically. Then you can create a URL that redirects the user to such a page where the UserName and the Password would be automatically set to login the user.
Tip: Instead of using a username/password there, you can use a token generated by the user each time he sends the email to others.
The sh*t I complain about
It's like there ain't a cloud in the sky and it's raining out - Eminem
~! Firewall !~
When you write your insert statement, don't attempt to insert a value into the fields that have identities set. Identities are automatically created for you by the database server. If you want to get the value that you created back, you simply use