Luke Lincoln

Results 2 comments of Luke Lincoln

user register with duplicate email, you can add a specific message

My thoughts: This would confirm to a potential hacker that the email address does exist which is generally frowned upon. [https://www.owasp.org/index.php/Authentication_Cheat_Sheet#Authentication_and_Error_Messages](url) Maybe its possible to provide a token that can...

user register with duplicate email, you can add a specific message

This is perhaps an opportunity to get the best of both, a configurable setting that controls the verbosity of feedback messages would be a really nice feature. The tokenized strings...