Cookie Protection against Forwarding

XMLWordPrintable

    • Type: Improvement
    • Resolution: Unresolved
    • Priority: Trivial
    • COmanage Registry Future
    • Affects Version/s: None
    • Component/s: Registry
    • None
    • Environment:
      registry.larpp.internet2.edu

      It'd be neat to have an option for COmanage set a cookie during the registration process that is checked again on email validation. That would help prevent careless email forwarding. It could just be a random UUID or something.

      This would also be a nice layer of protection against spear-phishing attacks originating from SMTP(can tell users to always expect forbidden if they didn't start the process).

            Assignee:
            Benn Oshrin (internet2.edu)
            Reporter:
            Nate Klingenstein (Inactive)
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Created:
              Updated: