2

I wrote an email verification script in php and it works fine for me but when some users click on the link it is already expired.

I investigated and it looks like to me that link is visited by their email client or mail protection service before they click it and hence it gets expired. Is there a way to make sure that link is clicked by user himself instead of a bot or antivirus service.

Bobulous
  • 12,967
  • 4
  • 37
  • 68
mysterious
  • 1,450
  • 5
  • 29
  • 56
  • Could you require that a CAPTCHA test is completed successfully before executing the action of the link and expiring it? – Bobulous Feb 20 '15 at 20:08
  • may be last option.. I have a second last option too. Send URL without link and ask user to copy/past this url into browser. This might work too but not first option. – mysterious Feb 20 '15 at 20:11
  • I think some of these ideas have been covered in another question about email verification: http://stackoverflow.com/questions/5149061/is-email-verification-with-a-link-a-bad-idea – Bobulous Feb 20 '15 at 20:13
  • Do you really care if they verify it twice? Rather than showing them an error when they've gone there twice, it'd be better to just allow the user to verify their address repeatedly. – ceejayoz Feb 20 '15 at 20:40

0 Answers0