Home/ Questions/Q 65925
In Process

The Archive Base Latest Questions

Editorial Team
  • 0
Asked: 2026-05-10T19:01:22+00:00

What are some good suggestions or resources to look at to help me secure

  • 0

What are some good suggestions or resources to look at to help me secure a single click URL based authentication?

Essentially, the situation is a third party system which accepts an HTTPS request, through the browser, where you supply authentication information (un, pw, authkey, etc…). The service then, upon authenticating the provided credentials, will allow or deny login access. The point being, that if someone clicks on the link, they’re automatically granted access to this third party system.

Currently, there isn’t a whole lot of security surrounding the whole process, (which isn’t a big deal because the product isn’t in production yet) and the third party is willing to make some modifications to secure this up a bit.

I’ve already determined I need to hash the information, and probably even submit it via a POST to prevent it from showing information in the browser history. But I’d like a little input on how you all would handle something like this.

[Edit: Requests are and will continue being sent via HTTPS. I also modified the HTTP previously used to be HTTPS]

Share

Leave an answer

You must login to add an answer.

Need An Account,

1 Answer

    1. Don’t think about ‘secure this up a bit’. It’s either secure from the ground up, or it’s got holes that will cost you dearly.

    2. Look at HTTP Digest Authentication. It’s simple, reliable and works well under most circumstances.

    3. Look at the OWASP.org top-10 vulnerabilities. Be sure you understand and address each one.

    • 0