What is the best approach for creating a password-less login system? I’m thinking to

Question

0

Editorial Team

Asked: May 16, 20262026-05-16T01:54:27+00:00 2026-05-16T01:54:27+00:00

What is the best approach for creating a password-less login system? I’m thinking to

0

What is the best approach for creating a password-less login system?

I’m thinking to use some sort of randomly generated 16 character token, for example:

mysite/members/index.php?token=2j0n1qyjgcxyu3oy

I’m developing a quotation system and the idea is that the suppliers don’t have to register, instead I create their account for them and all they have to do is click the link in their email in order to submit a quote. This will encourage suppliers to submit a quote, as they’ll know they don’t need to register or log in.

There isn’t much harm that someone could do should they happen to guess the token, but I’d still like to make the system as secure as I can without requiring a password.

Report

Leave an answer
Cancel reply

You must login to add an answer.

Need An Account,

1 Answer

Editorial Team · Answer 1 · 2026-05-16T01:54:28+00:00

Editorial Team

2026-05-16T01:54:28+00:00Added an answer on May 16, 2026 at 1:54 am

A token would be fine, I would use an MD5 or SHA1 hash for it.

But so you are aware, which it seems you are, this can be sniffed by packet sniffers, especially through email, so just know that. But if that is not an issue, I do not see a problem with using a token for a supplier. If it does get sniffed or abused, simply re-generate a new token for them.

Hope that helps.

0

Reply
Share
Share

- Report

Sign Up

Sign In

Forgot Password

The Archive Base Latest Questions

What is the best approach for creating a password-less login system? I’m thinking to

Leave an answerCancel reply

1 Answer

Leave an answer
Cancel reply