IWETHEY v. 0.3.0 | TODO
1,095 registered users | 0 active users | 0 LpH | Statistics
Login | Create New User
IWETHEY Banner

Welcome to IWETHEY!

IWETHEY Home / IWETHEY Board / Theory and Practice of Programming Forum / I'd leave it to the backend server(s)
Post #361,977
by scoenye
8/23/12 8:10:27 PM
Reply
New I'd leave it to the backend server(s)
Unless you are offering only a single package, doing it via links in the mail will make for a rather choppy experience. At least, I can't see how a customer could order from distinct linkswithout going through the order process multiple times. It may function for a webmail user, but a dedicated e-mail client will likely cause the browser to just open separate pages/tabs/windows. (At least, that is what just happened as I tried an offer we got.)

I think a single encrypted customer ID and a hash of the offer sent in the e-mail should be enough assuming your company is not using homebrew algorithms... (you can throw more tokens in, but if the first one can't be broken, the rest doesn't really matter.)
Post #361,978
by crazy
8/23/12 9:52:40 PM
Reply
New Good advice, but yes, mostly single
My product is a very expensive seminar to a certain set of industry professionals who have already taken a course with us.

So when they click on a link in this email, it is listing a calendar of events, in their local area, and they almost always will choose just one. But when they do choose it, the 1st screen they see is the screen we would present as if they just added it to a cart on our site. Then they can "shop some more" or go to checkout.

The checkout screen has the various information we want to avoid having them type.
     "Securing" online data to be easily accessed by a few for a - (crazy) - (8) - Aug. 23, 2012, 07:16:45 PM EDT
         I'd leave it to the backend server(s) - (scoenye) - (1) - Aug. 23, 2012, 08:10:27 PM EDT
             Good advice, but yes, mostly single - (crazy) - Aug. 23, 2012, 09:52:40 PM EDT
         Definitely go for the code, not embedding. -NT - (malraux) - (5) - Aug. 23, 2012, 10:42:51 PM EDT
             That's what I decided a month ago - (crazy) - (4) - Aug. 24, 2012, 01:35:02 PM EDT
                 I was busy so I didn't answer before. - (static) - Aug. 24, 2012, 07:14:21 PM EDT
                 Another answer late to the party - (drook) - (2) - Aug. 25, 2012, 09:40:38 AM EDT
                     Hmm - (crazy) - (1) - Aug. 26, 2012, 06:59:52 AM EDT
                         Then generated, expiring URLs might be all you need -NT - (drook) - Aug. 26, 2012, 11:47:55 AM EDT

Do we really have to hide from da cops in da oven, Muggsy?
68 ms