Closed. This question does not meet Stack Overflow guidelines. It is not currently accepting answers.
This question does not appear to be about a specific programming problem, a software algorithm, or software tools primarily used by programmers. If you believe the question would be on-topic on another Stack Exchange site, you can leave a comment to explain where the question may be able to be answered.
Closed 9 years ago.
Improve this question
i searched many times but all of sites says that it will be in settings / security tab, but it's not there! why?
i just created my Facebook account.
It looks like FB is not currently using security questions. This is from FB:
If there ever comes a time where you can’t log into your Facebook account, we need ways to get in touch with you and make sure the account is yours. Here are some things you can do to help make sure you never get locked out of your account:
Add another email address to your account so you always have a
backup.
Make sure you and only you can access the email addresses listed on your Facebook account. Anyone with access to one of the email
addresses listed on your account can request a new password for your
Facebook account. If you lose access to one of your extra email
addresses, be sure to remove it from your Facebook account.
Add your mobile number to your account. We can also send things (ex: a code to reset your password) to your mobile phone.
Use your real name and date of birth on your account so we can find your timeline if you ever loose access to it.
You can find more details on this security features page.
facebook now does not offer any security questions for account safety. It uses now two-factor security model and sms authentication code. Don't go in that deeply.
Related
Closed. This question is off-topic. It is not currently accepting answers.
Want to improve this question? Update the question so it's on-topic for Stack Overflow.
Closed 10 years ago.
Improve this question
This is a problem because when I do email campaign, There is a link on the email, that link to my company homepage, I would like to differentiate between the visitor come from another way (e.g. search on google) or the visitor come from the email I have sent.
Notice that they should come form a email instead of a website,
Is it able to check such kind of information ? And is it possible to differentiate between campaign 1 and campagin 2 with same link? Thankyou
You cannot differentiate between an email vs web campaign link unless that link is tagged for campaign tracking. Campaign link tracking requires that you append additional data to the query params of a link according to specific conventions required by GA in order to differentiate between different campaigns.
Other wise, Google Analytics would not be able to differentiate between the same links from email vs banner links on a very granular level.
http://support.google.com/googleanalytics/bin/answer.py?hl=en&answer=55540
Google Analytics is the easiest way to do this. get an account, copy and paste the code they give you and they keep track of all of this for you in the traffic sources tab under the referrals traffic and even give you the exact url of the site your visitors are coming from. including emails and yes I believe you can differentiate between campaigns.
here is the url
http://www.google.com/analytics/
Google Analytic is perfect, just what you need.
Closed. This question does not meet Stack Overflow guidelines. It is not currently accepting answers.
This question does not appear to be about programming within the scope defined in the help center.
Closed 5 years ago.
Improve this question
In my country apple does not support subscription, I can't make an app that can purchase monthly or period of time subscription, any alternatives?
Contact Apple and ask if this is a temporary or constant condition. If it's temporary, wait it out.
Otherwise, you can implement login screens and authentication mechanisms as you would have them in a WebApp. The latest Developer Agreements allow for this (as opposed to the previous agreements where you had to offer inAppPurchase as well). The caveat is that according to the agreement, you may not link to your 3rd party payment/signup site from within the app.
Set up payment processing with the provider of your choice (e.g. PayPal) and manage your own database of registered users. Then, when a user starts the app, ask them to log-in by supplying a username and password. Send those to your server (e.g. using a regular POST request), verify them and deliver the contents to the user if he is authenticated.
Make sure to keep the user logged in after that to avoid annoyance.
The main challenge with this approach will be to let users find out about your service in the first place as you are not allowed to openly send them over in the first place. Then again, if Apple doesn't offer the functionality in your country, you may be able to get through review with it.
In either case, contact Apple, then act accordingly.
Closed. This question is opinion-based. It is not currently accepting answers.
Want to improve this question? Update the question so it can be answered with facts and citations by editing this post.
Closed 3 years ago.
Improve this question
I've just received an email from apple saying that the app I submitted to the App Store a week ago has been rejected. The text of the email is reprinted below:
Thank you for submitting iDealwine App to the App Store.
We've completed the review of your app, however, we cannot post this version to the App Store because it requires customers to register with personal information without providing account-based features. Applications cannot require user registration prior to allowing access to app features and content; such user registration must be optional and tied to account-based functionality, as required by the App Store Review Guidelines https://developer.apple.com/appstore/resources/approval/guidelines.html:
17.2 Apps that require users to share personal information, such as email address and date of birth, in order to function will be rejected
Additionally, we need additional information about your app and In App Purchase.
Please take some time to review the following questions and provide as detailed information as you can.
-Please provide more information on the length of the Subscription provided by iDealWine App.
-Where is the In App Purchase located?
If you have any questions about this information, or would like to discuss it further, > please feel free to reply to this email.
To appeal this review, please submit a request to the App Review Board at http://developer.apple.com/appstore/resources/approval/contact.html.
We look forward to reviewing your revised app.
The first reason is clear enought but I still wonder if just adding an alternative for the user to sign-in using an existing login/password will solve the issue. So there will be login or register alternative.
For the second reason I don't understand why they have rejected the in-app purchase.
There seem to be a few reviewers who won't let anything through if there's even a tiny chance it might not be 'by the book'. What they are saying with the first section is that:
Your app is asking for credentials, and then it is not obvious that you are providing any extra functionality. It'd be like putting in your twitter password to do a google search.
As for their second section - Sounds like they just want a longer description. What does the in app purchase do? Why is the functionality of benefit to the users?
App store reviews can suck, but normally if you just keep hammering away, you can get through.
Good luck,
Zane
To get pass the reviewers, you might want to have your app provide some basic useful functionality even to someone who will not enter any login or ID. For instance, banking apps in the App store provide maps to the nearest bank branch, banks web site, etc., for someone who has no account with which to login on startup and never will.
Closed. This question is opinion-based. It is not currently accepting answers.
Want to improve this question? Update the question so it can be answered with facts and citations by editing this post.
Closed 2 years ago.
Improve this question
Is it simply an artifact of the old fear (still around in some places) of cookies?
I also would like to know if it is bad practice to simply pass in user names from an outbound email.
Nothing is stopping the web app from always remembering the user for as long as they want on particular computer without asking explicit permission from the user. However, doing so has security and privacy implications on shared computers.
Imagine you go to a cyber-cafe or a library, sit on a shared computer and login to your bank website (which you shouldn't do from such places anyway :-)). The bank website tries to be "smart" and persists a cookie with a ticket based on your credentials. When you're done, you close the browser without logging off. Next person sits down, opens the browser, looks at the history and goes to the bank site. And now they have magically access to all your money.
That would probably be the last time you use that bank for anything.
Update: To answer the second part of the question (and the comment below)
If you are afraid of URL injection, you should probably not specify the username in the email URL itself. Instead, generate a one-time token (you could use a one-way hash of the user name and a website secret for example), which wouldn't mean anything to an external site, but would allow you to extract the user identity and prepopulate the field on the page.
Keep in mind that you should not include in the URL in the email enough information, so that clicking on that link would authenticate the user to your site. You still want the user to prove their identity.
Closed. This question is off-topic. It is not currently accepting answers.
Want to improve this question? Update the question so it's on-topic for Stack Overflow.
Closed 13 years ago.
Improve this question
I know many folks try to find emails form blogs but, I'd like to do the opposite.
For example, if I have someone's gmail email address, could I find out if they have a blogger account? a word press account?
No, and maybe.
While Blogger makes it possible to go from a profile page to an email address (example 1, example 2), there's no public index of those pages.
Wordpress.com doesn't have those type of standardized profile pages, so your chances of getting something there are zero.
If you have Yahoo IDs, you may be able to look up users' Yahoo profiles, which can either reference websites the user's associated with (example 1, example 2), or contain a Yahoo blog (example).
Get name portion of email address (everything before #), say "foobar"
Create URL "http://foobar.wordpress.com" and execute it with you preferred server technology (say HttpClient in Java)
Check response code - for the existing site it will be 200, for non-existing it will be 302 (redirect) and you can also check that you are not redirected to en.wordpress.com
You can do similar things with other type of sites that support naming conventions of user.site.com or www.site.com/user.
Of course there's no guarantee that based on the name that blog will belong to the same person, and there's plenty of blogs that have custom URLs all together
Alternatively use Google and parse results
Thats doubtful. You might be able to crawl those sites and see if you can find a matching email address inside the blog. Services don't generally allow anonymous lookups of their users info, for obvious reasons.