Jump to content

Suggestion - Keep the setting to allow signing in with a display name

Donnie95

By Donnie95
in Beta Discussion

 Share

Recommended Posts

Jim M Grand Master

Jim M

Posted
Posted
12 minutes ago, Donnie95 said:

 

I'm concerned that many of my members have forgotten their email addresses... 

It has been some time since we announced this and it is not going to be reconsidered, I'm afraid.

Simply because your users may not know their email address doesn't mean you shouldn't move into a more secure environment. It is kind of like stating that you lost your house key so you can't change the locks 🙂 . There have been many suggestions for getting your members updating their email address and getting used to this way of life now before it is fully removed in version 5. Making announcements and changes now that ease your members into this will improve the success come version 5. Enable display name and email address login now, set a date in the future that you will remove display name logins, and make plenty of announcements about it so your members are aware and know how to check their email address on file for their account. 

Many who have gone through this process have expected to be flooded with contact requests but really only get a handful or less so getting in front of this is the best plan 🙂 .

Donnie95 Collaborator

Donnie95

Posted
  • Author
Posted
7 minutes ago, Jim M said:

It has been some time since we announced this and it is not going to be reconsidered, I'm afraid.

Simply because your users may not know their email address doesn't mean you shouldn't move into a more secure environment. It is kind of like stating that you lost your house key so you can't change the locks 🙂 . There have been many suggestions for getting your members updating their email address and getting used to this way of life now before it is fully removed in version 5. Making announcements and changes now that ease your members into this will improve the success come version 5. Enable display name and email address login now, set a date in the future that you will remove display name logins, and make plenty of announcements about it so your members are aware and know how to check their email address on file for their account. 

Many who have gone through this process have expected to be flooded with contact requests but really only get a handful or less so getting in front of this is the best plan 🙂 .

Thanks for the suggestions, I'll start implementing them.

I think self-hosters should still have the option, as we are responsible for the security of our forum.

Also, Instagram and WordPress still allow signing in with a display name, so I doubt it makes a big difference in security.

Marc Grand Master

Marc

Posted
Posted
Just now, Donnie95 said:

Thanks for the suggestions, I'll start implementing them.

I think self-hosters should still have the option, as we are responsible for the security of our forum.

Also, Instagram and WordPress still allow signing in with a display name, so I doubt it makes a big difference in security.

While I understand what you are saying there. The security of the software is something we should always consider as the the developers. 

In terms of "Its how instagram and wordpress do it". I've heard that argument quite a lot. I'd argue that just because someone else hasnt implemented more robust security in terms of login, doesnt mean we shouldnt. And actually, in terms of instagram its not nessesarily as clean cut as that. If you try to log in and havent done so before from that device, you have to confirm via email. Which actually amounts to the same thing.

Gary Experienced

Gary

Posted
Posted
7 hours ago, Donnie95 said:

Could contain: Page, Text

I'm concerned that many of my members have forgotten their email addresses... 

In this day and age, I think you would find a very small number of members (if any at all) simply forgetting their email addresses. Especially if their savvy enough to be using forum software and navigating through your community. If members have forgotten their email addresses after some time since last visiting your community, then they can follow the prompts for forgetting their password and type in email addresses until one is recognised. If all else fails, they can contact you, use a forum/topic that you have specifically enabled for guests or you could simply create one to assist with the transition.

Display names definitely suit a purpose but do create an instant vulnerability as display names are available to anyone. The less information you offer on a silver platter, the better. Your members will adapt and it will be business as usual.

 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.
Invision Community © 2024 IPS, Inc.
×
×
  • Create New...