I work at a museum that offers members access to our museum via an iPhone App. I'm looking for a way to avoid the member having to also present supplemental identification to confirm they are indeed the member. I originally thought I could query the phone's number and compare to the phone we have on file, but there is no accepted way to access the phone number directly through the SDK. Anyone else have a method to pre-validate a app user? Username/password validation is not what I'm looking for. I need something that isn't readily dissemanable/shareable.
问问题
68 次
2 回答
2
这就是 PassKit 的设计目的。
于 2012-11-15T22:09:15.983 回答
0
您可以使用电子邮件地址验证:当您打开应用程序时,让用户输入与他们的博物馆帐户关联的电子邮件地址,或者请求他们允许查看他们的地址簿并找出他们的电子邮件地址是什么。当他们点击发送时,在服务器端数据库中保存一个条目,其中包含该用户的电子邮件地址的哈希(如果不需要,请不要存储地址!)以及您使用NSUUID为该 iPhone 生成的 UUID 。然后向该用户发送一封电子邮件进行确认,当他们打开电子邮件中的链接时,将他们在数据库中的条目标记为已批准。
该手机将始终能够登录,并且当它们从备份恢复时,凭据应转移到新手机。
于 2012-11-15T22:25:37.033 回答