What is the main difference between a sign up process and a login process in a typical web application?
Think about what happens when you first use a website versus when you return.
Sign up is the process where a new user creates an account by providing details like email and password. Login is when a user who already has an account enters their credentials to access it.
Which of the following pieces of information is least commonly required during a standard sign up process?
Consider what is essential to identify and secure an account.
Most sign up forms require an email, password, and sometimes a username. Date of birth is less commonly required unless for age verification.
What is the best practice when a user enters the wrong password multiple times during login?
Think about security and protecting user accounts.
Temporarily locking the account after multiple failed attempts helps prevent brute force attacks and protects user data.
Why is multi-factor authentication (MFA) considered more secure than just using a password during login?
Think about how adding extra steps can improve security.
MFA requires users to provide additional proof of identity, such as a code sent to their phone, which greatly reduces the risk of unauthorized access even if the password is compromised.
A user forgot their password and requests a reset. Which workflow step is most important to ensure security during this process?
Consider how to confirm the user's identity safely.
Sending a unique, time-limited link to the registered email ensures only the rightful owner can reset the password, protecting the account from unauthorized access.