How to Create a first-class user login interface and User Login
On the Registration and logon forms page, password blocking is common and prevents password leakage. Although this design practice out of security concerns has no doubt, but from another perspective, the interaction design of this method is unfriendly. After all, when users log on to the webpage, I want to enter the content and submit the data without any obstacles, but the password blocking is the opposite.
Conducive to login, not conducive to registration
The login page usage is much higher than the registration page. After all, if you want to create an account, you only need to register it once, but after registration, you will often deal with login. In this way, users often enter passwords in public places, such as displaying information on social networking websites to friends or sharing some things on websites. Therefore, it is necessary to use password shielding to hide password input.
However, on the registration page, there are many disadvantages of password shielding. A hidden password usually leads to repeated incorrect input because they do not know whether the entered password is correct. However, different pages may have different effects during login or registration. login input errors are not as troublesome as registration input errors-if an error is entered during login, you may not have to try again; however, if an error occurs during registration, it is usually locked and the password needs to be reset. Users cannot blame designers. After all, they have their own considerations.
How does the registration page Save the design of "Confirm Password?
On the user's registration page, check again that there is a duplicate operation for the password. In the duplicate operation, the user needs to re-enter the password and check whether the password is correct. Although this design is good, they also have a disadvantage. Because neither of these can see the password input box, and the user is prone to errors, if either of them is wrong, you have to clear the input box and try again, this password validation method has a poor experience and will force users to repeat multiple times for modification and confirmation, making it difficult to say that it is easy to use.
Cancel password shielding to reduce typing errors
Password shielding brings more disadvantages than advantages. It shields not only passwords, but also users' input errors, making it difficult for them to discover and correct their mistakes. Password shielding may not be helpful when a user registers, because registration is a hammer sale in most cases, which is generally completed in private conditions, there will be no followers. I personally think that it is not a big security risk to show users a password in plain text, even in public, it's easier to remember other users' passwords once.
The best way to solve this problem is to enter the clear code so that users can enter the correct information quickly and accurately, so as to reduce spelling errors and quickly correct mistakes, and users do not have to worry about security issues. The plaintext input is real-time and fast, so we can also block the first few characters you entered and only display the characters you just entered. In this case, we want to see all the passwords, it is very difficult, unless you stare at the user's shoulder.
Select visible design
Similarly, you can enable the text box to display the password when the focus is obtained. when the focus is lost, the password is automatically blocked. In this way, you can easily enter the password and ensure security. In this way, the user can see the entered content only when the password area is focused, thus reducing the risk of being snooped by others.
In addition, there is also a small trick to improve security, that is, display the password with a small, light gray italic. In this way, each character needs to be very close to the screen. Therefore, the peek password is almost impossible. Another way is to show only the last character of the password and hide the character entered before.
Another method is similar to entering the Wi-Fi password on the computer. It is to provide a check box "show password ". In this way, when users enter their passwords, the passwords are invisible and can be viewed when they are checked. This is troublesome, but it is better than not, because it makes it easier for users to see and fix their spelling mistakes.
Balance security and user experience
The conventional design usually does not have any problems in daily applications, but when a design with unfriendly user experience, extremely complicated, and prone to user errors requires us to reconsider. Security should be balanced with user experience. Too many security considerations will reduce the website experience. When you understand this balance, even if it does not conform to certain "Conventions", it can make users use website services more smoothly and comfortably.
High score reward: How can I create a literary website and manage the user logon interface?
Are you technical? What language are you going to use? What database? Are you going to learn by yourself? You need to know the language and database used by your website. Generally, MYSQL, ACCESS, and SQLSERVER are used for large websites. You must set up the website in advance for preliminary work, including database design and website architecture. I am using ASP. NET + SQLSERVER and self-taught books. I don't know what's best. I suggest you get started with a C language. I don't know whether you use JAVA or C. If you have any questions, please contact me: 295863213. If you want to study together, you can cooperate if you need it !!
You can do that yourself.
Use ASP for a case. How can I do this on the user logon interface?
Let's take a look at this example: user login verification script, Chkpwd. asp
Reference content is as follows:
<%
'======= User login verification script ======
'If Passed object has not been defined, define it as false, indicating that it has not Passed verification
If IsEmpty (Session ("Passed") Then
Session ("Passed") = false
End If
'Session ("Passed") = False, indicating that the verification has not Passed, the system starts to read the verification information from the form.
If Session ("Passed") = False Then
UserName = Request. Form ("UserName ")
UserPwd = Request. Form ("UserPwd ")
If UserName = "" Then
Errmsg = "prompt: Enter the user name and password"
Else
'============================== Connect to the database ========================= ===
Set Conn = Server. CreateObject ("ADODB. Connection ")
Conn. Connectionstring = "Driver = {SQL Server}; Server = 192.168.1.3; UID = sa; PWD =; Database = zcmrs"
Conn. open
'============================ Read user data from the table log ==================== ==========
'Define RecordSet object
Set rs = Server. CreateObject ("ADODB. Recordset ")
'Sets the ConnectionString of the Connection object.
Set rs. ActiveConnection = Conn
'Set the cursor type
Rs. CursorType = 3
'Open record set
Rs. Open "Select username, password from erpuser Where username = '" & UserName &"'"
'========================================================== ====
If rs. EOF Then
Errmsg = "prompt: the user does not exist or the password is incorrect"
Else
If UserPwd <> rs. Fields ("password") Then
Errmsg = "prompt: logon failed! Wrong Password? "
Else' logon successful
Errmsg = ""
Session ("Passed") = True
Session ("UserName") = rs. Fields ("username ")
'User permission Session ("UserID") = rs. Fields ("UserID ")
End If
End If
End If
End If
'Login does not... the remaining full text>