Mostly we are giving functionality for registration on the website and use the website. And using our registration page, user can register him/her and set the UserName and password whatever he/she want. Here we are inserting some validations on client side and server side for checking the data entered by user is valid or not. However one more validation we require on Server side. This is regarding the UserName. We are providing functionality like user can create any UserName. We are checking on server side that the UserName enetered by User is exist or not. And if userName not exist we are creating that User with the UserName that he/she set on registration page.
However we should set one more validation on this registration page for UserName that the user cannot create UserName with the website domain name. Like if site domain name is “www.testing.com”, then user cannot create UserName, which contains the Domain Name in his UserName. Means user cannot register with UserNmae like ‘testing’, ‘testing123′, ‘123testing123′, ‘123testing’, ect…
This is very important as once user register with these name, he can sent mail to other person using that same ID from the website. So we should add validation on server side that the User cannot register with the UserName which contains domain name.
We should also add validation for some common names too. Like we should add validation on server side that the user cannot register with some common names like “hr”, “info”, “information”, “contacts”. So we should also add these list in our Server Side validation. So that user cannot register with these types of UserName.
Let me know your input for the same.
Thanks & Regards,