- answers:
-
a. Links with authentication tokens in the email will always carry a degree of danger, as emails are not secure at all. Therefore depending on the specific industry and product there would be different sets of rules and measures that makes sense to implement.
It has been a while since I used a relational database directly without some kind of abstraction layer in between. For this example I will assume we are using GraphQL.
link with token -> back-end will decode token -> DB get user data
{
01hU31givCeuw3NGGxtqbpfhhZj1: {