The forms has the action param as http://www.api.freesendmails.com/v1/mails/me@mymaildomain.com where the email is exposed in source, which is an easy target for spammers.
Rather than this if the urls are of the form http://www.api.freesendmails.com/v1/mails/b2655bd2eb3741f3b4091a324d1ab25e it would be safe
One logical flow can be the one similar to http://fontawesome.io/get-started/
Where www.freesendemails.com presents with a form for Get Started, where the user has to send an email and the embed code is send to them. The embed code is generated and saved against the user. Free Send Emails already asks email for user authentication against firebase, so this is just a minimal change (in the user flow) which offers better privacy.
@grassiricardo What do you think?
The forms has the action param as
http://www.api.freesendmails.com/v1/mails/me@mymaildomain.comwhere the email is exposed in source, which is an easy target for spammers.Rather than this if the urls are of the form
http://www.api.freesendmails.com/v1/mails/b2655bd2eb3741f3b4091a324d1ab25eit would be safeOne logical flow can be the one similar to http://fontawesome.io/get-started/
Where www.freesendemails.com presents with a form for Get Started, where the user has to send an email and the embed code is send to them. The embed code is generated and saved against the user. Free Send Emails already asks email for user authentication against firebase, so this is just a minimal change (in the user flow) which offers better privacy.
@grassiricardo What do you think?