I am building a website where someone signs up for an account. I then send them a confirmation email message. The confirmation email message then has a link to the login page.
I noticed other site have this strategy. I am confused though. Why are they sent a confirmation email when they can just go directly to the login page by clicking on a "Login" link already on the page?
Can someone help me to understand? Also, instead, Should my confirmation email have a unique key like a guid which I should check when the person logs in for the first time? Would that be a much better strategy?
The guid would be embedded in the URL so that I could get this value and check it when the person logs in for the first time.