Add md5 hash of email address(es) to public API response

Not planned


1 comment

  • Gabriela Mejias

    Thank you for your suggestion.

    After carefully reviewing this idea, we've decided not to proceed with it.

    It is considered a security risk if a "forget password" feature displays if an email address is active in a system. By allowing members to search email address hashes across ORCID, we would be imposing this same risk of data mining.

    At this time we will not move forward with this feature due to the ORCID Trust implications.

    Warm regards,

    ORCID Community

    Comment actions Permalink

Please sign in to leave a comment.