For email validation, what is the norm for mobile apps? Are people making a service call to third-party like Mailgun, or checking on the client side?<p>I'm trying to come up with the options on the service side and client side, and what options exist in the Rails environment already. I feel like our CTO is more inclined to go with what other tech companies are using on the mobile apps.
Related (was on Hacker News)<p>"On the Futility of Email Regex Validation"<p><a href="https://jackfoxy.github.io/FsRegEx/emailregex.html" rel="nofollow">https://jackfoxy.github.io/FsRegEx/emailregex.html</a>
You can, and should, knock out the really obvious stuff with regex validation but you're smart to be concerned about one thing that most people miss in this conversation.<p><i></i><i>A confirmation email doesn't solve the problem if the user mistyped the address to begin with.</i><i></i> You're right, they wait for a confirmation email that never comes.<p>Using a third party service like BriteVerify's rest api is the only way to get an actual verification that the inbox exists.
What about passwordless, email-based login? It's easier than username/password login, it verifies the email address, and it provides the same level of security (assuming password can be reset via emailed link).
I use JS validation library + Mailcheck.js on the front end. The regex checks for format and mailcheck validates second and top level domains. Coupled with a verification mail this is good enough for me.