If you're rolling your own authentication system, at least use one of the many libraries out there that are properly reviewed etc.
Rolling your own authentication from scratch is generally a bad idea unless you really know what you're doing (there's more pitfalls to it then you'd think)
if you're rolling your own authentication system for anything other than learning purposes (so god forbid production), you really should NOT be rolling an authentication system from scratch.
With that, I mean write one yourself.
Use libraries that are well established by people who know security.
Security is hard, and one mistake can open up all your users to being hacked, never mind the legal trouble YOU are going to be in when that happens (especially since OP wants to build a social network and those generally end up keeping sensitive information about their users).
For further actions, you may consider blocking this person and/or reporting abuse
We're a place where coders share, stay up-to-date and grow their careers.
If you're rolling your own authentication system, at least use one of the many libraries out there that are properly reviewed etc.
Rolling your own authentication from scratch is generally a bad idea unless you really know what you're doing (there's more pitfalls to it then you'd think)
I think it is not that bad idea, but is huge effort :-)
if you're rolling your own authentication system for anything other than learning purposes (so god forbid production), you really should NOT be rolling an authentication system from scratch.
With that, I mean write one yourself.
Use libraries that are well established by people who know security.
Security is hard, and one mistake can open up all your users to being hacked, never mind the legal trouble YOU are going to be in when that happens (especially since OP wants to build a social network and those generally end up keeping sensitive information about their users).