Hello,
I would like to report a possible security hole in the current scheme of things.
The idea to use only 'url with secret' for logging in is neat but not entirely safe because the web server uses plain http with no encryption.
Let's say you open the site for the first time and it gives you secret like
http://minefield.bitcoinlab.org/?secret=fngrOdO23tDOTuPWThen you deposit some btc.
If someone is sniffing the traffic it is fairly easy to extract the GET /?secret=fngrOdO23tDOTuPW string from the HTTP request. Then he needs simply to open the site with that secret and he can withdraw the btc to address of his choice.
I can mention two solutions.
1/ get a https certificate and the run the website over ssl/tls. This will resolve the sniffing problem since all traffic would be encrypted.
2/ Make withdraw only possible to addresses from which deposits were received. But on second thought this is not very secure either. A hacker could break into your account, deposit minimal amount of btc and after the deposit is confirmed (and the sending address accepted as viable for withdraw) the hacker request the whole amount to his address.
Best~