callumacrae wrote:Unknown Bliss wrote:DavidIQ wrote:Password could be left blank I think. Upon account creation if the password is not provided the email address that was assigned would receive a hash for activation at which point a password assignment is required.
So the admin can set the password or one can be generated.
DavidIQ did not say that a password would be generated, he said a hash would be generated that would slow them to set their password (like resetting it does). It's a far better approach.
Oh yeah, sorry. That would be an even better idea.