Django-Verify-Email icon indicating copy to clipboard operation
Django-Verify-Email copied to clipboard

Published 20 hours ago verified publisher icon foo290

Verification is only based on isActive

Open h-enes-simsek opened this issue 1 year ago • 1 comments

Django documentation said about isActive as follows

Boolean. Designates whether this user account should be considered active. 
We recommend that you set this flag to False instead of deleting accounts; 
that way, if your applications have any foreign keys to users, the foreign keys won’t break.

So, think about this scenario. A user has created an account and verified successfuly. Then admin decided to ban this user and set its isActive flag to false. User is now able to request verification mail (re-send) and set own isActive flag to true.

What do you think about this problem? Thank you.

h-enes-simsek avatar Jun 23 '23 20:06 h-enes-simsek

That's really good, amazing find, thanks, will try to hook up something for this ❤️

foo290 avatar Jul 13 '23 12:07 foo290