When a user's account is created by an admin, the user receives a welcome email that includes a short and weak-looking password in plain text:
The user is able to log in with this immediately, and there is no prompt to reset the password to something stronger and for which there is no plain-text record.
This could be improved simply by not including a password in the welcome email, but rather instructing the user that their account set-up can be completed by following the password reset flow, which involves them setting a password of their choosing, and which will only be used/stored (by the app at least) in encrypted form. The link included in the email could in fact direct them straight to the password reset page.
When a user's account is created by an admin, the user receives a welcome email that includes a short and weak-looking password in plain text:
The user is able to log in with this immediately, and there is no prompt to reset the password to something stronger and for which there is no plain-text record.
This could be improved simply by not including a password in the welcome email, but rather instructing the user that their account set-up can be completed by following the password reset flow, which involves them setting a password of their choosing, and which will only be used/stored (by the app at least) in encrypted form. The link included in the email could in fact direct them straight to the password reset page.