Allow users to bypass email verification when logging in with external authentication providers.

OrchardCMS / OrchardCore

Orchard Core is an open-source modular and multi-tenant application framework built with ASP.NET Core, and a content management system (CMS) built on top of that framework.

https://orchardcore.net

BSD 3-Clause "New" or "Revised" License

7.41k stars 2.39k forks source link

Allow users to bypass email verification when logging in with external authentication providers. #13986

Open shinexyt opened 1 year ago

shinexyt commented 1 year ago

Problem

For internal users, I want them to be required to verify their email. However, for external users, I believe it is unnecessary in most cases.

Possible Solution

Add an option in User Registration Page to allow users to bypass email verification when logging in with external authentication providers.

Piedone commented 1 year ago

MikeAlhayek commented 1 year ago

When a user login they do not need to validate email address unless RegistrationSettings.UsersMustValidateEmail is set today. Are you saying even when UsersMustValidateEmail is enabled, we should automatically trust the email that is coming from the external provides? If this is the case, I would add an option to RegistrationSettings because not all emails used in external providers validate email.

shinexyt commented 1 year ago

@MikeAlhayek Yes, adding an option is good.