Confirm
1,136
edits
Changes
→Passwords
Just like today, an un-verified email flow will collect a password from the user up front. We'll use the password to allow them to log in to their un-verified account.
=== Question & Answers ===
* Q: Why do I need to verify an assertion, if it's for an un-verified email?
* A: These terms are confusing, but consider:
** Although the user hasn't verified that they own that email address yet, you do get the assurance that this is the person who has started the account creation flow.
** Additionally once the user does verify the email address, your code will automatically start getting the feedback that the user has shown that they own the address. Only minimal conditional code is needed to support the two states.
=== Other Requirements ===
