Simplify Invite Only Administration (Sign Up Disabled) by Treating Invites differently than Sign Up

Feature: Allow user to enter password when invited to an organization even when Sign-Ups are disabled.

Description: Disabling signups (screenshot 1 below) prevents invited users from setting their own password. An invitation to join should not be synonymous with a random signup. I would like to disable signup to present a more secure posture for our client. The mere presence of that link disturbs clients as it is open to the public. If a user is specifically invited, they should be able to set their password. Yes, I was provided with instructions to use APIs for adding users to orgs and resetting passwords. That is too complex for support personnel. This needs to be simple and secure. You have a very nice, short entry form for inviting users that is limited by this issue.

When a user attempts to accept an invitation, they see screenshot 2 below.
After filling in a password and continuing, they see the error message that the email or password is wrong (screenshot 3 below). The email is correct, the invitation was sent there. The password is being established for the first time, so it should not be wrong.

I am not the first person to request this feature. I found many other examples (not exhaustive list):
Requests 70845, 63746, 117671, 117899

Your system is not allowing me to include media. I’ll remove the screenshots

Screenshot 1:
–Removed–

Screenshot 2:
–Removed–

Screenshot 3:
–Removed–

Hi there!

Welcome to the Auth0 Community!

Thank you for creating this feedback card. Please make sure to upvote it so that it gets as many votes as possible and attracts as many community members as possible.

A possible workaround for you could be to create the user on your end with a generic/random password with the Auth0 Management API or the Auth0 Dashboard, assign them to your organization, and then you can have the user reset their password. It can be inconvenient to have the user see a screen that prompts them to reset their password, as they never set it. You can customize this process so the UI shows a set password screen instead of a reset one. To learn more about achieving this workaround, please review this document: https://auth0.com/docs/customize/email/send-email-invitations-for-application-signup.

Thanks
Dawid