Feature: Allow user to enter password when invited to an organization even when Sign-Ups are disabled.
Description: Disabling signups (screenshot 1 below) prevents invited users from setting their own password. An invitation to join should not be synonymous with a random signup. I would like to disable signup to present a more secure posture for our client. The mere presence of that link disturbs clients as it is open to the public. If a user is specifically invited, they should be able to set their password. Yes, I was provided with instructions to use APIs for adding users to orgs and resetting passwords. That is too complex for support personnel. This needs to be simple and secure. You have a very nice, short entry form for inviting users that is limited by this issue.
When a user attempts to accept an invitation, they see screenshot 2 below.
After filling in a password and continuing, they see the error message that the email or password is wrong (screenshot 3 below). The email is correct, the invitation was sent there. The password is being established for the first time, so it should not be wrong.
I am not the first person to request this feature. I found many other examples (not exhaustive list):
Requests 70845, 63746, 117671, 117899
Your system is not allowing me to include media. I’ll remove the screenshots
Screenshot 1:
–Removed–
Screenshot 2:
–Removed–
Screenshot 3:
–Removed–