Confirm Password Prompt

adambirds · February 19, 2019, 6:01pm

When being sent an invite to sign up, users are only asked to enter their password once, and not confirm this, can this be added or enabled so that users can confirm what they are entering?

itsbhanusharma · February 19, 2019, 6:16pm

That’s always the case, even when you create a new account, you’re only asked for password once.

What I think the reason for that is that the process for resetting password is fairly simple, if someone mispelled their password, they can just reset it later.

But I can be wrong.

adambirds · February 19, 2019, 6:21pm

Yeah. I hadn’t checked the other ways as we only allow invites. I think there should at least be an option you can enable in the settings to choose whether you want it or not. It’s basic in pretty much every app I have ever used.

itsbhanusharma · February 19, 2019, 6:29pm

Historically, I haven’t seen many forum softwares asking for password confirmation so maybe it has got it’s inheritance from there?

pfaffman · February 20, 2019, 2:32am

There are plenty of topics about this if you want a good answer. Here’s a quick one.

It’s no longer necessary. Your browser or password manager can remember the password. It’s really convenient to just bang on the keyboard to generate a random password. And it’s a huge drag to have to contrive to enter the same password twice.

It’s easy to reset the password.

The days of typing “password1234” twice are over.

supermathie · February 20, 2019, 3:19am

That doesn’t automatically mean it’s a good idea!

@pfaffman is on point here with his response

adambirds · February 20, 2019, 7:04am

But there should still be an option to have it. I have had 5 users out my first 100 have to reset their password straight away due to entering it wrong.

Especially those who use phones, as the saving of passwords in mobile browsers isn’t great still.

And from a personal experience I have typed my password wrong on many occassions, which I realised because of the verification.

I believe that you should be given a choice dependent on what your organisation wants. It’s also been my biggest complaint so far from joining users.

itsbhanusharma · February 20, 2019, 7:08am

You can probably do that with a plugin of sorts but this can never be a core feature given that it just adds one extra unnecessary step.

codinghorror · February 20, 2019, 10:15am

Making many people suffer all the time due to a few people’s oddball needs … is not good UI design.

adambirds · February 20, 2019, 10:18am

Can anyone provide any pointers on how a plugin could do this then? Or how to develop one. Is their any documentation for how to make one?

I still think having it optional in the settings would be better. That way you can choose.

Stephen · February 20, 2019, 3:46pm

I think you’ve already spent more time on this than the users who needed to reset their passwords.

That’s usually a good yardstick on whether something needs building too.

Topic		Replies	Views
Ask to repeat password while creating new account support	4	558	June 21, 2020
Why Doesn't Discourse Have a "Confirm Password" Section During The Signup Process? feature	5	1227	January 9, 2018
Always ask for new password twice ux	4	247	March 20, 2024
Confirm password when signing up ux	5	1321	October 28, 2017
Password reset confirm message should discourage social engineering feature	7	1355	August 4, 2023

Confirm Password Prompt

Related Topics