Lets say I just installed Discourse. The first admin user I create will have to register with a password. Once registered and in, I enable SSO (e.g. Google), then logout and sign-in using my Google account.
For future logins:
I want the user to be able to sign-in only via SSO and his password should be removed such that he had never logged in with a password (i.e. like a new user who registered via SSO).
But the user can use the “Forgot password” feature to create a password login again.
Is this possible? If so, how do I got about doing this?
As of now, I am creating a new user via SSO, turning him into admin, and deleting the password authenticated old admin user. I don’t like this, unless this is the only safe way to do it.