Is there no way to do this without using the password reset email? People are used to the pattern of being able to change their password from within this account.
If not, why this deviation from the established pattern?
The main reason this is a problem is that the initial login is very confusing, people don’t know they need to change their password or they get impatient and send a second reset that invalidates the first and that also confuses people.
Is there any way to handle this?