Hide the password field when the Notification checkbox is checked on the user account creation form #4266
Comments
|
If an admin creates an account and checks "Notify user of new account", this new user gets a one-time login link in a mail. Note the explanation in that mail: The user doesn't get the password directly (which would be a security problem), but gets a hashed link to set his/her own password. To my understanding the admin has to set something in that field, because the database column is set to "not null". This handling (exactly the same as in D7) has disadvantages:
I think we could improve this UX for admins. |
|
Thanks for the explanation. I don't think I really connected the dots that if the user was notified that they would get a one-time login link even if I had set a password. So looks like we just need to improve the help text. Something like: "By selecting to notify user of the new account they will receive a one-time login link and be lead to a page where they can set their new password." |
So, here's a new suggestion for the help text:
|
@indigoxela Good point! At least, I forget quite often to check the "Notify" option. In my opinion, it's easy to miss the option in the UI because the form element doesn't have a label:
Here's an alternative with a Notification label. I guess it's better visible, isn't it?
|
|
Both suggestions are an improvement for sure (help text and extra "Notification" label). Maybe we could go further: "Notify user..." checked by default? Or maybe more like, for example, Nextcloud does it: IF the admin sets a password, no notification mail goes out, IF the admin doesn't set a password, a notification with the one-time link goes out automatically (and the password value is some random string silently added to the field on submit). Would that change be too big? |
Yes, it is better in this case, but the underlying issue is basically #4272, and ideally we will solve that globally, instead of per-case as here. The issue with single checkboxes in forms ('#type' => 'checkbox') is that their Another idea is to move this checkbox outside the fieldset, above the submit button:
But... |
I think, that's a good idea, as - to my understanding - the notification isn't an account setting like status and roles are. What about combining suggestions? Form item outside the fieldset AND an extra label for better visibility AND (possibly) checkbox checked by default. And, of course, a better help text. |
Sounds good! I've got an idea based on your suggestions:
Here's a quick mockup (without extra label and help text for the moment): Default, password input hidden: Notify user box unchecked, password input visible: |
indigoxela
changed the title
|
I like @olafgrabienski's suggestion the best. Much better workflow to have the checkbox toggle the password field. |
indigoxela
added
pr - needs work
status - has pull request
and removed
needs - more feedback
labels
|
As we seem to have consensus, that @olafgrabienski's mockup really nailed it, I've started to work on a PR. It still needs work. Fixing tests, of course and maybe some changes re help texts. |
|
My PR is ready for testing and review. Feedback is welcome. |
indigoxela
added
pr - needs code review
pr - needs testing
and removed
pr - needs work
labels
|
@indigoxela I've tested the PR using the sandbox site - works well, and the UI looks really much more clear! In the help text, I'd suggest to remove the "new" before "password":
|
Agreed, that "new" is somewhat pointless. PR has been updated. |
Thank you! Tested again, works fine! |
|
There's one tiny docblock update needed for this PR, otherwise RTBC! The docblock for /**
* Set a default value if one-time login link goes out,
* set a form error if not and password value is empty.
*/I'd like to recommend it be something like this: /**
* Element validate handler for the password field.
*
* Set a form error when the password field is empty and the the notify option
* is not set. If the notify option is set, set a default password.
*/ |
|
Adding the good first issue label since this final change should be a quick one. |
herbdool
added
pr - ready to be committed
and removed
good first issue
pr - needs code review
labels
quicksketch
added
status - fixed
and removed
pr - ready to be committed
pr - works for me
labels
quicksketch
changed the title
|
Thanks folks! Great work coming up with a solution that actually reduces the number of fields and makes more sense at the same time! It bothers me that Backdrop required you set a password when making new accounts, just asking for an insecure password so it could be verbalized or sent in manually in an email. This is muuuuch better without requiring a password. Merged backdrop/backdrop#3040 into 1.x. As this is a UI change (though minor) I'm going not going to backport it into 1.15.x. This will be in 1.16.0 May 15. Thanks! |
jenlampton
changed the title
It seems even for experienced Backdrop admins the account creation form is somewhat confusing.
(Why a password field, notification checkbox easily missed...)
Some suggestions for improvement were already made here in comments.
Original report:
Description of the need
Currently when an admin adds a user account, the admin has to create a password. It would be better to force the user to change their password when they log in for the first time.
Proposed solution
Have a config option to require a password change.
Inspired by https://www.drupal.org/project/force_password_change but don't need most of the stuff in that module in core. Just the one feature.
PR by @indigoxela: backdrop/backdrop#3040
The text was updated successfully, but these errors were encountered: