From 26dd2d6cc42f7f874fac3842b67f42bd2ccb4585 Mon Sep 17 00:00:00 2001 From: cenon-delrosario Date: Sat, 16 Aug 2025 13:44:30 +1000 Subject: [PATCH] Require new user registrations to confirm their email address before being allowed to log in. Changes: * Changed the Devise configuration allow_unconfirmed_access_for from 1 to 0 days --- config/initializers/devise.rb | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/config/initializers/devise.rb b/config/initializers/devise.rb index 05d5141e..756e1fef 100644 --- a/config/initializers/devise.rb +++ b/config/initializers/devise.rb @@ -128,7 +128,7 @@ # able to access the website for two days without confirming their account, # access will be blocked just in the third day. Default is 0.days, meaning # the user cannot access the website without confirming their account. - config.allow_unconfirmed_access_for = 1.days + config.allow_unconfirmed_access_for = 0.days # A period that the user is allowed to confirm their account before their # token becomes invalid. For example, if set to 3.days, the user can confirm