I am developing in Drupal a site for a telephony provider.

Users need to be able to view their accounting state online and print their invoices (in PDF), and to be sure of the identity of the users this was the planned method:

Users will NOT be able to register online.
Users will receive PRINTED IN THEIR NEXT INVOICE, either a password or a link.
They should log in to the site with that password or link using their phone number as username (I was going to create every user previously)
After their first login they SHOULD change their password AND give a valid e-mail address.

I could do something of the kind with the "one-time-login links", but the link generated is TOO complicated to be copied.

Any ideas?
Thanks.

PS. Is there a way to disable "required" in the E-mail address field?

PS2. Please forgive my English.

Comments

clau_bolson’s picture

Just in case you are wondering how I did it:

1. Create all users directly in the database, table "users". just name and pass. Passwords must be entered using the MD5 function.
2. Install the Profiles module. Create one profile field named "validation". This field doesn't show up in user details.
3. Install the Login destination module.
4. Login destination verifies if the user has a record in the profile_values table for field validation. If he hasn't, it creates the record, and sends the user to his user/edit page.
5. User can't exit this page if he doesn't enter a valid email address. He is encouraged to change his password.

Another way is to delete the password in step 4. But as they *can* leave edit page without entering a valid password, this will bring problems.

I have also developed a completely different "must change password and enter email" page. I don't know yet if I will use it.