In the system, the user registration will not be free. Each user will be invited by email to join.
In the user table I briefly have the following attributes:
$table->increments('id')->unsigned();
$table->string('nome', 45);
$table->string('email', 64)->unique();
$table->string('username', 45)->nullable();
$table->string('senha', 20)->nullable();
$table->string('codigo', 100)->nullable();
$table->boolean('ativo')->default(false);
I've never worked with this kind of confirmation, so I figured out the following algorithm (sequence):
To invite a user, the administrator should fill in the guest's name and email .
So the invited user will receive an email with the invitation.
If this route is accessed the user becomes active on the system.
Is this step-by-step for user authentication relatively correct? And the password? Would it be convenient for the administrator to set an initial password for the guest? I need ideas.