Feature Request: Possibility to disable password reset via email link for user accounts that have password recovery disabled

[RandieM]

Hello everyone.

Having the encryption app warning message back, as mentioned here #11438, is really great. However, there will still be MANY users that will just tick the box and reset their log-in password, and will then complain to us (their admin) for not being able to access their old files. Password reset through an email link -at least the way it is is right now- is quite of a problem for us. It significantly increases the administration work on our side, as we have to reply to emails and phone calls and explain to technical or non-technical customers why they no longer have access to their files, no matter if we clearly stress out in our instructions and FAQ that password recovery disabled together with a weak memory can be a catastrophic combination with irreversible consequences...

Most importantly, we have several customers that forget their password/encryption key, reset their log-in password via the email link, realise that they no longer have access to their files and instead of contacting us, they decide to re-upload them. This means that they end up using double the storage space that they are paying us for (e.g. if they have a 10 GB storage package, they can end up using 20 GB; 10 GB for their newly uploaded unencrypted files and 10 GB for the inaccessible encrypted files).

For us, an "easy" solution to this would be to have the possibility to disable password reset via email link for customers with password recovery disabled and enable password reset via email link for those that have password recovery enabled.

Thanks.