im using the acounts package and i dont know if this is intended:
If my user receives an email with the verification link and lets say he does not click it but someone else is on their computer seeing the link, clicks it, and the user automatically gets signed. So ne wrong person has no acces to everything.
Is this intented? any way to stop that?