- User enters email in registration form and submits.
- You return a thank you message saying that you sent instructions to the email address.
If the email address doesn't exist in your database, the link is for user creation and choosing a password.
If the email address was in the database, your email says that someone tried to register with the same email address, ask the person if it was them, and ask them if they forgot they had an account with the service. You may provide a link to the sign-in page, or to reset the password.
External visitor has no information on whether the email has an account or not, and the owner of the email has all the information.
This is probably a good idea. It preserves privacy and also makes an explanation in case someone registered twice by mistake, so it can solve two problems at once.
- User enters email in registration form and submits.
- You return a thank you message saying that you sent instructions to the email address.
If the email address doesn't exist in your database, the link is for user creation and choosing a password.
If the email address was in the database, your email says that someone tried to register with the same email address, ask the person if it was them, and ask them if they forgot they had an account with the service. You may provide a link to the sign-in page, or to reset the password.
External visitor has no information on whether the email has an account or not, and the owner of the email has all the information.