Automated command for deletion of unverified users

[tsu-ki]

Closes: #3387

Test run without making changes

python manage.py cleanup_unverified_users --dry-run

Actually run the cleanup

python manage.py cleanup_unverified_users

[CodeWithBishal]

can we have atleast a week and 2 reminder emails before it automatically deleting an account?
python manage.py cleanup_unverified_users
will it remove all the unverified users or just a particular user?

if all the users will be removed, will it check the accounts that are getting deleted got the mails & it's past 1 week since the first reminder and remove only those who fulfils the criteria?

• First reminder to be sent 1 week before deletion
• Second reminder 24 hours before deletion

[tsu-ki]

can we have atleast a week and 2 reminder emails before it automatically deleting an account? python manage.py cleanup_unverified_users will it remove all the unverified users or just a particular user?

if all the users will be removed, will it check the accounts that are getting deleted got the mails & it's past 1 week since the first reminder and remove only those who fulfils the criteria?

• First reminder to be sent 1 week before deletion
• Second reminder 24 hours before deletion

• current implementation sends a reminder mail 24 hours after the account has been created. If the user doesn't verifies their account between 24 hours to 48 hours window, their account gets deleted after that.
• python manage.py cleanup_unverified_users removes all unverified users except admins, staff, superusers, members from an organization or if the user's email is from owasp.org domain.
• I haven't add the cross verification function yet. I'll add this aswell, thanks for your suggestion

[DonnieBLT]

there is an issue with sending emails to everyone, what if the users were spam signups and these are people's real email addresses that they didn't sign up with?

[DonnieBLT]

I think for the first time we run this we need a different approach.

[tsu-ki]

I think for the first time we run this we need a different approach.

@DonnieBLT sir, that approach should I follow for the first execution?

[DonnieBLT]

I think for the first time we run this we need a different approach.

@DonnieBLT sir, that approach should I follow for the first execution?

Print a list . The following 100 users have not verified their email. Then have a flag auto_delete=false

[tsu-ki]

I think for the first time we run this we need a different approach.

@DonnieBLT sir, that approach should I follow for the first execution?

Print a list . The following 100 users have not verified their email. Then have a flag auto_delete=false

okay, so in the first execution there won't be any automatic deletion but rather just print a list of unverified users?