Skip to content

Add Email Recovery Option (Optional) #140

Open
Open
Add Email Recovery Option (Optional)#140
Labels
enhancementNew feature or request
@crmne

Description

@crmne
crmne
opened on Jul 24, 2025

Summary

Some users want email recovery as an optional feature while maintaining the privacy-first approach.

User Feedback

  • "I would like a email recovery option"
  • "Email Account Recovery"

Implementation Proposal

Privacy-First Design

  1. Email remains completely optional
  2. Username-only registration stays default
  3. Clear messaging about privacy implications
  4. Email stored encrypted if provided

Implementation

# Add to User model
class User < ApplicationRecord
  # Email is already in Devise but hidden
  # Just need to make it optionally visible
  
  encrypts :email # Encrypt at rest
  
  def email_recovery_enabled?
    email.present?
  end
end

UI Changes

  1. Settings Page

    • "Add Recovery Email" section
    • Clear privacy warning
    • Explanation of trade-offs

  2. Registration

    • Keep current username-only flow
    • Small "Add email for recovery" link

  3. Login Page

    • "Forgot username?" only shows if email exists
    • Send username reminder to email

Privacy Safeguards

  • Email never required
  • No marketing emails
  • No tracking pixels
  • Delete email option
  • Clear data handling explanation

Benefits

  • Reduces support burden
  • Users won't lose years of data
  • Still privacy-first
  • User choice

Priority

Low - Nice to have, but conflicts with core privacy principle

Metadata

Metadata

Assignees

No one assigned

    Labels

    enhancementNew feature or request

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions