To prevent anybody to open identity onto Sphinx, please can you consider to integrate invitation support ?
- sending email + invitation code > email invitation with preregistration inside sphinx
Exposed by an Endpoint in Sphinx API to fire such invitation from linked applications backoffice. - authorization to register using email + invitation code to continue
- blocking direct registration
Or something similar...
Thanks