#19 unverified logins

[fuzzie]

Add the ability for people to enter a password on the
[create a new user] page, add some kind of verification
toggle which they must activate by clicking a link or
entering a code in the sent e-mail, and then have a
setting whereby the site can be set to allow or
disallow "unverified" logins.

This allows people to instantly login without having to
check their e-mail, allows situations in which this
might be abused to have the functionality disabled (or
partially disabled, code could check the verified
status before allowing things to happen) and puts a
stop to the stupid random password generation which
everyone has to change in order to remember anyway.

[Jay Bonci]

Logged In: YES
user_id=391769

We need tools for user policy and verification in the core,
including some sort of hard to forge verification

$USER->isVerified should come into play

These options should be made available through the
$OPTIONS or %HTMLVARS hash