From 6b88a4602a6216f704cd4983031c37370fbdfe46 Mon Sep 17 00:00:00 2001
From: "Torsten Schulz (local)" <tsschulz@gmx.net>
Date: Wed, 24 Sep 2025 10:35:57 +0200
Subject: [PATCH] =?UTF-8?q?=C3=84ndere=20den=20Status=20des=20neu=20erstel?=
 =?UTF-8?q?lten=20Benutzers=20in=20der=20Benutzerregistrierung=20auf=20ina?=
 =?UTF-8?q?ktiv,=20um=20die=20Sicherheit=20zu=20erh=C3=B6hen=20und=20unbef?=
 =?UTF-8?q?ugte=20Zugriffe=20zu=20verhindern.?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 controllers/authController.js | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/controllers/authController.js b/controllers/authController.js
index 333857c..cd47d02 100644
--- a/controllers/authController.js
+++ b/controllers/authController.js
@@ -25,7 +25,7 @@ exports.register = async (req, res) => {
 
     while (attempt < maxAttempts && !createdUser) {
       try {
-        createdUser = await User.create({ name, email, password: hashedPassword, active: true });
+        createdUser = await User.create({ name, email, password: hashedPassword, active: false });
       } catch (err) {
         lastError = err;
         // Spezifisch auf Lock-Timeout reagieren und erneut versuchen