diff --git a/management/mailconfig.py b/management/mailconfig.py index 48f87e4..90c3824 100755 --- a/management/mailconfig.py +++ b/management/mailconfig.py @@ -254,9 +254,10 @@ def add_mail_user(email, pw, privs, env): return ("Invalid email address.", 400) elif not validate_email(email, mode='user'): return ("User account email addresses may only use the ASCII letters A-Z, the digits 0-9, underscore (_), hyphen (-), and period (.).", 400) - elif is_dcv_address(email): + elif is_dcv_address(email) and len(get_mail_users(env)) > 0: # Make domain control validation hijacking a little harder to mess up by preventing the usual - # addresses used for DCV from being user accounts. + # addresses used for DCV from being user accounts. Except let it be the first account because + # during box setup the user won't know the rules. return ("You may not make a user account for that address because it is frequently used for domain control validation. Use an alias instead if necessary.", 400) # validate password