[gitgud]

Thanks for the explanation. But I would think a generic error would be more secure, as it reveals less information. It's also what most systems implement.

Yes, the signup flow is an important part of any system, I think an ideal solution is make the feedback of wheather an account exists much longer. So they need to fill in a registration form, before they get feedback on wheather the email exists.

Anyway, in the end I guess it's a UX decision with trade-offs either way.