If a user loses the registration email at present they are locked out.
Could you change this such that if they attempt to register again and the active flag is 0 then they get resent the previous registration link, likewise if they request a forgotten password and the active flag is 0, resend the registration email?