I just checked the code, and the check to see is password is blank is entirely client side, just uses “required”. If you remove that you might be able to log in, I’ll try later
no, you will not, because bcrypt won’t be able to check it and will just error out