I tested a user scenario of invalid email. I removed user from all usergroups and made them unregistered/unconfirmed. I signed in as user and validated email but they remained unregistered/unconfirmed. Is this what the bounced email function would do? Can I promote this usergroup to registered using "user state is valid" without unintentionally handing out permissions?