Nothing more lazy than doing something like generate a password for the user. The way most browsers work you have to go out of your way to not let it save and fill passwords.
If you create the password for the user they can't reuse it and thus no credential stuffing problems.
If you create the password for the user they can't reuse it and thus no credential stuffing problems.