Underdark Login Framework - User creation and removal, password changes
The Underdark Login Framework can currently be used to authenticate existing users, but facilities for creating new users is lacking. This is necessary because it has specific expectations for passwords and salts.
In addition, removing users and changing passwords is also core functionality that needs to be provided.
added methods to the Login Framework's model to verify passwords on the user object instead of in the verification method itself, this allows for more configurable implementations. Methods for hashed passwords based on random salts, and to update passwords have also been added. This refs #814.
#1 Updated by Niek Bergman about 8 years ago
It would also be useful if the password updating method would take the current password along with a new password, so the user password can be revalidated (as is good practice before letting a user change their password) without having to relogin the user.