rb2k
commented
14 years ago also: promoting a user to admin WILL show him/her the admin ui menu but upon clicking, they receive a "user in wrong role" message --> additional reload after user class change?
I think a reload of the DB is needed for password changes to propagate.
Changing the password won't allow me to log in with the new password. Only a login with the old password is possible.
To change the password again WILL require the new password.
also: it would be nice if you used a salted password or at least SHA1 :)