auth can best be performed by an out-of-band mechanism, in form of api token or oauth, or simple basic auth.
do we want user to be able to change password through epp or should it be delegated to api mgmt at the http layer
draft now contains a /password rest resource for changing password, this probably needs to be removed and
need text describing that changing password using repp is not supported.
login is moved to http layer.
auth can best be performed by an out-of-band mechanism, in form of api token or oauth, or simple basic auth. do we want user to be able to change password through epp or should it be delegated to api mgmt at the http layer
draft now contains a /password rest resource for changing password, this probably needs to be removed and need text describing that changing password using repp is not supported.