silverark
commented
7 years ago The password hash is used to generate a user_token for your login. If you change your password it invalidates the session. That is by design so the user has to log back in with their new password.
If you really want to keep the user logged in, you can log the user in again programmatically after the password change in the same method (since you have the new password at that point), or override the auth library and remove the password hash or user_token from it's session validation (not recommended!).
retrocoderss
help me please , when i am change passwod in bonfire automatically logout. i won't