One thought I have though is a client would possibly first have to fail an authentication attempt in order to prompt the user for an updated password. Which would definitely do the job and a client should handle this, but maybe an unnecessary step having to rely on authentication failing to allow a user to update a password.
Oh cool.. i'll take a look at that, thanks!
One thought I have though is a client would possibly first have to fail an authentication attempt in order to prompt the user for an updated password. Which would definitely do the job and a client should handle this, but maybe an unnecessary step having to rely on authentication failing to allow a user to update a password.