~emersion/soju#201: 
Require user password for destructive actions

As we allow users to connect without a password (e.g. via CertFP as in #77, or via a token), we should prevent users from performing security-sensitive actions without the password (for instance, changing the password or deleting the account).

Status
REPORTED
Submitter
~emersion
Assigned to
No-one
Submitted
4 months ago
Updated
4 months ago
Labels
enhancement service