amosfolz

> 'options' => array( \PDO::MYSQL_ATTR_SSL_KEY => 'C:/ssl_certs/project1/client-key.pem', \PDO::MYSQL_ATTR_SSL_CERT => 'C:/ssl_certs/project1/client-cert.pem', \PDO::MYSQL_ATTR_SSL_CA => 'C:/ssl_certs/project1/ca.pem', ) Just to clarify, adding the `options` array into the config file solved the problem? If that...

> There's no point in forcing the user to create a new password - you have their plaintext password when they sign in, so you can rehash it to UF's...

Were there some changes made in [`4.2`](https://learn.userfrosting.com/upgrading/41-to-42#foreign-key-constraint-errors-in-migrations) that would impact this?

I agree and administrators should never have the ability to impersonate a user (for the protection of the user and administrator). One can easily create a test user and assign...

> > > Another idea may be to copy a user's permission set from User A to user B, (or clone User A as new User B) provided neither user...

Since the current convention is `/js` for local javascript bundles and `/css` for CSS bundles, how about simply adding a `/cdn` type? I imagine it would simplify things to keep...

Just to follow up, I think it would be beneficial to have a dedicated place to put CDNs, but I think we should keep it as simplified as possible.

Should be a simple fix. The message [at this line](https://github.com/amosfolz/UserFrosting/blob/master/app/sprinkles/admin/src/Controller/UserController.php#L252-L254) needs to be updated, probably with two new translation sub keys. > However, I think the message should inform the...

Related https://github.com/userfrosting/UserFrosting/issues/202 https://github.com/userfrosting/UserFrosting/issues/623

> > > Probably (definitely?) overkill, but https://haveibeenpwned.com/Passwords has a known exposed passwords list. All encoded in SHA1 (cause there are people out there that have passwords that identify them...