I have just launched a separated-model system with a UI file and a Data file. Currently I have security on both files, with each user account duplicated in UI and Data files.
This presents a problem if the user changes their password, and then I supply a new UI file to upgrade the system, thus overwriting the new passwords that users created. the users want to be able to create their own passwords.
Perhaps I should have no security in the UI file and only authenticate in the data file?