Allow more than one question to be answered by the user during the check

Hi

Your todo list contained the task: Allow more than one question to be answered by the user during the check.

I needed to do this for a recent project so have included a patch which accomplishes this. I think it works without breaking any existing functionality. There's an extra setting to configure the number of questions that would need to be answered in order to get a password reset link.

This worked for me without issue - not sure if you would be happy with the approach, but I've kept the module as much 'as is' as possible. I've altered the db table to have two primary keys (qid and uid) instead of just uid so that each user can have more that one question to answer, and altered the db access functions to return all the questions for the user. The existing logic that uses the questions is then nested inside an array in order to leave things as much as possible the way they were - I'm sure you can make sense of it! I also made sure the 'unknown user' functionality remains consistent.

The only part I wasn's sure about was in the function 'password_reset_confirm_password_validate' ('Hacks to reuse the password verification system provided by user.module.') - I'm not really familiar enough with the way the user module checks the mail, or why there is a workaround here, or in fact, what it does (!) but in order to maintain the workaround, I have passed the first answer given by the user into 'password_reset_answer' - could you check this is an adequate solution.

Anyway, hope this helps.