Just a feature request here. I have not had time to really look at the source of authlogic, but would it be much work to add a method such as update_attributes_without_session_maintenance, to allow someone such as an 'admin' for example to change a users password? Maybe I am doing something wrong but when i change a password in this way it creates a new session.
@jamesbrink have you tried doing something like save_without_session_mainteance?
@user.password = "some value"
@user.save_without_session_maintenance(:validate => false)
That would essentially be the same as using update_attributes, and this is what the reset_password! is doing: https://github.com/binarylogic/authlogic/blob/master/lib/authlogic/acts_as_authentic/password.rb#L281
@jamesbrink – did the suggested approach solve the issue for you?
Yes I believe it did