swamy_g — 2010-07-07T13:34:57-04:00 — #1
louis_simoneau — 2010-07-07T20:16:22-04:00 — #2
Are you using a plugin or gem (if so which one) for authentication or did you roll your own? How are you setting the cookie in the first place? Depending on what your current setup is, a simple solution would be to invalidate the cookie in your user update controller method if a new password is being provided.