* √ users can log into their tenant.
* users can set and update their passwords
** Profile page for individual users
* admin users can trigger password updates.
* √ admin users can add additional admin users.
** Make sure they cant make super users (only infotech)
* admin users can create/edit/delete users
* admin users can edit users attributes.
* this functionality is only available to clients who have opted into traditional user management.
* we should ensure that this doesn't interacted poorly with SSO. (AT least document gotchas)
* WE should document how traditional user management works in myPolicies within the help centre.

* √ SYSTEM MUST now default to traditional user mangement instead of an sso soultion.

* SSO/User Management Place nice togther.

* Forgot Password functionality and good templates for password e-mails.

* Sessions Timeout & Account Logout after 8 hours.

* Ability to link users after someone has switched to SSO (SHOULD HAVE)(Seperate Story)

* Devise standard password complexity.