[eluser]Popcorn[/eluser]
Quissi : This is an interesting concept and I would love to see a CodeIgniter addon created based on it. It seems like it'd be very secure because it doesn't actually send the password but rather the unique key. Have I understood this correctly?
The next step would be to get SSL as you suggested, but don't worry about people thinking you are a poor man who can't afford a real certificate. If it offers protection then I personally think the public wont care.
Some little news on the new version of the Authentication Library 1.2
I just finished up the last feature for this release (Forgotten Password). I just need to clean the code up in places and finish off documentation then I will be able to release it sometime in the next week.