User can change his password
Upon successful login, a user can change their password. This should respect the password rules in IPA, and should probably check for password goodness/entropy.
After a successful password change, it should send an email.