@Roland - the problem is caused by the password strength settings, this line is used for the spry validation of the passwrd:
var Log_In_group_Password_Spry = new Spry.Widget.ValidationPassword("Log_In_group_Password_Spry", { minAlphaChars:0, maxAlphaChars:0, minNumbers:0, maxNumbers:0, minSpecialChars:0, maxSpecialChars:0, minChars:4, maxChars:20, isRequired:true , validateOn:["blur"]})
it is set to allow:
minAlphaChars: 0
maxAlphaChars:0
minNumbers:0
maxNumbers:0
minSpecialChars:0
maxSpecialChars:0
minChars:4
maxChars:20
the problem is the max settings you have set the maxAlphaChars, maxNumbers, and maxSpecialChars all to 0.
this basically says "don't allow any letters, numbers, or special characters"
@chris - There are supposed to be 2 authenticate user behaviors.
the first one is used if the login button is pressed. it authenticates against the username and password that are entered.
the second is used if the Remember Me and Auto Login checkboxes are checked. If those boxes are checked, the username and password are stored in cookies. the second authenticate behavior uses the cookies for authentication.