> The new user id should be in form.vars.id as well as session.auth.user.id at > that point.
Thanks Anthony. But is this documented anywhere in the manual or in any doc of Web2py? Otherwise, it is really difficult for users to figure this out without consulting experts like you. You second point regarding security is well taken, and is taken care of in the logic of other parts of the code. Thanks.