Impersonate Mode?
First off, I know this could be used for nefarious purposes, but I was wondering about the feasability of an Impersonate/Override mode that based on a series of passwords allocated to specific support team members could use to grant access bypassing the Password lookup Module regular workings.
Example: We are an online school and have over 10,000 accounts and utilize many 3rd party services which do or don't have a way to see "What the user" is seeing. We presently use SimpleSAMLPHP with a similar modification for my support team to regularly login to a learners/parents account to test their access or perform tasks. We keep a log of whenever the password is used for verification.
This would greatly help us in our environment. Is it possible? Even if it didn't make it into the master branch, we would be interested in supporting your group for custom development.