Mat Kovachs has delivered alpha code for ns_pam. There is an open question of whether or not he should also build ns_extauth, which would have the same functions but use an external helper program. This is necessary if we want to use ns_pam functions that require root, such as local passwords in /etc/shadow. It may not be necessary for LDAP and RADIUS, in which case it is outside the scope of the funded project but still useful and perhaps worth funding - or finding a volunteer.
We have code-reviewed and tested the new login/register and password recovery. It is checked in and running in HEAD and on our test servers.
We are working on the last parts, batch sync and authority management
The major progress last week was to get the test servers up and running. The test servers drop databases, check out the latest code, and rebuild every night. This is very important for testing, and especially for moving forward towards 5.0.
We are expecting to finish phase I fairly close to the original budget for the whole menu, so there is fairly high risk that we will exhaust the budget before completing Phase II. Phase II currently includes LDAP, https, on-demand sync, untrusted login, cookie handling rewrite, and remote account creation, all Priority A, and password policy, priority B.