I'm trying to contribute some additions to User Cancellation module, namely adding a step to it where the user will be required to enter their username and password before proceeding (even though they are already logged in to the site). The reason for this is to prevent others who may have access to a user's computer where they are logged in (or a public computer which they forgot to logout of after visiting the site) from deleting a person's account (e.g. maliciously).

I'd like to find out if/how it's possible to add a login form within a module that enforces the user's name/password to be entered before proceeding. I'm not yet out of my newbie shoes with PHP and programming, so though I've tried looking at api.d.o I'm not sure quite what to look for. I'm thinking it might be something with user_authenticate, but again I'm not sure. Also, if anyone knows of a current module that has a login form similar to what I'm describing, please let me know, as I'd like to study how it's done.

Thanks, a bump in the right direction would be quite appreciated :D