- Removed LDAP specific logic from login controller, placed in Guard.
- Created safer base user provider for ldap login, to be used for SAML
soon.
- Moved LDAP auth work from user provider to guard.
The email_confirmed user field now actually indicates if an email is confirmed rather than defaulting to true if not checked.
This ensures toggleing the 'Require email confirmation' setting actually makes all currently unconfirmed users confirm thier emails.