Issue #2503113 by dawehner: ProtectedUserFieldConstraintValidator should use the user auth service instead of ::checkExistingPassword()