On some setups, user authentication is mandatory. It would be nice if servers could communicate this to clients, e.g. via a sasl-required capability.

The use-case is properly asking the user for credentials if necessary (e.g. no "optional" indication in the password field).