I have couple situations when i need to configure Captive Portal not only for unregistered profile.
For example for substitute of two phase authentication, when already authenticated user need additional authentication/authorisation to proof his rights or elevate it.
Why couldn't i set checkbox on any rule to enable captive portal ? Maybe even with relevance ? Maybe even with checking whole two phase process ?:)
As far as i see only unregistered users can do that [see captive].
Also for notification would be nice if any user could see health verdict via website.