I am trying to find the best procedure for adding password requirements with Parse.com. It appears the easiest way would be to use a cloud function to execute right before user data is saved. My only caveat is that I want to validate user passwords only when the password is different from what is stored in the db or if the user does not exist in the db.

Parse.Cloud.beforeSave(Parse.User, function(request, response) { ... }

Couple of questions:

1. Does request.object.existed() work in beforeSave functions as it does with afterSave?
2. Can I access the user's password (using Parse.Cloud.useMasterKey()) via the request.object in the beforeSave functions? Or do I need to query the user's object inside the function.
3. In the log the input to the beforeSave function appears to have original and updated keys similar to the json below. However, I was not able to access the original and update json through the request.object. How would I access this data? It would be nice if the only check needed to be performed to verify whether a user's password as changed if a comparison between request.object.original.password !== request.object.updated.password

Sample cloudcode log output:

Input: {"original":{"email":"blah", "firstname" : "blah", "emailVerified":true, "username":"blah", "createdAt":"2014-04-28T23:05:47.452Z", "updatedAt":"2014-0716T01:55:52.907Z",
"objectId":"blah", "sessionToken":"blah"}, "update":{"firstname":"blah2"}}