In rails 4.2, using Facebook oauth through devise, I want users to reauthenticate before changing their account details -

i in process of adding social media oauth login , registration existing site. i've followed overall process described here:

https://github.com/plataformatec/devise/wiki/omniauth:-overview

currently, if user wishes change account profile (including email address, password, etc.) need supply existing password. prevent cookie stealing style attacks, or damage caused people leaving accounts logged in on public machines.

however, if user has registered using facebook randomised password set behind scenes , user not aware password exists in our system.

this make simple process of updating user profile confusing , off-putting task. how present password user, , how explain it's different facebook password?

i present facebook pop-up or interstitial user before change account details, force them re-authenticate using facebook password, can't see way of supplying multiple callback urls, or passing form data.

is there feature or workaround let me achieve this?

please let me know if including code help, can assume i'm using standard rails app running devise , facebook oauth strategy, code snippets described in link above.