ACL\Login move public var to private: login

the former public var $login is now private and if it is set can be
checked with loginActionSet (true if login_login was in _POST as login
action.

Some info update for phpUnit ACL\Login test file

4dev/tests/CoreLibsACLLoginTest.php

@@ -157,16 +157,17 @@ final class CoreLibsACLLoginTest extends TestCase
 	 */
 	public function loginProvider(): array
 	{
-		// 0: mock settings/override flag settings
-		// 2: get array IN
-		// 1: post array IN
-		//    login_login, login_username, login_password, login_logout
-		//    change_password, pw_username, pw_old_password, pw_new_password,
-		//    pw_new_password_confirm
-		// 2: override session set
-		// 3: expected error code, 0 for all ok, 3000 for login page view
-		//    note that 1000 (no db), 2000 (no session) must be tested too
-		// 4: expected return array, eg login_error code, or other info data to match
+		// 0[mock]   : mock settings/override flag settings
+		// 1[get]    : get array IN
+		// 2[post]   : post array IN
+		//             login_login, login_username, login_password, login_logout
+		//             change_password, pw_username, pw_old_password, pw_new_password,
+		//             pw_new_password_confirm
+		// 3[session]: override session set
+		// 4[error]  : expected error code, 0 for all ok, 3000 for login page view
+		//             note that 1000 (no db), 2000 (no session) must be tested too
+		// 5[return] : expected return array, eg login_error code,
+		//             or other info data to match
 		$tests = [
 			'load, no login' => [
 				// error code, only for exceptions
@@ -1546,6 +1547,14 @@ final class CoreLibsACLLoginTest extends TestCase
 			);
 		}
 
+		// if _POST login set check this is matching
+		if (!empty($post['login_login'])) {
+			$this->assertTrue(
+				$login_mock->loginActionRun(),
+				'Assert that post login_login was pressed'
+			);
+		}
+
 		// always check, even on error or not set
 		if (!$login_mock->loginGetLoginUserIdUnclean()) {
 			$this->assertEquals(