Clarify roles, make prose more consistent

Requirements/DBUser API.md

@@ -190,40 +190,58 @@ createUser(snac\data\User $user)
 
 Add a user record. Minimal requirements is user id or email (which ever is used to login). Return true for
 success.
+
 ---
+
 saveUser(snac\data\User $user) 
 
 Update a user record. Verify that read-only fields match, overwrite everthing else with values from the User
 object. Return true for success.
+
 ---
+
 readUser($userID or $email) 
 
 Return a User object for the user id or email. Return false on failure.
+
 ---
+
 disableUser(snac\data\User $user) 
 
 Disable log in to this account. Update table appuser.active to false. Return true on success.
+
 ---
+
 addUserRole(snac\data\User $user, $newRole) 
 
 Add a role to the User via table appuser_role_link. Return true on success.
+
 ---
+
 listRoles()
 
 List all system roles. The simpliest form would be an associative list with keys: id, label, description.
+
 ---
+
 createRole($label, $description) 
 
 Create a new role with $label and $description. Return true on success.
+
 ---
+
 checkPassword(snac\data\User $user, $passwd) 
 
 Check $passwd matches the password stored for snac\data\User. Return true on success.
+
 ---
+
 addSession(snac\data\User $user, $accessToken, $expire) 
 
 Add a new session token $accessToken with expiration time $expire for $user. Update if $accessToken exists.
+
 ---
+
 checkSessionActive(snac\data\User $user, $accessToken) 
 
 Check that a session is active (not expired) for $user and $accessToken. Time is assumed to be "now". Return