Account Lock - Block Email & Password Changes v1.0.0
- Author mikef
- Creation date
Will this break anything when I install it?No. Both permissions default to "Allow" on install, so nothing changes until you manually set a user group to "Never" in the Admin CP.
Does this block admins too?It depends on your group setup. If your admin account is in a group set to "Never," it will be blocked. To keep admin access, make sure the Administrative group stays set to "Allow."
Can I block email changes but still allow password changes (or vice versa)?Yes. The two permissions are completely independent. Set each one separately per user group.
Does this hide the password/email forms or just block the submission?For email: the "Change email" link disappears entirely from the account page. For password: the security page still loads (so users can manage 2FA and passkeys) but the password change form submission is blocked with an error message.
What happens when a blocked user tries to change their email or password?They see a friendly error message: "You do not have permission to change your email address/password. Please contact the site administrator."
Does this modify any core XenForo files or templates?No. It uses class extensions (XFCP pattern) only. No template edits, no core file modifications.
Is uninstalling clean?Yes. Uninstalling through Admin CP removes all permissions, phrases, and class extensions automatically. No database tables or columns are created, so nothing is left behind.
Does this work with XenForo 2.2 or older?No. It requires XenForo 2.3.0 or later due to namespace and entity changes in 2.3.
Does this block admins too?It depends on your group setup. If your admin account is in a group set to "Never," it will be blocked. To keep admin access, make sure the Administrative group stays set to "Allow."
Can I block email changes but still allow password changes (or vice versa)?Yes. The two permissions are completely independent. Set each one separately per user group.
Does this hide the password/email forms or just block the submission?For email: the "Change email" link disappears entirely from the account page. For password: the security page still loads (so users can manage 2FA and passkeys) but the password change form submission is blocked with an error message.
What happens when a blocked user tries to change their email or password?They see a friendly error message: "You do not have permission to change your email address/password. Please contact the site administrator."
Does this modify any core XenForo files or templates?No. It uses class extensions (XFCP pattern) only. No template edits, no core file modifications.
Is uninstalling clean?Yes. Uninstalling through Admin CP removes all permissions, phrases, and class extensions automatically. No database tables or columns are created, so nothing is left behind.
Does this work with XenForo 2.2 or older?No. It requires XenForo 2.3.0 or later due to namespace and entity changes in 2.3.