Batch Password Invalidate and Reset

Batch Password Invalidate and Reset [Paid] 1.0.0

No permission to buy ($20.00)
Overview History Discussion
Slavik

Slavik

XenForo moderator
Staff member
Slavik submitted a new resource:

Batch Password Invalidate and Reset - Use the batch user update function to invalidate and reset users password.

This addon add 2 new options to the batch user update allowing an admin to invalidate and send a new password email to matching users.

This has a variety of uses, such as forcing password changes of regular intervals, invalidating passwords following a security compromise, or sending out new passwords following a double import where passwords may be unusable anyway.

View attachment 93902
Click to expand...

Read more about this resource...
 
Couple questions.
  • Does it work with the latest, 1.5.8 ?
  • I want everyone to go through a password change. My preference is that when a user successfully logs in, they will be presented with a requirement to change their password. Is the "invalidate" option the proper choice?
Thanks,
 
Hi,

This works with the latest XenForo.

Invalidate will stop them logging in (it will throw a password error as if you entered the password wrong), rather than wait until they log in and force them to change.
 
Is it possible to invalidate passwords for users that didn't login for a long time? Let's say in the last 3 years?
 
Fred. said:
Is it possible to invalidate passwords for users that didn't login for a long time? Let's say in the last 3 years?
Click to expand...

It uses the batch user update tool to search and apply the changes, so anything you can search for in that you can use with this.
 
Slavik said:
It uses the batch user update tool to search and apply the changes, so anything you can search for in that you can use with this.
Click to expand...
Great! Then I can invalidate all users passwords that didn't login in the last years so those accounts cant be compromised. (password re-usage)
The only problem that I just think about is that that will probably send out emails to all those old accounts with invalid e-mail addresses.
So I will get loads of bounced emails and a bad reputation. I have to find a way so it's not sending the e-mails.
 
Can I suggest editing your zip file structure to make it installable with the Install & Upgrade addon?
 
This is a joke, right? This should be a standard option on xenforo, especially when you have a look at the recent CloudFlare breach, where probably thousands of XenForo sites were affected and passwords of users are probably out in the open.

Paying for something even old vbulletin already had, pathetic.
 
If you were affected by the cloudflare parser bug (which caused data to be exposed to crafty search engine queries) I would certainly understand your frustration but this breach you speak of by cloudflare only happened supposedly when using e-mail obfuscation, server-side excludes, and Automatic HTTPS rewrites.

At any rate vbulletin having a feature and cloudflare having a breach doesn't really warrant slighting of a developer of an addon who puts in his own time to provide a solution to what is obviously a problem for some.

I hope your potential problem caused by cloudflare is not a permanent one and wish you the best of luck with your site.
 
tr1cky said:
This is a joke, right? This should be a standard option on xenforo, especially when you have a look at the recent CloudFlare breach, where probably thousands of XenForo sites were affected and passwords of users are probably out in the open.

Paying for something even old vbulletin already had, pathetic.
Click to expand...

Then put it as a suggestion in the suggestions forum.
 
tr1cky said:
This should be a standard option on xenforo, especially when you have a look at the recent CloudFlare breach, where probably thousands of XenForo sites were affected and passwords of users are probably out in the open.
Click to expand...

Agreed.

tr1cky said:
This is a joke, right?
...
Paying for something even old vbulletin already had, pathetic.
Click to expand...

XF should have it - but 20 bucks is fair enough in the meantime to give to someone who took the time to build the add-on that is so clearly needed. :)
 
You must log in or register to reply here.
Back
Top Bottom