XF 2.1 Wipe all passwords

Tai Coromandel

Tai Coromandel

Active member
I need to wipe all XF local passwords because we only allow login over our custom OAuth2 provider. Unfortunately, some users have managed to get local passwords on their accounts when they shouldn't have through an old XF addon. This is causing problems with 2FA and other sections that require a password.

Would this SQL query from XF 1 still work in XF 2?

Martin Vium said:
Code: 
UPDATE xf_user_authenticate
SET data = BINARY 'a:0:{}', scheme_class = 'XenForo_Authentication_NoPassword'
WHERE user_id = 1
Click to expand...

I'd just change to "WHERE user_id != [my user id]" to wipe everyone's passwords but my own.
 
Sort by date Sort by votes
Ok, after taking a look at XF2 no password accounts, the scheme_class is now XF:NoPassword . The modified SQL query below is what I think should work for XF2, and specify all users that should not have a password wiped (in my case, administrators).

SQL: 
UPDATE xf_user_authenticate
SET data = BINARY 'a:0:{}', scheme_class = 'XF:NoPassword'
WHERE user_id NOT IN ( 'id1', 'id2', 'id3', 'id4' )
 
Upvote 0 Downvote
You must log in or register to reply here.

Similar threads

eDaddi
  • Question Question
XF 2.2 R2 & File not found errors
Replies
16
Views
392
MattW
MattW
Artis
  • Question Question
XF 2.2 Error updating Super admin password update with REST api
Replies
2
Views
897
Artis
Artis
djbaxter
  • Question Question
XF 2.1 SQL help to delete warning points prior to a specified date
Replies
3
Views
652
djbaxter
djbaxter
Lukas W.
XF 2.0 Change ID of connected account provider
Replies
3
Views
667
Lukas W.
Lukas W.
J
Decode Hash not Ok
Replies
3
Views
837
silence
silence
Top Bottom