Problem Description
Currently this module assumes that any user that would need to force password changes can do so globally on all user accounts. There are some usecases where a site will delegate user management to non-administrative users via modules such as administerusersbyrole → .
In this scenario, you would not want to grant these lower privilege users the "administer force password change" permission as that may allow a lower privileged user to force an administrative user to change their password.
Proposed Solution
Patch will be submitted shortly to support this.
Needs work
2.0
Code
The patch will have to be re-rolled with new suggestions/changes described in the comments in the issue.
Not all content is available!
It's likely this issue predates Contrib.social: some issue and comment data are missing.
Let's move this over the the 2.x branch. Will need to be rerolled into an MR at this point so tests can execute.
prem suthar → made their first commit to this issue’s fork.