Re: blocking a user does nothing
Oh wait, here’s the broken part in
if ( bb_is_user_logged_in() && bb_has_broken_pass() )
I don’t see how a user could both be logged in AND have a broken password. If their password is broken, they can’t login.
This might have broken during the radical password/cookie changes in >0.8
I opened a TRAC ticket