From 7d259262bb97c5a911754e485a61a6ff7bed0104 Mon Sep 17 00:00:00 2001
From: Ivan Kohler <ivan@freeside.biz>
Date: Tue, 19 Nov 2013 21:56:43 -0800
Subject: [PATCH] prohibit self-service changing of suspended services
 passwords, RT#26140

---
 FS/FS/ClientAPI/passwd.pm | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/FS/FS/ClientAPI/passwd.pm b/FS/FS/ClientAPI/passwd.pm
index b22d7617e..8001e4f2d 100644
--- a/FS/FS/ClientAPI/passwd.pm
+++ b/FS/FS/ClientAPI/passwd.pm
@@ -23,6 +23,11 @@ sub passwd {
                                          'domsvc'    => $svc_domain->svcnum, }
                          );
   return { error => 'User not found.' } unless $svc_acct;
+
+  my $cust_pkg = $svc_acct->cust_svc->cust_pkg;
+  return { error => "Can't change password for a suspended service" }
+    if $cust_pkg && $cust_pkg->status eq 'suspended';
+
   return { error => 'Incorrect password.' }
     unless $svc_acct->check_password($old_password);
 
-- 
2.11.0