@anonymous-matomo-user opened this Issue on October 12th 2011


In my environment users get accounts created with API and login is done directly for them. So if they could change the password they would break their access.

Also would like to disable API for users, but still have it for superuser. This I just did solve by hiding the API link (and hope that they wouldn't know how to use it otherwise (they shouldn't as they won't know the token)).

Attached is a proposed patch to get these features. It uses following settings in config. Of course the naming of those
can be changed.

disablepasswordchange = 1
hideapi = 1
@anonymous-matomo-user commented on October 12th 2011

Attachment: Patch to implement suggested changes

@robocoder commented on October 15th 2011 Contributor

Duplicate of #1568

This Issue was closed on October 15th 2011
Powered by GitHub Issue Mirror