Thanks for the heads up on this thread.
I’m sorry if there has been any confusion about this. There’s currently NO feature in s2Member that would absolutely stop a User/Member from updating their own Profile (i.e. Username/Password/Email Address). However, you do have control over which Custom Registration/Profile Fields can be edited, and which CANNOT be.
If you create your own Custom Registration/Profile Fields, these can be configured to disallow Profile edits, under: Dashboard -› s2Member® -› General Options -› Registration/Profile Fields. Open each field’s configuration window for details regarding this configuration option.
Under s2member > General Options > Member Profile Modifications I have the “Redirect Members away from the Default Profile Panel? ” setting set as “Yes”.
The feature that you’re referring to, is designed to prevent the /wp-admin/profile/ panel from being used, in cases where you’d rather Users/Members stay on the front-end of your site instead (i.e. NOT allowing /wp-admin/profile/ access, to the WordPress default profile editing panel). However, this is NOT to say that s2Member is going to disallow any sort of profile update whatsoever. It’s only preventing profile updates from occurring through the /wp-admin/profile/ panel.
If you’d like to take this a step further, and lock down s2Member’s stand-alone Profile editing panel as well, you could add this action hook to your site, which accomplishes just that.
Please create this directory and file:
/wp-content/mu-plugins/s2-hacks.php
( these are MUST USE plugins, see: http://codex.wordpress.org/Must_Use_Plugins )
<?php
add_action('init', 'prevent_s2_profile_updates', 1);
function prevent_s2_profile_updates()
{
unset($_GET['s2member_profile'], $_POST['ws_plugin__s2member_profile_save']);
}
?>