Feature summary (what you would like to be able to do and where):
When a CentralAuth account is locked, the Phabricator account associated with the locked CA account should be logged out.
Use case(s) (list the steps that you performed to discover that problem, and describe the actual underlying problem which you want to solve. Do not describe only a solution):
Some spammers/vandals will spam/vandalize both the wikis and Phabricator. When this happens, their accounts are often locked. However, those users are still able to continue spamming/vandalizing on Phabricator until they are blocked on Phabricator as well.
Benefits (why should this be implemented?):
[19:13:38] <RhinosF1> And disabled the account via phab-ban [19:27:05] <Nemo_bis> Hmm. Most of the comments happened after the account had already been locked on Meta. I guess that doesn't help if one has already logged in. [19:31:14] <RhinosF1> Nope [19:31:19] <AntiComposite> yeah, unfortunately locks don't kill the phab session [19:31:38] <RhinosF1> Unlike with ldap, disabling linked account doesn't invalidate anything [19:31:41] <RhinosF1> Maybe it should [20:18:41] <bd808> RhinosF1: it could actually... we would basically just need to write the same kind of block/unblock hook handlers that are active for wikitech to fire when folks are blocked on mediawiki.org and/or globally. That might be worth a ticket and discussion. The code is a bit of work but mostly "easy" to put together. [20:22:38] <RhinosF1> bd808: the code is the easy bit [20:22:48] <RhinosF1> The discussion is the hard part [20:23:32] <bd808> In this particular case the group to discuss the change is relatively small and technical I think, but I agree [20:25:29] <RhinosF1> bd808: it's wikimedia