Improved handling of past-member accounts

We've made a number of improvements to how Church Social handles accounts for people who are no longer active members of your church.
Previously, when a member’s membership ended — for example, if they moved away — their account remained active, allowing them to continue logging in and potentially retain roles like “Statistician” or “Deacon.”
The expectation was that administrators would manually disable these accounts and remove any assigned roles, since login access wasn’t directly tied to membership. However, in practice, this wasn’t always clear, and many churches ended up with former members who still had login access to their previous accounts.
With this update:
- We now automatically remove all roles and disable logins for people who no longer have an active membership.
- When a membership is ended, any active office-bearer terms for that person are also ended.
- We remove all roles and disable logins when a person's email address is removed, since login access to Church Social requires an email address.
To help administrators understand when this will happen, we now display a clear warning whenever a change will remove a person's roles and disable their login access.
Finally, we’ve also cleaned up existing data to bring it in line with this new behavior. Accounts that meet any of the following criteria have had their roles removed and login access disabled:
- No email address on file
- Marked as deceased
- Not an active member and haven’t logged in within the past three months
These changes should help reduce confusion going forward and ensure that login access is appropriately limited to current members. They also improve the overall security of the app by removing unnecessary access from legacy accounts.