Allow locking profile field when provided through exterior auth method

It would be nice if there could be an option to allow locking profile values to data that's received from authentication methods. Implementation wise it could probably be akin to the email address lock for LDAP accounts.