Skip to content

doc(auth): Warn about disabled token passwords and LDAP logout #37678

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
ChristophWurst merged 1 commit into from
Apr 11, 2023
Merged

doc(auth): Warn about disabled token passwords and LDAP logout #37678

ChristophWurst merged 1 commit into from
Apr 11, 2023

Conversation

@ChristophWurst
Copy link
Member

@ChristophWurst ChristophWurst commented Apr 11, 2023

@ChristophWurst
doc(auth): Warn about disabled token passwords and LDAP logout
20c6522 
Auth tokens store the user's login password by default. If the password
changes externally (on LDAP), all connected clients stop syncing after 5
minutes max when the password is verified the next time. A web login
revivess those app passwords.

If storing the password is disabled, the tokens continue to work after
password change. But that also means the clients are not logged out the
same way. This can be fine for some setups and problematic for others.

Signed-off-by: Christoph Wurst <[email protected]>
@ChristophWurst ChristophWurst added this to the Nextcloud 27 milestone Apr 11, 2023
@ChristophWurst ChristophWurst self-assigned this Apr 11, 2023
@ChristophWurst ChristophWurst merged commit 9edc3aa into master Apr 11, 2023
@ChristophWurst ChristophWurst deleted the doc/auth/no-token-password-no-client-logout branch April 11, 2023 19:04
@ChristophWurst
Copy link
Member Author

ChristophWurst commented Apr 11, 2023

/backport to stable26

@backportbot-nextcloud
Copy link

backportbot-nextcloud bot commented Apr 11, 2023

The backport to stable26 failed. Please do this backport manually.

# Switch to the target branch and update it
git checkout stable26
git pull origin/stable26

# Create the new backport branch
git checkout -b fix/foo-stable26

# Cherry pick the change from the commit sha1 of the change against the default branch
# This might cause conflicts. Resolve them.
git cherry-pick abc123

# Push the cherry pick commit to the remote repository and open a pull request
git push origin fix/foo-stable26

More info at https://docs.nextcloud.com/server/latest/developer_manual/getting_started/development_process.html#manual-backport

@ChristophWurst
Copy link
Member Author

ChristophWurst commented Apr 12, 2023

/backport to stable26

@backportbot-nextcloud backportbot-nextcloud bot mentioned this pull request Apr 12, 2023
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@blizzz blizzz blizzz approved these changes

@CarlSchwan CarlSchwan CarlSchwan approved these changes

@PVince81 PVince81 Awaiting requested review from PVince81

@st3iny st3iny Awaiting requested review from st3iny

@miaulalala miaulalala Awaiting requested review from miaulalala

Assignees

@ChristophWurst ChristophWurst

Labels

3. to review Waiting for reviews feature: authentication

Projects

💌 📅 👥 Groupware team
Archived in project

Milestone

Nextcloud 27

Development

Successfully merging this pull request may close these issues.

4 participants

@ChristophWurst @blizzz @CarlSchwan