nextcloud_ynh icon indicating copy to clipboard operation
nextcloud_ynh copied to clipboard
verified publisher icon YunoHost-Apps

Allow to disable "reset password" workflow

Open decentral1se opened this issue 6 years ago • 3 comments

It's possible to add to the config/config.php:

'lost_password_link': 'disabled',

And then the "reset password" flow is disabled. This is useful beccause I direct users to manage their passwords through the YunoHost administration interface. I am not even sure it works when the LDAP backend is being used. Should this URL redirect to the YunoHost admin in the end anyway?

decentral1se avatar Sep 29 '19 10:09 decentral1se

I think it's a very good idea to disable that password change feature! :+1: It's a general behavior to implement/configure for each app. It would be interesting to redirect to the admin panel, but is there a direct link to the password change/will that be understandable enough for people...?

JimboJoe avatar Sep 29 '19 10:09 JimboJoe

Cool! Yeah, I think we could just use:

https://$mydomain.xyz/yunohost/sso/password.html

And then after you do your username/login password, you can change it.

Should this be the default though?

decentral1se avatar Sep 29 '19 10:09 decentral1se

Well, it depends if the app can have "external" users (i.e. in Nextcloud and not in YunoHost). And it'd be better to redirect back to the app after changing the password... I think there's an interested mechanism to generalize. There's already a patch for Nextcloud to redirect to Yunohost portal lougout when you disconnect from Nextcloud.

JimboJoe avatar Sep 29 '19 10:09 JimboJoe