Clarify documentation for `only_for_reauth` (#16737)

pull/16743/head
Dirk Klimpel 2023-12-07 18:52:50 +01:00 committed by GitHub
parent fcf3c493c2
commit aa983c7b0f
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
2 changed files with 10 additions and 9 deletions

1
changelog.d/16737.doc Normal file
View File

@ -0,0 +1 @@
Clarify that `password_config.enabled: "only_for_reauth"` does not allow new logins to be created using password auth.

View File

@ -3613,7 +3613,7 @@ This setting has the following sub-options:
* `enabled`: Defaults to true. * `enabled`: Defaults to true.
Set to false to disable password authentication. Set to false to disable password authentication.
Set to `only_for_reauth` to allow users with existing passwords to use them Set to `only_for_reauth` to allow users with existing passwords to use them
to log in and reauthenticate, whilst preventing new users from setting passwords. to reauthenticate (not log in), whilst preventing new users from setting passwords.
* `localdb_enabled`: Set to false to disable authentication against the local password * `localdb_enabled`: Set to false to disable authentication against the local password
database. This is ignored if `enabled` is false, and is only useful database. This is ignored if `enabled` is false, and is only useful
if you have other `password_providers`. Defaults to true. if you have other `password_providers`. Defaults to true.