Open narcisgarcia opened 4 months ago
Now I've realized a simpler scenario where Nextcloud could log authentication failures and require DAV client to retry: When external user changes password on external directory (eg. IMAP server), and later configures a new DAV client.
As some DAV client can have old password stored, I understand that if local authentication succeeds, then no external authentication must be checked. Only when local one fails external user could apply new password.
On this scenario from same Internet origin:
"External user authentication" is enabled by site administrator to trust external accounts as master directory of this sort of users. This necessarily implies external password (when verified) prevails over any local one. Then on any difference between user's specified password (when verified) and Nextcloud stored password, external verified one should prevail as the master/trusted one, and this should imply to re/set local (Nextcloud) password with this authenticated one.
In the meanwhile, DAV clients become slow to synchronize because need to retry several times the login.