Merge pull request #947 from nextcloud/device-specific-passwords-change

Document behaviour of device-specific passwords on password change
2025-10-26 11:18:02 +00:00 · 2018-11-27 11:45:02 +01:00 · 2018-11-27 11:45:02 +01:00 · fc111aaefe
commit fc111aaefe
parent 60879ae2ea 6a4e7c72fc
1 changed files with 21 additions and 0 deletions
--- a/user_manual/session_management.rst
+++ b/user_manual/session_management.rst
@ -44,3 +44,24 @@ those individually if necessary.
 .. note:: If you are :doc:`user_2fa` for your account,
   device-specific passwords are the only way to configure clients. The
   client will deny connections of clients using your login password then.
+
+Device-specific passwords and password changes
+----------------------------------------------
+
+The behaviour of device-specific passwords during changes of the main password
+changed in different versions of Nextcloud.
+
+Up to Nextcloud 13
+	Device-specific passwords are removed on password change and also are
+	removed once they are not valid anymore if an external user backend is
+	used.
+
+Nextcloud 14
+	For local user backend the device-specific passwords are updated properly
+	and continue to work. For external user backends (like LDAP/AD) the
+	device-specific passwords are still removed.
+
+Starting with Nextcloud 15
+	For password changes in external user backends the device-specific passwords
+	are marked as invalid and once a login of the user account with the main
+	password happens all device-specific passwords are updated and work again.