Clarify documentation for `only_for_reauth` (#16737)

2023-12-07 18:52:50 +01:00 · 2023-12-07 18:52:50 +01:00 · aa983c7b0f
parent fcf3c493c2
commit aa983c7b0f
2 changed files with 10 additions and 9 deletions
--- a/changelog.d/16737.doc
+++ b/changelog.d/16737.doc
@ -0,0 +1 @@
+Clarify that `password_config.enabled: "only_for_reauth"` does not allow new logins to be created using password auth.
--- a/docs/usage/configuration/config_documentation.md
+++ b/docs/usage/configuration/config_documentation.md
@ -3613,7 +3613,7 @@ This setting has the following sub-options:
 * `enabled`: Defaults to true.
   Set to false to disable password authentication.
   Set to `only_for_reauth` to allow users with existing passwords to use them
-   to log in and reauthenticate, whilst preventing new users from setting passwords.
+   to reauthenticate (not log in), whilst preventing new users from setting passwords.
 * `localdb_enabled`: Set to false to disable authentication against the local password
   database. This is ignored if `enabled` is false, and is only useful
   if you have other `password_providers`. Defaults to true.
				`@ -0,0 +1 @@`
				Clarify that `password_config.enabled: "only_for_reauth"` does not allow new logins to be created using password auth.