From 63ed6e603499d0954a67ce8ffbbcc6013092cbad Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Julius=20H=C3=A4rtl?= Date: Thu, 4 Feb 2021 11:04:33 +0100 Subject: [PATCH] Add note about SAML limitation to apply to all login credential based auth mechanisms MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Signed-off-by: Julius Härtl --- .../configuration_files/external_storage/auth_mechanisms.rst | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/admin_manual/configuration_files/external_storage/auth_mechanisms.rst b/admin_manual/configuration_files/external_storage/auth_mechanisms.rst index 0decb12ab..c19fb0574 100644 --- a/admin_manual/configuration_files/external_storage/auth_mechanisms.rst +++ b/admin_manual/configuration_files/external_storage/auth_mechanisms.rst @@ -41,13 +41,15 @@ credentials and therefore cannot perform any background tasks on the storage: * Background versions expiration does not work * Desktop and mobile clients that use tokens to authenticate can not access those shares * Other services that might request the file through a different request like Collabora Online or OnlyOffice will not be able to open files from that storage -* The method cannot be used with SAML authentication, because Nextcloud does not get a hold of any credentials whatsoever +* The method cannot be used with SAML/SSO authentication, because Nextcloud does not get a hold of any credentials whatsoever The **Log-in credentials, save in database** mechanism uses the Nextcloud login credentials of the user to connect to the storage. These are stored in the database encrypted with the shared secret. This allows to share files from within this mount point. +* The method cannot be used with SAML/SSO authentication, because Nextcloud does not get a hold of any credentials whatsoever + The **User entered, store in database** mechanism work in the same way as the "Username and password" mechanism but the credentials need to be specified by each user individually. Before the first access to that mount point the user