From 1db46642cd9ef4db68392f3ae194aee5096c86a7 Mon Sep 17 00:00:00 2001
From: Classic298 <27028174+Classic298@users.noreply.github.com>
Date: Mon, 10 Nov 2025 09:06:49 +0100
Subject: [PATCH] Update environment variable documentation for SSO

Clarify the conditions for disabling password authentication in SSO environments.
---
 docs/getting-started/env-configuration.mdx | 1 -
 1 file changed, 1 deletion(-)

diff --git a/docs/getting-started/env-configuration.mdx b/docs/getting-started/env-configuration.mdx
index 75e96c9..769ad64 100644
--- a/docs/getting-started/env-configuration.mdx
+++ b/docs/getting-started/env-configuration.mdx
@@ -87,7 +87,6 @@ Failure to set WEBUI_URL before using OAuth/SSO will result in failure to log in
 - Type: `bool`
 - Default: `True`
 - Description: Allows both password and SSO authentication methods to coexist when set to True. When set to False, **while SSO is enabled (`ENABLE_OAUTH_SIGNUP`=True)**, it disables all password-based login attempts on the /signin and /ldap endpoints, enforcing strict SSO-only authentication. Disable this setting in production environments with fully configured SSO to prevent credential-based account takeover attacks; keep it enabled if you require password authentication as a backup or have not yet completed SSO configuration. Should never be disabled if OAUTH/SSO is not being used.
-- Persistence: This environment variable is a `PersistentConfig` variable.
 
 :::danger