Server: NC14 final: Password confirmation
Steps to reproduce
- do something what needs to be password confirmed (remove app,)
2.
3.
Expected behaviour
I can confortably enter my password to confirm changes.
Actual behaviour
Password request windows is shown for too short period of time. I have no time to enter my pass, so now window dismiss automaticaly and I cant do anything.
Server configuration
Operating system:
Web server:
Database:
PHP version:
14.0.0.19: (see Nextcloud admin page)
Updated from an older Nextcloud/ownCloud or fresh install:
Where did you install Nextcloud from:
Signing status:
Signing status
Login as admin user into your Nextcloud and access
http://example.com/index.php/settings/integrity/failed
paste the results here.
List of activated apps:
App list
If you have access to your command line run e.g.:
sudo -u www-data php occ app:list
from within your Nextcloud installation folder
Nextcloud configuration:
Config report
If you have access to your command line run e.g.:
sudo -u www-data php occ config:list system
from within your Nextcloud installation folder
or
Insert your config.php content here.
Make sure to remove all sensitive content such as passwords. (e.g. database password, passwordsalt, secret, smtp password, …)
Are you using external storage, if yes which one: local/smb/sftp/...
Are you using encryption: yes/no
Are you using an external user-backend, if yes which one: LDAP/ActiveDirectory/Webdav/...
LDAP configuration (delete this part if not used)
LDAP config
With access to your command line run e.g.:
sudo -u www-data php occ ldap:show-config
from within your Nextcloud installation folder
Without access to your command line download the data/owncloud.db to your local
computer or access your SQL server remotely and run the select query:
SELECT * FROM `oc_appconfig` WHERE `appid` = 'user_ldap';
Eventually replace sensitive data as the name/IP-address of your LDAP server or groups.
Client configuration
Browser:
Operating system:
Logs
Web server error log
Web server error log
Insert your webserver log here
Nextcloud log (data/nextcloud.log)
Nextcloud log
Insert your Nextcloud log here
Browser log
Browser log
Insert your browser log here, this could for example include:
a) The javascript console log
b) The network log
c) ...
jookk
All 7 comments
GitMate.io thinks possibly related issues are https://github.com/nextcloud/server/issues/3826 (Password confirmation fails on some settings), https://github.com/nextcloud/server/issues/8785 (Password expiration), https://github.com/nextcloud/server/issues/3416 (admin password confirmation problem), https://github.com/nextcloud/server/issues/2395 (Cancel password confirmation on settings toggles checkbox state), and https://github.com/nextcloud/server/issues/8464 (Request: allow weak passwords on shared folders after confirmation).
nextcloud-bot
on 10 Sep 2018
Persists in 14.01 too. Need more time to enter admin password. I have to race it now, and I don't always win. This is silly. 15 seconds would be a significant upgrade, but frankly, waiting a whole 30 seconds before you bounce this would not be a security risk.
Wizlonex
on 27 Sep 2018
@skjnldsv were there reasons for the choice of 7s? sounds indeed too quick. Especially, if you perhaps first need to copy from your password manager.
blizzz
on 27 Sep 2018
Otherwise, it's a low hanging fruit for an open source contribution https://github.com/nextcloud/server/blob/master/settings/src/store/api.js#L89 :)
blizzz
on 27 Sep 2018
Duplicate of #11224
skjnldsv
on 27 Sep 2018
Is there any plan to solve this? This is seriously annoying when having to copy long passwords from password managers, and when managing users.
mctehlers
on 30 Mar 2019
Fixed with Nextcloud 14.0.4. Check https://github.com/nextcloud/server/issues/11224 for more details.
kesselb
on 30 Mar 2019
Related issues
georgehrke
·
3Comments
rullzer
·
3Comments
ThomasLeister
·
3Comments
e-alfred
·
3Comments
blackcrack
·
3Comments
Most helpful comment
@skjnldsv were there reasons for the choice of 7s? sounds indeed too quick. Especially, if you perhaps first need to copy from your password manager.