Disable passwordless login and remove "Log in with a device" link on login page

esxpfe · July 3, 2020, 11:46pm

Hi,

With Nextcloud 19.0.0.12, is there a way to remove and disable the “Log in with a device” link on the login page? We do not use passwordless login and would also like to disable this capability.

I have looked in docs to see if there has been a new parameter added to config.php, but couldn’t find anything there: https://docs.nextcloud.com/server/latest/admin_manual/configuration_server/config_sample_php_parameters.html

Is there an undocumented option for config.php? Or some other setting somewhere? I couldn’t find any setting in /settings/admin, etc.

Thank you

kesselb · July 5, 2020, 7:21am

auth.webauthn.enabled is the config key.

esxpfe · July 6, 2020, 3:24am

Thank you kindly for that!

I’d suggest better documentation though for those interested in that sort of feedback. The entry for auth.webauthn.enabled is very nondescript, and no wonder searches also return no matches!

Also FYI, I think as of right now, there’s an SSL error on https://docs.nextcloud.com/server/latest/admin_manual/configuration_server/config_sample_php_parameters.html. Seems like cert expired yesterday at 2am. Just so you know!

Thanks

devnull · July 6, 2020, 10:20am

The SSL certificate was extended

Search for documentation:
deactivate webauthn nextcloud

In Germany first hit:

https://www.hostflash.de/blog/webhosting/webauthn-fido2-in-nextcloud-19-deaktivieren-anleitung.html

just · October 11, 2020, 10:08pm

sjash · February 17, 2021, 8:50am

The Actual line in config.php will be
‘auth.webauthn.enabled’ => false,

guystreeter · September 11, 2021, 10:35pm

This is not working for me. I have

  'auth.webauthn.enabled' => 'false',

in my config.php but the “Log in with a device” link still shows on my login page.
I’m running the NC 22 apache docker image.

bb77 · September 12, 2021, 5:58am

Hi @guystreeter

Remove the single quotes from the value ‘false’, then it should work. Like this…

'auth.webauthn.enabled' => false,

bluesky.ca · August 17, 2022, 9:12pm

I believe the following is the proper way of doing this ie it leaves no confusion what is being done and takes effect right away :

occ config:system:set --type boolean --value false auth.webauthn.enabled

If occ provides the functionality for the task at hand, I would use that before editing config.conf directly - speaking from experience