Ok, so it looks like the developers of the app didn’t necessarily keep security in mind with some of these features.
At the moment, when it comes to user registration, you have to create another user’s password and then what, email their password in plaintext to them?
What I want to do is simply create a username and have the app send them an email, inviting them to register and choose their own password. It would be nice if I could pre-assign them permissions to a folder too.
I did see the “Registration” app, but this app completely left security out of mind. Why does it specifically tell you what domains are permitted? That’s like trying to login to Gmail and Gmail telling you “Sorry, wrong email. Here’s a list of emails that we have registered.”
Sorry, a little frustration and spent a decent bit of time setting up a server just to run Nextcloud along with SSL, so I kind of expected a lot more.
Any suggestions on actually using Nextcloud to securely create new accounts and delivering the message to the users?