Hello
I’m using an OAuth2 provider with the “Social Login” app to login my users to my Nextcloud instance. I also use the feature where I assign groups in NC based on the groups that are sent during OAuth2 Request.
This is working fine.
My users use both the App and also the Browser to access the instance. What I’m now wondering is how long it would at the maximum for a user to get removed from a assigned group in NC when i remove them from the group in my OAuth2 provider?
Especially the App can be very “persistent”. I seldom have to re-authenticate.
And I fear that a user using NC frequently might never have to reauthenticate, and therefore NC never gets updated about the missing group assignment.
In my config.php, I have set no parameter concerning any lifetime of sessions or similar.
Does anyone have a similar setup? And how do you handle this group “revocation”?