I canât understand why there is no section in personal configuration section to list and manage (revoke) application passwords.
I can only create passwords and take a look at an activity login feed looking for the login I want to revoke. Really?
I may even create thousands of applications password, filling nextcloudâs database with garbage, and I will never be able to remove any of them I do not use. Absurd.
Please, add a list of application passwords to nextcloudâs admin interface to properly manage them.
simply because itâs in every userâs personal settings under âsecurityâ.
so the logic is: if an users grants access to an installed app itâs up to HIM/HER to revoke this right again.
if you - as an admin - donât want users to use a patricular app, donât install or just de-install it.
if you - as an admin - donât want an user to use a special app, put the app into a group and grant using rightâs to the users in that group - remove user from group.
if you - as an admin - donât want an user doing anything, remove user.
Iâm creating applications passwords using userâs personal settings under âsecurityâ. Many of them, for the nextcloudâs desktop client in different laptops. But I canât see there a simple list of app passwords to manage them, to see how many I have created, their names and to revoke the ones I do not need any more. Only an activity feed which does not show app paswords never used, for example.
I do not think and activity feed it is a way to manage applications passwords, so I would like nextcloudâs developers to implement a simple list of existing apps passwords to manage them.
I donât understand this question neither. If you define an app password in every users personal settings, then the app passwords are only managed there of course. I donât see why an admin should see a list of all the app passwords of all the users.
And for the user (in his personal settings under security) there is a list of all app passwords and a column for last activity indicating if this app password was ever used or when it was used last.
And furthermore these app passwords can be revoked i.e. deleted from the database:
I donât want admin to manage users applications passwords. I first wrote admin interface but the relevant section was personal configuration. I have changed first post to reflect that.
A login activity feed is not a list of all app passwords. If I create a app password that I do not use at least one time, it will never show there and I will never be able to revoke it. I do not think that this is a desired behavior. A login activity feed is not a convenient way to manage application passwords. Thatâs my point. Am I wrong?
Why not just discuss the real point: a proper management interface for application passwords?
I insist: a login feed is not a list of all app passwords. In the login feed there are many entries that are not app passwords. To easily track and revoke all app passwords the proper way is complete list of all app passwords. I do not want to look for when it was used, yesterday, one year ago or never.
I agree. We should see the List of Apps for which we gave passwords.
The text on the screen says:
âHere you can generate individual passwords for apps so you donât have to give out your password. You can revoke them individually too.â
But I dont see a list,so there is a problem to revoke anythingâŠ