No password confirmation for clients (and bearer?) #8117
Labels
1. to develop
Accepted and waiting to be taken care of
client: 💻 desktop
client: 🤖🍏 mobile
enhancement
feature: authentication
We have the password confirmation on the web if you want to change certain things.
However, now that there is work on android to make (some) user info editable this becomes kind of annoying. We don't store the user password on android (we use the client login flow).
I think it would make sense to not enforce the login flow on client requests (or bearer auth for that matter).
Any opinions? @MorrisJobke @nickvergessen @schiessle @ChristophWurst ?
The text was updated successfully, but these errors were encountered: