fix(auth): Correct max password length in config.sample.php by joshtrichards · Pull Request #54091 · nextcloud/server

joshtrichards · 2025-07-25T21:59:14Z

Resolves: #

Summary

The max password length is 469 bytes.

Ref: #33110

TODO

...

Checklist

Code is properly formatted
Sign-off message is added to all commits
Tests (unit, integration, api and/or acceptance) are included
Screenshots before/after for front-end changes
Documentation (manuals or wiki) has been updated or is not required
Backports requested where applicable (ex: critical bugfixes)

Signed-off-by: Josh <josh.t.richards@gmail.com>

nickvergessen · 2025-07-26T07:31:37Z

config/config.sample.php

- *
- * By default, the passwords are stored encrypted in the database.
+ * It may be desirable to disable this functionality when using one-time passwords
+ * or when enforcing extremely long passwords (>469 bytes aka: 


You can not enforce passwords longer than Max length.
The 300 is because encrypting the password can take significant time when it's longer than 300 characters, so that number should stay.

fix(auth): Correct max password length in config.sample.php

7a12d5d

Signed-off-by: Josh <josh.t.richards@gmail.com>

joshtrichards added this to the Nextcloud 32 milestone Jul 25, 2025

joshtrichards requested a review from a team as a code owner July 25, 2025 21:59

joshtrichards removed the request for review from a team July 25, 2025 21:59

joshtrichards added the bug label Jul 25, 2025

joshtrichards requested review from nfebe, provokateurin and salmart-dev July 25, 2025 21:59

joshtrichards added 3. to review Waiting for reviews feature: authentication labels Jul 25, 2025

joshtrichards requested a review from nickvergessen July 25, 2025 21:59

nickvergessen requested changes Jul 26, 2025

View reviewed changes

This was referenced Aug 22, 2025

32.0.0 beta 2 #54581

Merged

32.0.0 beta 3 #54606

Merged

32.0.0 beta 4 #54688

Merged

This was referenced Sep 2, 2025

32.0.0 beta 5 #54796

Merged

[stable32] 32.0.0 RC1 #54864

Merged

nextcloud-bot mentioned this pull request Sep 10, 2025

[stable32] 32.0.0 RC2 #55000

Merged

nextcloud-bot mentioned this pull request Sep 18, 2025

[stable32] 32.0.0 RC3 #55162

Merged

This was referenced Sep 25, 2025

[stable32] 32.0.0 RC4 #55298

Merged

[stable32] 32.0.0 #55354

Merged

skjnldsv modified the milestones: Nextcloud 32, Nextcloud 33 Sep 28, 2025

This was referenced Jan 7, 2026

33.0.0 beta 2 #57398

Merged

33.0.0 beta 3 #57441

Merged

This was referenced Jan 14, 2026

33.0.0 beta 4 #57545

Merged

33.0.0 beta 5 #57651

Merged

nextcloud-bot mentioned this pull request Jan 22, 2026

[stable33] 33.0.0 RC1 #57724

Merged

This was referenced Jan 29, 2026

[stable33] 33.0.0 RC2 #57899

Merged

[stable33] 33.0.0 RC3 #58047

Open

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

fix(auth): Correct max password length in config.sample.php#54091

fix(auth): Correct max password length in config.sample.php#54091
joshtrichards wants to merge 1 commit intomasterfrom
jtr-auth-pw-max-length-config-sample

joshtrichards commented Jul 25, 2025

Uh oh!

nickvergessen Jul 26, 2025

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants

Uh oh!

Conversation

joshtrichards commented Jul 25, 2025

Summary

TODO

Checklist

Uh oh!

nickvergessen Jul 26, 2025

Choose a reason for hiding this comment

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants