Weird, after enable 2FA, still can access webdav via accout password

2FA enabled, server restarted.
re-login with 2FA, set / generate a webdav secret via in the “profile” page.
try to access / mount the webdav using the webdav secret, rejected.
use the original user password, accepted.

isn’t it supposed that webdav access only accept the webdav secret auth when 2FA enabled?
correct me if i’m wrong.

1 Like