When password expiration is enabled, accounts without a stored pwd_last_updated timestamp are not treated as expired. Instead, the first successful login recreates the timestamp with the current time and allows access. This lets pre-existing local accounts bypass the expiration policy without changing their password.
App version observed: password_policy 5.0.0
Nextcloud 33.0.2
When password expiration is enabled, accounts without a stored pwd_last_updated timestamp are not treated as expired. Instead, the first successful login recreates the timestamp with the current time and allows access. This lets pre-existing local accounts bypass the expiration policy without changing their password.
App version observed: password_policy 5.0.0
Nextcloud 33.0.2