Optimized OIDC Login for Nextcloud

group_vars/all/01_modes.yml

@@ -5,4 +5,4 @@ mode_reset:   false # Cleans up all CyMaIS files. It's necessary to run to whole
 mode_test:    false # Executes test routines instead of productive routines
 mode_update:  true  # Executes updates
 mode_backup:  true  # Activates the backup before the update procedure
-mode_cleanup: false # Cleanup unused files and configurations
+mode_cleanup: true  # Cleanup unused files and configurations

group_vars/all/07_applications.yml

@@ -245,11 +245,11 @@ defaults_applications:
   nextcloud:
     version:                "production"                          # @see https://nextcloud.com/blog/nextcloud-release-channels-and-how-to-track-them/
     ldap:
-      enabled:              True                                  # Enables LDAP by default, missing ansible setup tasks @todo setup
+      enabled:              True                                  # Enables LDAP by default
     oidc:
       enabled:              true                                  # Activate OIDC for Nextcloud
       # floavor decides which OICD plugin should be used. 
-      # Available options: login, sociallogin
+      # Available options: oidc_login, sociallogin
       # @see https://apps.nextcloud.com/apps/oidc_login
       # @see https://apps.nextcloud.com/apps/sociallogin
       flavor:               "sociallogin"                         # Keeping on sociallogin because the other option is not implemented yet                                             
@@ -263,6 +263,8 @@ defaults_applications:
         username:           "{{users.administrator.username}}"
         initial_password:   "{{users.administrator.initial_password}}"
     default_quota:          '1000000000'                          # Quota to assign if no quota is specified in the OIDC response (bytes)
+    legacy_login_mask:   
+      enabled:              False                                 # If true, then legacy  login mask is shown. Otherwise just SSO 
       
   ## OAuth2 Proxy
   oauth2_proxy: