I am self-hosted.
I am a little dense on this and have looked through the documentation and source but I cannot figure out the use of the “Secret (Optional)” field that is on the login page. I understand it is tied to the APP_KEY variable in .env but what is the use?
If I put in my email/password/2fa, and put it random characters in the field I can still login?
This also shows up on the iOS app.