When the initial communication provider was written for Matrix user authentication (SSO) between Matrix and LMS was out of scope.

The main reason this was out of scope was that the Matrix API and Synapse Sever API didn't support an oidc workflow or other means of logging users who had Moodle sessions into Matrix. This means that while LMS can create user accounts in Matrix, users still have to go via the Matrix workflow to reset their password prior to login.

SSO is only currently available if both Matrix/Synapse and LMS are configure both as Service Providers (SP) to a common Identity Provider (IdP) such as Keycloak. However, there was developments in this are on the Synapse roadmap.

This workflow has caused confusion for some implementing Matrix and LMS together.

This issue is to cover two things:

1. Better document the limitations and workflow of user password management for Matrix in the LMS Communication Provider user documentation
2. Investigate if the situation has changed and there are now more options available in Matrix/Synapse for user authentication.  And if there is raise a follow up issue to action this.