My coturn is already setup for nextcloud/REST, so shared secret auth is enabled.

Once you do that, the only format for username/password auth you can use will be turn:timestamp:username:key@hostname:port

The username will necessarily be of the format xxx:yyy in this case.

Classic username:password and REST can't be configured at the same time on coturn