Search the Community

Hi, I just installed Nextcloud. For external access I use a reverse proxy (NPM) and Cloudflare proxy. Can you please advise me how to set up nextcloud to connect to a server on the local network directly if the communication is through my domain. This way all traffic goes through Cloudflare even though I am on the local network. I use 2x AdGuard Home as my DNS server. I tried rewriting the domain to Nextcloud's private IP address via the DNS rewrite function. However, if I try to connect to the nextcloud server on the local network via my domain in Safari (Mac or iOS), the page won't open with the error - it can't establish a secure connection. An external connection through the domain, however, works fine. What's odd is that if I try to connect through my domain on the local network using the anonymous tab in safari, the nextcloud page loads without a problem. Any idea how to solve this?

Hi I use Nextcloud with nginx proxy manager. My nextcloud logs are full of "login failed remote ip '172.17.0.1)" but this is not the real IP. I assumed this is a local address but all my network has 192.168.1.x schema How can i get the true IP address in logs ? Or how can I find the device name for this IP adress ? Thanks EDIT : after more investigations, this concerns only local IP address, external are clearly displayed in logs

I have left it blank and no matter what i get the same logs wsd-00001-00031 2024-01-07 12:03:47.114051 -0500 [ websrv_poll ] WRN convert-to: Requesting address is denied: MY.EXTERNAL.IP| wsd/COOLWSD.cpp:4108

Yes, I have added 'https://collabora.mydomain.com'. Results are the same Collabora log wsd-00001-00031 2024-01-07 12:03:47.114051 -0500 [ websrv_poll ] WRN convert-to: Requesting address is denied: MY.EXTERNAL.IP| wsd/COOLWSD.cpp:4108

Been fighting with Nextcloud and Collabora for a while, wondering if anyone is got the two working? -Running Nextcloud latest 28.0.1 with NPM -Installed Nextcloud Office 8.3.0 -Collabora-CODE -Collabora-Code logs -Back to NC advance settings to add external ip Collabora-CODE logs As a result NC documents fail to load. If any one got the two running, send help

Hello Community Nextcloud is installed on my Unraid system as a Docker from the LinuxServer.io repository. When I now open the Nextcloud via web browser, I get the message “The server certificate is not trusted” with execute anyway I can log in normally. If I display the certificate in the menu bar at the top of the web browser, it is LinuxServer.io certificate. Here are my questions. Where can I find this certificate and check when it was installed? Why am I asking this? A few days ago I wanted to mount Unraid Share which is integrated as an external device in Nextcloud via WebDAV. During the mount I received the message “The server certificate does not match the name of the server, we do not trust the certificate”. Issuer and owner was LSIO Server, Liuxserver.io. The fingerprint should be checked. The fingerprint was different from the one I can see in the address bar in the web browser. I accepted the certificate anyway, but now I have to accept it again with every mount. How can I accept this certificate permanently and where can I see the assignment to the Docker container? Where is the certificate for the WebDAV share stored? On my Linux client? In the Docker container? In How could I have checked the fingerprint beforehand? Based on my question, you can see that I don’t understand how to handle the Nextcloud Docker container in general when dealing with the certificates. Can someone please help me shed some light on this. I use the Nextcloud only in the internal network. Thanks in advance.

Ya know how: unRaid is NOT Backup!?, well I've had corruption before, and loads of lost&found files. Total bummer. Anyhow, I'd like to back my stuff up on an external USB drive (Unassigned Devices). I use Luckybackup, which is an rsync GUI apparently. I got it setup, and it's mostly working. But I get loads of errors when running the backup on the nextcloud share. Anyone have luck with some sort of additional backup docker, offsite, USB etc. ? thanks https://unraid.net/blog/unraid-server-backups-with-luckybackup

Thanks for the tip on how to delete .step file (I had to use Krusader to delete it since I didn't have permissions via Windows sharing). I was able to update the docker container all the way to v25.0.9... but I am still not able to access the GUI from either the internal IP or external (SWAG) link... (do I need now set the nextcloud container to the latest version - instead of 21.0.3-ls143)? Both my internal IP (x.x.x.x:443) and my external address (via SWAG) keep giving me this 404 error:

Hard to say if this is exactly your issue but make sure you have your internal DNS pointing to the nextcloud server directly or the nginx servers internal address, not your external address. Otherwise you are trying to bounce traffic via your router/firewalls external IP address which will be blocked. I put a post up on the valtwarden forum a while back about a similar issue they have where all traffic has to be HTTPS so it is best to bounce both internal and external traffic through the nginx proxy. This is not quite what your trying to do but the DNS principle is the same. Ext DNS: cloud.mydomain.com -> my_ddns_ext_ip Int DNS: cloud.mydomain.com -> either nginx or nextcloud server Hope this makes sense. https://github.com/dani-garcia/vaultwarden/discussions/1749#discussioncomment-4701804

The 'upgrade-insecure-requests' header instructs the browser to automatically upgrade HTTP requests to HTTPS. This is a useful security measure to protect against man-in-the-middle (MITM) attacks and mixed content vulnerabilities. However, using this header alone is not enough to provide full Content Security Policy protection for your website. Content Security Policy (CSP) is a security standard designed to mitigate the risk of cross-site scripting (XSS), clickjacking, and other code injection attacks. It is recommended to use a properly configured CSP in addition to the 'upgrade-insecure-requests' header to provide a more comprehensive security posture for your website. Regarding the 'interest-cohort=()' directive, it is a new feature introduced by Google to combat online tracking by preventing websites from accessing a user's unique identifier or "cohort" information. The cohort information is used by Google to group similar users together for interest-based advertising. By adding 'interest-cohort=()' to your CSP, you are telling the browser to disallow the use of this feature, which could help protect user privacy. However, this directive is not yet widely supported by all browsers, and its impact on website functionality is still being studied. In .htaccess file: # Content Security Policy (CSP) Header always set Content-Security-Policy "default-src 'none'; frame-ancestors 'none'; connect-src 'self'; font-src 'self'; img-src 'self'; manifest-src 'self'; script-src 'self'; style-src 'self';" In default.conf file: # Content Security Policy (CSP) add_header Content-Security-Policy "default-src 'none'; frame-ancestors 'none'; connect-src 'self'; font-src 'self'; img-src 'self'; manifest-src 'self'; script-src 'self'; style-src 'self';" always; in cloudflare, modify the values for 'Content-Security-Policy' with: default-src 'none'; frame-ancestors 'none'; connect-src 'self'; font-src 'self'; img-src 'self'; manifest-src 'self'; script-src 'self'; style-src 'self'; It is possible that this can break some of your subdomains ,those subdomain websites are using external resources (such as scripts, stylesheets, or images) that are not hosted on your domain. In this case, you may need to add additional directives to your CSP to allow those external resources. To debug this issue, you can use the browser console to see which resources are being blocked by the CSP, and adjust the CSP directives accordingly. You can also use a CSP reporting tool (such as the one provided by Google) to get more detailed reports on CSP violations. In general, it is important to be careful when implementing CSP, as it can have unintended consequences if not done properly. It is recommended to start with a more permissive policy (such as "default-src 'self'") and gradually tighten it as needed, while monitoring for any issues. i would recommend just going with "upgrade-insecure-requests" to keep it from breaking other sites/apps you maybe running.

I have the same problem as you, I think the external container and internal Nextcloud versions are mismatched. according to my /config/www/nextcloud/config/config.php file, it says Nextcloud 'version' => '25.0.3.2' but according to my /config/www/nextcloud/version.php file, it says Nextcloud $OC_Version = array(26,0,2,1); Problem is the announcement back on June 25: https://info.linuxserver.io/issues/2023-06-25-nextcloud/ it says the updater.phar command is completely removed. Seems we're in a catch 22

Hi everyone, I'm looking for help, and I hope this is the right thread. I've got NextCloud installed on Unraid, being proxied via Swag, as per Spaceinvader's videos. I also have the "external storage" app installed. When I go into files and try to share a file or folder via the "share link" command, it works perfectly if the folder/file I'm trying to share resides in the NextCloud Data directory, however if I try to share a folder from an SMB share connected via "external storage" it displays a page (when trying to access via the link created under "share link") that appears to be trying to load the directory contents. It spins and spins forever. If I go to the top right side and select "download all files" I do indeed download the contents of the directory. Only files and folder shared from the SMB share connected via the "external storage" app have this issue. Permissions in the "share link" function are set to read only. So what's preventing NextCloud from listing directory contents when I use the "share link" function for a folder residing on an SMB share? EDIT: Found the solution. In the settings for external storage I missed that under the 3 dots by "available for" is a checkbox called "enable sharing". Checking this resolved my issue.

Count me in the group that learned the hard way that you can't update the Nextcloud docker directly from the Unraid GUI. I was on a pretty old version (21.0.0.18) and have spent hours trying to figure out how to correctly upgrade (or rollback to the previous working version). I tried following this guide: https://info.linuxserver.io/issues/2023-06-25-nextcloud/ I currently have installed repo: linuxserver/nextcloud:24.0.12 I tried running the "docker exec -it nextcloud updater.phar" command but it seems to be stuck at Step #3 (creating a backup) and nothing I do seems to release it or restart it. I can't see my GUI nor access Nextcloud from internal or external (SWAG) links. I end up getting a 404 error (maybe I need to edit my SWAG confs???). I have a config.php file (located here: \\UNRAID\appdata\nextcloud\www\nextcloud\config ) but not a version.php - so I can't really tell if I'm even updating the php correctly. The only error I seem to have in my log file is "s6-applyuidgid: fatal: unable to exec php7: No such file or directory" Any assistance would be greatly appreciated.

I managed to get mine working again internally again but can't get external access to work anymore. I can't set up a subdomain on my DDNS so have always had it set as this in my swag default.conf: location ^~ /nextcloud { proxy_pass https://192.168.7.11:8443; include /config/nginx/proxy.conf; } I have overwritehost etc. set in the config.php within nextcloud itself but I can tell it partially works as I get a nextcloud error page when attempting to access externalyl.

Everything is stored on the server. Or, at least I think so. I have a few folders linked through the external storage. Which share concerns you? I'll check.

Hi all, i updated my docker and now have the message This version of Nextcloud is not compatible with PHP>=8.2. You are currently running 8.2.6. I tried the upgrade command but get an error at the end: Continue update? [y/N] y Info: Pressing Ctrl-C will finish the currently running step and then stops the updater. [✔] Check for expected files [✔] Check for write permissions [✔] Create backup [✔] Downloading [✔] Verify integrity [✔] Extracting [✔] Enable maintenance mode [✔] Replace entry points [✔] Delete old files [✔] Move new files in place [✔] Done Update of code successful. Should the "occ upgrade" command be executed? [Y/n] Y This version of Nextcloud is not compatible with PHP>=8.2.<br/>You are currently running 8.2.6. Keep maintenance mode active? [y/N] ---> EDIT: I managed to get the container back I MESSED UP 1. I had the wrong php Version error and tried to upgrade nextcloud to the latest version foloowing this guide https://github.com/linuxserver/docker-nextcloud/issues/288 2. I changed the container repositiory version to an older one but the update failed and the container was deleted. Now I don't have any nextcloud docker in my overview. Is there anyway to get the settings belonging to that container back? There were quite a few settings made (external folders, ...). Is there anyway to restore the docker with the original settings? Thanks a lot

Hi, After upgrading to 6.12.0 Nextcloud is displaying an error: Server reported no ETag. This is for an external storage mounted in the Nextcloud. Any ideas how to fix it? I've attached the latest diagnostics, if that can help. Not sure how to attach a Nextcloud log. Thanks. PS. After restarting the docker, I do not see that message anymore... tower-diagnostics-20230615-0047.zip

I have a couple Windows machines with old archives of photos, hundreds of gigabytes. I'd like to copy these into Nextcloud. I have my usual Unraid user account with read/write access to the Nextcloud share, and I can SMB in. But when I go to copy a file in to the [user]\files folder, I get a permissions error. Any help? I've created a new share and connected it via external storage, and that would work fine. But I'd rather my photos get folded in natively (and then run occ files:scan [user]). Thoughts? * edit -- I just changed the permissions for the user folder on the nextcloud share using dynamix to change group and other to read/write. Now works fine. Hopefully somebody will pipe up if that was dumb (e.g., I created some security vulnerability).

Thanks for explaining, I used chrome extension to generate CSP for nextcloud with 'self' and all other parameters but only in cloudflare not in nextcloud nginx. So breaked some stuff. Of course used console for check it. Also using Matomo + Cloudflare app matomo for Analytics so it's a little harder for setup becose external js. So leaved "upgrade-insecure-requests" for now but will check you example and will check it again.

I made a separat thread with a solution for permission problems when you use external storages because I find it particulary hard to find something even with the search bar in this long thread. But if somebody is better at searching than me, I repost it here:

Thanks @BVD Naively I dont have another backup as I was relying on NextCloud as a form of backup as well as having the ability to access work files when out and about. I have copied these to another share on the server and they are all renamed with .dxxxxxxxxxx at the end. Obviously the files in the trashbin are not in folders... so the destination folder where I have copied these to now has 14000ish files all in one folder - if the fix doesnt work and I need to use these, I dont know if there is a way to regroup them in their original folders? I have tested a couple by opening them in Acrobat and they look OK. Anyway, .../files_trashbin has been copied off the server. Also, in answer to one of your comments I am not using any external storage so have not, knowingly, installed any external storage addon. Thanks

i think i got it...i was using the wrong 'external storage' in nextcloud..when i went to administraion there was another 'external storage' and i added 'local' and typed /data2 and this now shows up...see below..however, space invader ones video doesnt tell you how to get an external link to the files, its using the internal IP...im so close i can taste it. https://gyazo.com/c94cdcc2a249cf434f7bcf0c3ed5dd11 https://gyazo.com/2eba215baf065ffb4df9b2fc9934a45e

I have followed space invaderones video to set this up and have it working ok, i set this up specifically to share a 2TB disk image, initially i tried moving it with MC to the nextcloud folder but it wouldnt show up, i then tried to upload it...that was going to take a year i think. I have been seraching through this thread and read that i needed to install the external storage app which i have and i need to map the folder in the docker, this is where i am getting confused i think... https://gyazo.com/321449172c01b0dfe44984073a199180 i added a new path and named the container path /ellis and then the host path /mnt/user/xbox/OG XBOX DISK CLONE/ and then clicked add, when i go to external storage on nextcloud it says 'No external storage configured or you don't have the permission to configure them' I know i am just not understanding or typing something correctly, any help or a quicker and easier way to share this file

You best bet would be mounting the share are external storage (check appstore). * Delete the /data/singleuser/files > /mnt/cloud bind. * Mount the `/mnt/cloud` share as external storage in nextcloud with the external storage app. * Just remember it will show as a folder in your root folder in nextcloud. So you need to add/edit/remove files only inside this folder. All other files in the root dir of nextcloud user profile will be stored in /data > /mnt/cache/appdata/nextcloud/data Also, you might notice some performance loss, and you need a bit of extra config for some apps to not ignore this folder. (e.g. Preview Generator)

My install keeps sending me back to the login page. Updated congig.php with my own IP range/domain. Did a full clean install after a live install died this week. Fortunately all data is stored on external storage Yesterday I did manage to get it somehow going on a donor-database, but shortly after migrating to the live one, MadiaDB died. I was hoping to get everything going again, but no luck for the past 16 hours getting the same issue with SQLite btw 😭