401 when trying to access files from public share links

ℹ️ Support 📦 Appliances (Docker, Snappy, VM, NCP, AIO)
, , , , ,
1

Carried over from [Bug]: Files shared via Link no longer accessible (HTTP 401) · Issue #43287 · nextcloud/server · GitHub because probably not a server bug

Problem description

When trying to access files via a share link they cannot be opened anymore. In the developer console there are multiple errors:

301840115-1f8f3369-608d-456f-b19d-ccd02b1cfec4
301840115-1f8f3369-608d-456f-b19d-ccd02b1cfec4766×418 9.89 KB

It’s not because of HTTP/3, I also tried with HTTP/2, same behaviour. Also the error message regarding the text app also seems unrelated, I also tried with with it disabled but same behaviour again.

The bug seems to be existing since upgrade to Nextcloud 28 (28.0.1 actually). I’m now on 28.0.2 but bug is still there.

Steps to reproduce

  1. Share a file/folder
  2. Open the link
  3. Be sad because you cannot see the latest cute pictures of your grandchildren

Screenrecording

Installation method

Community Docker image (lscr.io/linuxserver/nextcloud:28.0.2)

Nextcloud Server version

28.0.2

Operating system

Debian/Ubuntu (inside the Docker container)

PHP engine version

PHP 8.2 (inside the Docker container)

Web server

Nginx (inside the Docker container)

Database engine version

MariaDB (separate Docker container using lscr.io/linuxserver/mariadb:latest)

Are you using the Nextcloud Server Encryption module?

None

What user-backends are you using?

  • Default user-backend (database)
  • LDAP/ Active Directory
  • SSO - SAML
  • Other

Configuration report

{
    "system": {
        "memcache.local": "\\OC\\Memcache\\APCu",
        "memcache.distributed": "\\OC\\Memcache\\Redis",
        "memcache.locking": "\\OC\\Memcache\\Redis",
        "redis": {
            "host": "***REMOVED SENSITIVE VALUE***",
            "port": 6379
        },
        "passwordsalt": "***REMOVED SENSITIVE VALUE***",
        "secret": "***REMOVED SENSITIVE VALUE***",
        "trusted_domains": [
            "192.168.1.3:8443",
            "cloud.kevinkoellmann.de"
        ],
        "trusted_proxies": "***REMOVED SENSITIVE VALUE***",
        "datadirectory": "***REMOVED SENSITIVE VALUE***",
        "dbtype": "mysql",
        "version": "28.0.2.5",
        "dbname": "***REMOVED SENSITIVE VALUE***",
        "dbhost": "***REMOVED SENSITIVE VALUE***",
        "dbport": "",
        "dbtableprefix": "oc_",
        "dbuser": "***REMOVED SENSITIVE VALUE***",
        "dbpassword": "***REMOVED SENSITIVE VALUE***",
        "installed": true,
        "instanceid": "***REMOVED SENSITIVE VALUE***",
        "skeletondirectory": "",
        "knowledgebaseenabled": false,
        "mail_smtpmode": "smtp",
        "mail_sendmailmode": "smtp",
        "mail_smtpauth": 1,
        "mail_smtpauthtype": "LOGIN",
        "mail_from_address": "***REMOVED SENSITIVE VALUE***",
        "mail_domain": "***REMOVED SENSITIVE VALUE***",
        "mail_smtphost": "***REMOVED SENSITIVE VALUE***",
        "mail_smtpport": "587",
        "mail_smtpname": "***REMOVED SENSITIVE VALUE***",
        "mail_smtppassword": "***REMOVED SENSITIVE VALUE***",
        "maintenance": false,
        "maintenance_window_start": 1,
        "theme": "",
        "loglevel": 2,
        "ldapIgnoreNamingRules": false,
        "ldapProviderFactory": "OCA\\User_LDAP\\LDAPProviderFactory",
        "blacklisted_files": [],
        "overwrite.cli.url": "https:\/\/cloud.kevinkoellmann.de",
        "app_install_overwrite": [
            "polls",
            "ocsms",
            "forms",
            "contacts",
            "keeporsweep",
            "files_fulltextsearch",
            "files_fulltextsearch_tesseract",
            "files_readmemd",
            "files_trackdownloads",
            "impersonate",
            "richdocuments",
            "twofactor_admin"
        ],
        "allow_local_remote_servers": true,
        "updater.release.channel": "stable",
        "default_phone_region": "DE",
        "mysql.utf8mb4": true,
        "filelocking.enabled": "true",
        "memories.exiftool": "\/config\/www\/nextcloud\/apps\/memories\/bin-ext\/exiftool-amd64-musl",
        "memories.vod.path": "\/config\/www\/nextcloud\/apps\/memories\/bin-ext\/go-vod-amd64",
        "memories.vod.ffmpeg": "\/usr\/bin\/ffmpeg",
        "memories.vod.ffprobe": "\/usr\/bin\/ffprobe",
        "enabledPreviewProviders": [
            "OC\\Preview\\Image"
        ],
        "upgrade.disable-web": true
    }
}

List of activated Apps

Enabled:
  - activity: 2.20.0
  - admin_audit: 1.18.0
  - bookmarks: 13.1.3
  - calendar: 4.6.4
  - cloud_federation_api: 1.11.0
  - comments: 1.18.0
  - contacts: 5.5.1
  - contactsinteraction: 1.9.0
  - cookbook: 0.11.0
  - dav: 1.29.1
  - federatedfilesharing: 1.18.0
  - files: 2.0.0
  - files_fulltextsearch: 28.0.0
  - files_pdfviewer: 2.9.0
  - files_reminders: 1.1.0
  - files_sharing: 1.20.0
  - files_trashbin: 1.18.0
  - files_versions: 1.21.0
  - forms: 4.0.0
  - fulltextsearch: 28.0.0
  - fulltextsearch_elasticsearch: 28.0.0
  - groupfolders: 16.0.3
  - impersonate: 1.15.0
  - keeporsweep: 0.3.0
  - logreader: 2.13.0
  - lookup_server_connector: 1.16.0
  - mail: 3.5.5
  - notes: 4.9.2
  - notifications: 2.16.0
  - oauth2: 1.16.3
  - password_policy: 1.18.0
  - photos: 2.4.0
  - polls: 6.0.1
  - previewgenerator: 5.4.0
  - privacy: 1.12.0
  - provisioning_api: 1.18.0
  - quota_warning: 1.18.0
  - recommendations: 2.0.0
  - related_resources: 1.3.0
  - richdocuments: 8.3.1
  - serverinfo: 1.18.0
  - settings: 1.10.1
  - support: 1.11.0
  - survey_client: 1.16.0
  - systemtags: 1.18.0
  - tasks: 0.15.0
  - text: 3.9.1
  - theming: 2.3.0
  - twofactor_admin: 4.4.0
  - twofactor_backupcodes: 1.17.0
  - twofactor_email: 2.7.4
  - twofactor_nextcloud_notification: 3.8.0
  - twofactor_totp: 10.0.0-beta.2
  - twofactor_webauthn: 1.3.2
  - viewer: 2.2.0
  - workflowengine: 2.10.0

Nextcloud Signing status

No errors have been found.

Nextcloud Logs

No relevant nextcloud server log entries.

Additional info

NGINX access.log entries regarding the problem:

172.71.99.144 - - [02/Feb/2024:13:26:59 +0100] "GET /s/eKEY5qyDNG98ex2?dir=undefined&openfile=581238 HTTP/2.0" 200 9484 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:122.0) Gecko/20100101 Firefox/122.0"
172.71.99.143 - eKEY5qyDNG98ex2 [02/Feb/2024:13:27:00 +0100] "PROPFIND /public.php/webdav/ HTTP/2.0" 207 116632 "https://cloud.kevinkoellmann.de/s/eKEY5qyDNG98ex2?dir=undefined&openfile=581238" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:122.0) Gecko/20100101 Firefox/122.0"
172.71.99.144 - - [02/Feb/2024:13:27:01 +0100] "GET /apps/files_sharing/publicpreview/eKEY5qyDNG98ex2?fileId=581238&file=%2F20230929_204910_955_IMG_0001.JPG&c=aed8663c35273fea5acf01e75e5da561&x=250&y=250 HTTP/2.0" 404 2 "https://cloud.kevinkoellmann.de/s/eKEY5qyDNG98ex2?dir=undefined&openfile=581238" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:122.0) Gecko/20100101 Firefox/122.0"
172.71.99.144 - eKEY5qyDNG98ex2 [02/Feb/2024:13:27:04 +0100] "PROPFIND /public.php/webdav/20230929_204910_955_IMG_0001.JPG HTTP/2.0" 401 189 "https://cloud.kevinkoellmann.de/s/eKEY5qyDNG98ex2?dir=undefined&openfile=581238" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:122.0) Gecko/20100101 Firefox/122.0"

I had the chance to test in another 28.0.2 instance, and there it is working without a problem…

Does someone here in the community maybe have some tip, where to start checking?

2 Likes
2

Same issue for me.

Screenshot 2024-02-02 114300
Screenshot 2024-02-02 1143001204×240 12.6 KB

Screenshot 2024-02-02 114024
Screenshot 2024-02-02 1140241230×195 11.2 KB

3

@Donnie Can you check the Network tab in your browser console and reload the URL to see the reason for the blocks?

4

I rolled back to version 27 because version 28.0.2 was too buggy.

5

@koelle25 Did 28.0.3 fix the error?

6

Yes, with 28.0.3 which ships with this: [stable28] fix: webdav default headers by skjnldsv · Pull Request #2178 · nextcloud/viewer · GitHub
it is now fixed.

1 Like