Good morning,
I got Nextcloud set up last week on my home NAS server. There were a few challenges/hickups along the way, but I got it up and running. I’m trying to address the warnings in the overview sectionl
There are some warnings regarding your setup.
The “Strict-Transport-Security” HTTP header is not set to at least “15552000” seconds. For enhanced security, it is recommended to enable HSTS as described in the security tips .
Your web server is not properly set up to resolve “/.well-known/webfinger”. Further information can be found in the documentation .
Your web server is not properly set up to resolve “/.well-known/nodeinfo”. Further information can be found in the documentation .
Please double check the installation guides , and check for any errors or warnings in the log.
I’ve followed the links and put the required lines in the .httpd file, but nothing is changing. I’m still getting the warning. I’ve searched this out many times on the web, and none of the suggestions appear to fix this issue.
Nextcloud version _(eg, 20.0.5)_: `Nextcloud 23.0.2`
Operating system and version _(eg, Ubuntu 20.04)_: `Fedora Server 35 5.16.13-200.fc35.x86_64`
Apache or nginx version _(eg, Apache 2.4.25)_: `Apache/2.4.52 (Fedora Linux)`
PHP version _(eg, 7.4)_: `PHP 8.0.16`
Below is an ouput of /etc/httpd/.httpd
<IfModule mod_rewrite.c>
RewriteEngine on
RewriteRule ^\.well-known/carddav /usr/share/nextcloud/remote.php/dav [R=301,L]
RewriteRule ^\.well-known/caldav /usr/share/nextcloud/remote.php/dav [R=301,L]
RewriteRule ^\.well-known/webfinger /usr/share/nextcloud/index.php/.well-known/webfinger [R=301,L]
RewriteRule ^\.well-known/nodeinfo /usr/share/nextcloud/index.php/.well-known/nodeinfo [R=301,L]
</IfModule>
The output of your config.php file in /path/to/nextcloud
(make sure you remove any identifiable information!):
<?php
$CONFIG = array (
'log_type' => 'syslog',
'datadirectory' => '/var/hda/files/drives/nextcloud/data/',
'updatechecker' => false,
'check_for_working_htaccess' => false,
'asset-pipeline.enabled' => false,
'assetdirectory' => '/var/lib/nextcloud',
'preview_libreoffice_path' => '/usr/bin/libreoffice',
'apps_paths' =>
array (
0 =>
array (
'path' => '/usr/share/nextcloud/apps',
'url' => '/apps',
'writable' => false,
),
1 =>
array (
'path' => '/var/lib/nextcloud/apps',
'url' => '/apps-appstore',
'writable' => true,
),
),
'passwordsalt' => XXXXXXXXXXXXXXXXXXXXX,
'secret' => 'XXXXXXXXXXXXXXX',
'trusted_domains' =>
array (
0 => 'localhost',
1 => 'hda',
2 => '192.168.1.72',
),
'memcache.local' => '\\OC\\Memcache\\APCu',
'htaccess.RewriteBase' => '/',
'dbtype' => 'mysql',
'version' => '23.0.2.1',
'overwrite.cli.url' => 'http://localhost',
'dbname' => 'nextcloud',
'dbhost' => '127.0.0.1',
'dbport' => '',
'dbtableprefix' => 'oc_',
'mysql.utf8mb4' => true,
'dbuser' => 'XXXXXXXXXX',
'dbpassword' => 'XXXXXXXXXXX',
'logtimezone' => 'UTC',
'installed' => true,
'default_language' => 'en',
'default_locale' => 'en_US',
'default_phone_region' => 'US',
'instanceid' => 'ocy0f617ynie',
'mail_smtpmode' => 'smtp',
'mail_smtpauthtype' => 'LOGIN',
'mail_sendmailmode' => 'smtp',
'mail_smtpauth' => 1,
'mail_smtphost' => 'smtp.comcast.net',
'mail_smtpport' => '587',
'mail_from_address' => 'XXXXXXXX',
'mail_domain' => 'XXXXXX.net',
'mail_smtpsecure' => 'tls',
'mail_smtpname' => 'XXXXXX@XXXXXXXX.net',
'mail_smtppassword' => 'XXXXXXXXXX',
'updater.release.channel' => 'stable',
'updater.secret' => '$2y$10$/.U01G.mH7hOaWQ.WoP4Re0a3oayvOeYvlgZ8Mh68Gc1F4AbTElXy',
'maintenance' => false,
'theme' => '',
'loglevel' => 2,
);