CloudFlare Tunnel, HTTPS security notice in Admin Overview

CloudFlare Tunnel, HTTPS security notice in Admin Overview

Howdy,

Computer genius in the family, Linux novice in reality. To the point, I have broken my NC twice trying to figure this out. HTTPS is working as it should be(?) using Cloudflare ZeroTrust tunnel and reflects the same in the address bar/mobile/desktop apps. However I am still receiving the below error.

Accessing site insecurely via HTTP. You are strongly advised to set up your server to require HTTPS instead. Without it some important web functionality like "copy to clipboard" or "service workers" will not work! For more details see the documentation ↗.

Howdy,

Computer genius in the family, Linux novice in reality. To the point, I have broken my NC twice trying to figure this out. HTTPS is working as it should be(?) using Cloudflare ZeroTrust tunnel and reflects the same in the address bar/mobile/desktop apps. However I am still receiving the below error.

Accessing site insecurely via HTTP. You are strongly advised to set up your server to require HTTPS instead. Without it some important web functionality like "copy to clipboard" or "service workers" will not work! For more details see the documentation ↗.

Nextcloud version _29.0.0
Operating system and version _Ubuntu Server 24.04: CasaOS
Apache or nginx version _Apache latest

The issue you are facing: It appears everything is setup in CloudFlare as it should be with the domain working perfectly. When I open the app in CasaOS I am met with: This site can’t provide a secure connection

192.168.1.230 sent an invalid response.

ERR_SSL_PROTOCOL_ERROR

Is this the first time you’ve seen this error? (Y/N): N

Below is my config.php file that I have attempted to edit the Trusted Domains with my internal ip. Now Coding is definitely my weak point so I might not be putting the right handles on what I am editing. I am comfortable with “micro” from CLI and the basic GUI txt editor in CasaOS.

<?php
$CONFIG = array (
  'htaccess.RewriteBase' => '/',
  'memcache.local' => '\\OC\\Memcache\\APCu',
  'apps_paths' => 
  array (
    0 => 
    array (
      'path' => '/var/www/html/apps',
      'url' => '/apps',
      'writable' => false,
    ),
    1 => 
    array (
      'path' => '/var/www/html/custom_apps',
      'url' => '/custom_apps',
      'writable' => true,
    ),
  ),
  'upgrade.disable-web' => true,
  'instanceid' => '',
  'passwordsalt' => '',
  'secret' => '',
  'trusted_domains' => 
  array (
    0 => 'nextcloud.fab5nextcloud.us',
  ),
  'datadirectory' => '/var/www/html/data',
  'dbtype' => 'sqlite3',
  'version' => '29.0.0.19',
  'overwrite.cli.url' => 'http://nextcloud.fab5nextcloud.us',
  'installed' => true,
  'mail_smtpmode' => 'smtp',
  'mail_sendmailmode' => 'smtp',
  'mail_from_address' => '',
  'mail_domain' => 'gmail.com',
  'mail_smtphost' => 'smtp.gmail.com',
  'mail_smtpport' => '465',
  'mail_smtpsecure' => 'ssl',
  'mail_smtpauth' => 1,
  'mail_smtpname' => '',
  'mail_smtppassword' => '',
  'maintenance' => false,
);
<?php
$CONFIG = array (
  'htaccess.RewriteBase' => '/',
  'memcache.local' => '\\OC\\Memcache\\APCu',
  'apps_paths' => 
  array (
    0 => 
    array (
      'path' => '/var/www/html/apps',
      'url' => '/apps',
      'writable' => false,
    ),
    1 => 
    array (
      'path' => '/var/www/html/custom_apps',
      'url' => '/custom_apps',
      'writable' => true,
    ),
  ),
  'upgrade.disable-web' => true,
  'instanceid' => 'oc8j5vjwwwrr',
  'passwordsalt' => 'CJbmCJrcCV1Q4lZ/7dus5sfuPpABtZ',
  'secret' => '/rMAOKHVWktwk12lZ335Rj6k3IA6eDnWos0e7PWoe1WGp3cJ',
  'trusted_domains' => 
  array (
    0 => 'nextcloud.fab5nextcloud.us',
  ),
  'datadirectory' => '/var/www/html/data',
  'dbtype' => 'sqlite3',
  'version' => '29.0.0.19',
  'overwrite.cli.url' => 'http://nextcloud.fab5nextcloud.us',
  'installed' => true,
  'mail_smtpmode' => 'smtp',
  'mail_sendmailmode' => 'smtp',
  'mail_from_address' => '',
  'mail_domain' => 'gmail.com',
  'mail_smtphost' => 'smtp.gmail.com',
  'mail_smtpport' => '465',
  'mail_smtpsecure' => 'ssl',
  'mail_smtpauth' => 1,
  'mail_smtpname' => '',
  'mail_smtppassword' => '',
  'maintenance' => false,
);

I believe I cleaned up this code from my errors, help would be greatly appreciated.

I am getting a similar warning in my Administration Overview page. Although the tunnel has been created with HTTPS the NextCloud instance is using HTTP.

This is because the tunnel uses a local network to connect to your NextCloud server. The local network is not exposed to the internet so there is no security risk, it does not use HTTPS because that is how the tunnel works. I am not sure if this error message can be or should be disabled. Someone must have some advice as this must be a common issue.

This topic was automatically closed 90 days after the last reply. New replies are no longer allowed.