Connection Error : You do not have permission to complete the operation

Hello everyone,

is anyone else having this issue? i’ve seen many online regarding cloudflare tunnels but not this specifically.

the website is setup behind cloudflare zerotrust/access, using a tunnel. https is provided via cloudflare.
i can access the url via a browser, on mobile and desktop, but the app gives me this error.
i had to use ‘overwriteprotocol’ => ‘https’ to get it working, but it works.

i’ve also reset the app, hoping this would resolve it, then uninstall and reinstall but no juice

i have a local seperate nextcloud session running on nc.local, which works fine. complains about self signed ssl but i can add the domain fine.

what would be causing this?

Steps to reproduce
install ios app
enter self hosted url
cry on the inside
Expected behaviour
like accessing url via browser, should take me to login or confirmation screen.

Actual behaviour

iOS version: e.g. iOS 16.4.1

**Nextcloud iOS app version:

Server operating system:

Web server: Apache,

Database: POSTGRES

Nextcloud version: 26.0.0


Yeah, see previous topics about this on the forum at Search results for ' Connection Error : You do not have permission to complete the operation ' - Nextcloud community

Have you considered asking cloudflare support? You can also link them back to this post.

Did you try HowTo: Add a new trusted domain

Hello Just.

Thank you for your time.

So i haven’t reached out to Cloudflare yet - as cloudflare is not inhibiting either the linux desktop app from working, nor does it stop me from being able to access the domain via web browser on a mobile.

i am using trusted domains, this is how the domains are working on all BUT ios app.


Check your logs. See

Hi @puc,
You are missing the required support template. Please fill this form out and edit into your post.

This will give us the technical info and logs needed to help you! Thanks.

I believe the issue you’ve encountered is that you’re required to authenticate with CFZA before the app is able to even talk to NC.

That will always fail because the NC app has no awareness of Cloudflare.

I believe you can test this by disabling the auth requirement for your NC specific tunnel (@CF).

You may be able to work around it by using the CF WARP app (which appears to be CF’s officially recommended way for accessing services in CFZA that aren’t just browser based SaaS apps).

1 Like

Hello everyone,
@just I will update! thank you for the heads up.
@jtr i will try this - i just dont want to use lol i guess i can use that only for nextcloud.
lets see how this goes