Some or all of the below information will be requested if it isn’t supplied; for fastest response please provide as much as you can. 
The Basics
- Nextcloud Server version (e.g., 29.x.x):
- 32.0.6
- Operating system and version (e.g., Ubuntu 24.04):
Debian 13
- Web server and version (e.g, Apache 2.4.25):
Apache 2.4.66
- Reverse proxy and version _(e.g. nginx 1.27.2)
Caddy 2.11.2
- PHP version (e.g, 8.3):
8.3.30
- Is this the first time you’ve seen this error? (Yes / No):
yes
- When did this problem seem to first start?
wanted to open a document oon a federated server
- Installation method (e.g. AlO, NCP, Bare Metal/Archive, etc.)
AIO
- Are you using CloudfIare, mod_security, or similar? (Yes / No)
no
Summary of the issue you are facing:
I want to open a document on a federated server and run into problems because of iframe embedding. Firefox says the host does not allow the frame to be displayed because I’m on the wrong host. I have added the respective server on both NC instances as trusted. (one is green, one is yellow).
I have applied this:
occ config:app:set richdocuments federation_use_trusted_domains --value="yes"
I have added the following Collabora variable in the AIO Mastercontainer under Collabora options
–o:net.content_security_policy= frame-ancestors *.thefederationserver.tld:*;
Steps to replicate it (hint: details matter!):
-
Go to main nextcloud, to federated share
-
Open Document
-
get error
Log entries
Nextcloud
Please provide the log entries from your Nextcloud log that are generated during the time of problem (via the Copy raw option from Administration settings->Logging screen or from your nextcloud.log located in your data directory). Feel free to use a pastebin/gist service if necessary.
{"reqId":"LnlPG2UfeBTSFziXRwFt","level":3,"time":"2026-04-01T11:48:53+00:00","remoteAddr":"redacted","user":"--","app":"richdocuments","method":"POST","url":"/index.php/apps/richdocuments/remote?shareToken=ypJErszSGY1jmYp&remoteServer=https%3A%2F%2Fnextcloud.thefederationserver.tld%2F&remoteServerToken=MKMsBDJAG62Q5nnew40JpotC5GEYN5hJ","scriptName":"/index.php","message":"Invalid remote file details for MKMsBDJAG62Q5nnew40JpotC5GEYN5hJ","userAgent":"Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:149.0) Gecko/20100101 Firefox/149.0","version":"32.0.6.1","exception":{"Exception":"Exception","Message":"Invalid remote file details for MKMsBDJAG62Q5nnew40JpotC5GEYN5hJ","Code":0,"Trace":[{"file":"/var/www/html/custom_apps/richdocuments/lib/Controller/DocumentController.php","line":306,"function":"remote","class":"OCA\\Richdocuments\\Controller\\DocumentController","type":"->","args":["ypJErszSGY1jmYp","https://nextcloud.thefederationserver.tld/","MKMsBDJAG62Q5nnew40JpotC5GEYN5hJ",null]},{"file":"/var/www/html/lib/private/AppFramework/Http/Dispatcher.php","line":204,"function":"remotePost","class":"OCA\\Richdocuments\\Controller\\DocumentController","type":"->","args":["ypJErszSGY1jmYp","https://nextcloud.thefederationserver.tld/","MKMsBDJAG62Q5nnew40JpotC5GEYN5hJ",null]},{"file":"/var/www/html/lib/private/AppFramework/Http/Dispatcher.php","line":118,"function":"executeController","class":"OC\\AppFramework\\Http\\Dispatcher","type":"->","args":[{"__class__":"OCA\\Richdocuments\\Controller\\DocumentController"},"remotePost"]},{"file":"/var/www/html/lib/private/AppFramework/App.php","line":153,"function":"dispatch","class":"OC\\AppFramework\\Http\\Dispatcher","type":"->","args":[{"__class__":"OCA\\Richdocuments\\Controller\\DocumentController"},"remotePost"]},{"file":"/var/www/html/lib/private/Route/Router.php","line":321,"function":"main","class":"OC\\AppFramework\\App","type":"::","args":["OCA\\Richdocuments\\Controller\\DocumentController","remotePost",{"__class__":"OC\\AppFramework\\DependencyInjection\\DIContainer"},{"_route":"richdocuments.document.remotepost"}]},{"file":"/var/www/html/lib/base.php","line":1091,"function":"match","class":"OC\\Route\\Router","type":"->","args":["/apps/richdocuments/remote"]},{"file":"/var/www/html/index.php","line":25,"function":"handleRequest","class":"OC","type":"::","args":[]}],"File":"/var/www/html/custom_apps/richdocuments/lib/Controller/DocumentController.php","Line":267,"message":"Invalid remote file details for MKMsBDJAG62Q5nnew40JpotC5GEYN5hJ","exception":[],"CustomMessage":"Invalid remote file details for MKMsBDJAG62Q5nnew40JpotC5GEYN5hJ"},"id":"69cd0e2b57de4"}
Web Browser
If the problem is related to the Web interface, open your browser inspector Console and Network tabs while refreshing (reloading) and reproducing the problem. Provide any relevant output/errors here that appear.
cross origin request denied
Web server / Reverse Proxy
The output of your Apache/nginx/system log in /var/log/____:
no caddy logs
Configuration
Nextcloud
The output of occ config:list system or similar is best, but, if not possible, the contents of your config.php file from /path/to/nextcloud is fine (make sure to remove any identifiable information!):
{
"system": {
"one-click-instance": true,
"one-click-instance.user-limit": 100,
"memcache.local": "\\OC\\Memcache\\APCu",
"apps_paths": [
{
"path": "\/var\/www\/html\/apps",
"url": "\/apps",
"writable": false
},
{
"path": "\/var\/www\/html\/custom_apps",
"url": "\/custom_apps",
"writable": true
}
],
"check_data_directory_permissions": false,
"memcache.distributed": "\\OC\\Memcache\\Redis",
"memcache.locking": "\\OC\\Memcache\\Redis",
"redis": {
"host": "***REMOVED SENSITIVE VALUE***",
"password": "***REMOVED SENSITIVE VALUE***",
"port": 6379
},
"overwritehost": "nextcloud.thefederationhost.tld",
"overwriteprotocol": "https",
"passwordsalt": "***REMOVED SENSITIVE VALUE***",
"secret": "***REMOVED SENSITIVE VALUE***",
"trusted_domains": [
"localhost",
"nextcloud.thefederationhost.tld",
"192.168.2.3"
],
"datadirectory": "***REMOVED SENSITIVE VALUE***",
"dbtype": "pgsql",
"version": "32.0.6.1",
"overwrite.cli.url": "https:\/\/nextcloud.thefederationhost.tld\/",
"dbname": "***REMOVED SENSITIVE VALUE***",
"dbhost": "***REMOVED SENSITIVE VALUE***",
"dbport": "",
"dbtableprefix": "oc_",
"dbuser": "***REMOVED SENSITIVE VALUE***",
"dbpassword": "***REMOVED SENSITIVE VALUE***",
"installed": true,
"instanceid": "***REMOVED SENSITIVE VALUE***",
"maintenance": false,
"loglevel": 2,
"log_type": "file",
"logfile": "\/var\/www\/html\/data\/nextcloud.log",
"log_rotate_size": 10485760,
"log.condition": {
"apps": [
"admin_audit"
]
},
"preview_max_x": 2048,
"preview_max_y": 2048,
"jpeg_quality": 60,
"enabledPreviewProviders": {
"1": "OC\\Preview\\Image",
"2": "OC\\Preview\\MarkDown",
"3": "OC\\Preview\\MP3",
"4": "OC\\Preview\\TXT",
"5": "OC\\Preview\\OpenDocument",
"6": "OC\\Preview\\Movie",
"7": "OC\\Preview\\Krita",
"0": "OC\\Preview\\Imaginary",
"23": "OC\\Preview\\ImaginaryPDF"
},
"enable_previews": true,
"upgrade.disable-web": true,
"mail_smtpmode": "smtp",
"trashbin_retention_obligation": "auto, 30",
"versions_retention_obligation": "auto, 30",
"activity_expire_days": 30,
"simpleSignUpLink.shown": false,
"share_folder": "\/Shared",
"one-click-instance.link": "https:\/\/nextcloud.com\/all-in-one\/",
"upgrade.cli-upgrade-link": "https:\/\/github.com\/nextcloud\/all-in-one\/discussions\/2726",
"updatedirectory": "\/nc-updater",
"maintenance_window_start": 100,
"allow_local_remote_servers": true,
"davstorage.request_timeout": 3600,
"htaccess.RewriteBase": "\/",
"dbpersistent": false,
"auth.bruteforce.protection.enabled": true,
"ratelimit.protection.enabled": true,
"files_external_allow_create_new_local": true,
"trusted_proxies": "***REMOVED SENSITIVE VALUE***",
"preview_imaginary_url": "***REMOVED SENSITIVE VALUE***",
"preview_imaginary_key": "***REMOVED SENSITIVE VALUE***",
"skeletondirectory": "\/mnt\/ncdata\/skeleton",
"mail_smtpsecure": "ssl",
"mail_sendmailmode": "smtp",
"mail_from_address": "***REMOVED SENSITIVE VALUE***",
"mail_domain": "***REMOVED SENSITIVE VALUE***",
"mail_smtphost": "***REMOVED SENSITIVE VALUE***",
"mail_smtpport": "465",
"mail_smtpauth": 1,
"mail_smtpname": "***REMOVED SENSITIVE VALUE***",
"mail_smtppassword": "***REMOVED SENSITIVE VALUE***",
"default_phone_region": "CH",
"documentation_url.server_logs": "https:\/\/github.com\/nextcloud\/all-in-one\/discussions\/5425",
"defaultapp": "files",
"memories.db.triggers.fcu": true,
"memories.exiftool": "\/var\/www\/html\/custom_apps\/memories\/bin-ext\/exiftool-amd64-musl",
"memories.vod.path": "\/var\/www\/html\/custom_apps\/memories\/bin-ext\/go-vod-amd64",
"memories.vod.ffmpeg": "\/usr\/bin\/ffmpeg",
"memories.vod.ffprobe": "\/usr\/bin\/ffprobe",
"updatechecker": false,
"ncd_admin_settings": {
"disallow_aria2_settings": "1"
},
"app_install_overwrite": [
"occweb"
],
"forbidden_filename_basenames": [
"con",
"prn",
"aux",
"nul",
"com0",
"com1",
"com2",
"com3",
"com4",
"com5",
"com6",
"com7",
"com8",
"com9",
"com\u00b9",
"com\u00b2",
"com\u00b3",
"lpt0",
"lpt1",
"lpt2",
"lpt3",
"lpt4",
"lpt5",
"lpt6",
"lpt7",
"lpt8",
"lpt9",
"lpt\u00b9",
"lpt\u00b2",
"lpt\u00b3"
],
"forbidden_filename_characters": [
"<",
">",
":",
"\"",
"|",
"?",
"*",
"\\",
"\/"
],
"forbidden_filename_extensions": [
" ",
".",
".filepart",
".part"
],
"DOMAIN": "nextcloud.thefederationhost.tld",
"AIO_VERSION": "v12.8.0"
}
}
occ $
Apps
The output of occ app:list (if possible).
Enabled:
- activity: 5.0.0
- admin_audit: 1.22.0
- announcementcenter: 7.3.0
- app_api: 32.0.0
- bruteforcesettings: 5.0.0
- calendar: 6.2.2
- circles: 32.0.0
- cloud_federation_api: 1.16.0
- comments: 1.22.0
- contacts: 8.3.7
- contactsinteraction: 1.13.1
- dav: 1.34.2
- deck: 1.16.3
- external: 7.0.0
- federatedfilesharing: 1.22.0
- federation: 1.22.0
- files: 2.4.0
- files_downloadlimit: 5.0.0-dev.0
- files_fulltextsearch: 32.0.2
- files_lock: 32.0.2
- files_pdfviewer: 5.0.0
- files_reminders: 1.5.0
- files_sharing: 1.24.1
- files_trashbin: 1.22.0
- files_versions: 1.25.0
- forms: 5.2.5
- fulltextsearch: 32.0.0
- fulltextsearch_elasticsearch: 32.0.2
- groupfolders: 20.1.12
- impersonate: 3.0.1
- keeweb: 0.6.22
- logreader: 5.0.0
- lookup_server_connector: 1.20.0
- mail: 5.7.6
- metadata: 0.23.0
- nextcloud-aio: 0.8.0
- nextcloud_announcements: 4.0.0
- notes: 4.13.1
- notifications: 5.0.0
- notify_push: 1.3.1
- oauth2: 1.20.0
- occweb: 0.2.3
- password_policy: 4.0.0
- passwords: 2026.3.21
- previewgenerator: 5.13.0
- privacy: 4.0.0
- profile: 1.1.0
- provisioning_api: 1.22.0
- recommendations: 5.0.0
- related_resources: 3.0.0
- richdocuments: 9.0.5
- serverinfo: 4.0.0
- settings: 1.15.1
- sharebymail: 1.22.0
- spreed: 22.0.10
- support: 4.0.0
- survey_client: 4.0.0
- systemtags: 1.22.0
- tasks: 0.17.1
- text: 6.0.1
- theming: 2.7.0
- twofactor_backupcodes: 1.21.0
- twofactor_email: 2.8.5
- twofactor_totp: 14.0.0
- updatenotification: 1.22.0
- user_status: 1.12.0
- viewer: 5.0.0
- weather_status: 1.12.0
- webhook_listeners: 1.3.0
- whiteboard: 1.5.7
- workflowengine: 2.14.0
Disabled:
- assistant: 2.13.0 (installed 2.13.0)
- collectives: 4.2.0 (installed 4.2.0)
- context_chat: 5.3.1 (installed 5.3.1)
- dashboard: 7.12.0 (installed 7.9.0)
- encryption: 2.20.0
- files_external: 1.24.1
- firstrunwizard: 5.0.0 (installed 2.18.0)
- integration_deepl: 2.1.0 (installed 2.1.0)
- integration_google: 4.3.1 (installed 4.3.1)
- integration_openai: 3.10.1 (installed 3.10.1)
- memories: 7.8.2 (installed 7.8.2)
- photos: 5.0.0 (installed 3.0.2)
- suspicious_login: 10.0.0 (installed 8.0.0)
- twofactor_nextcloud_notification: 6.0.0
- user_ldap: 1.23.0
occ $
Tips for increasing the likelihood of a response
- Use the
preformatted textformatting option in the editor for all log entries and configuration output. - If screenshots are useful, feel free to include them.
- If possible, also include key error output in text form so it can be searched for.
- Try to edit log output only minimally (if at all) so that it can be ran through analyzers / formatters by those trying to help you.