Nach Update auf V29.0.4 Hinweise in der Systemkonfiguration

Deutsch

Nextcloud-Version (z.B. 29.0.5):

29.0.4

Betriebssystem und Version (z.B. Ubuntu 24.04):

Debian 12 Bookworm

Apache- oder nginx-Version (z.B. Apache 2.4.25):

nginx 1.27.0

PHP-Version (z.B. 8.3):

8.1.29

Das Problem, das Sie haben:

Nach dem Update auf 29.0.4 erhalten wir in der Systemkonfiguration die folgenden Hinweise:

  • Es konnte weder über Ihre trusted_domains noch über overwrite.cli.url nach JavaScript-Unterstützung gesucht werden. Dies kann auf eine serverseitige DNS-Nichtübereinstimmung oder eine ausgehende Firewall-Regel zurückzuführen sein. Bitte überprüfen Sie manuell, ob Ihr Webserver .mjs-Dateien mit dem JavaScript-MIME-Typ bereitstellt. Um diese Prüfung auszuführen, müssen Sie sicherstellen, dass Ihr Webserver eine Verbindung zu sich selbst herstellen kann. Dafür muss dieser in der Lage sein, sich mit mindestens einer seiner “trusted_domains” oder der “overwrite.cli.url” zu verbinden und diese aufzulösen.
  • Ihr Webserver ist nicht ordnungsgemäß für die Auflösung von “/ocm-provider/” eingerichtet. Dies hängt höchstwahrscheinlich mit einer Webserver-Konfiguration zusammen, die nicht dahingehend aktualisiert wurde, diesen Ordner direkt auszuliefern. Bitte vergleichen Sie Ihre Konfiguration mit den mitgelieferten Rewrite-Regeln in “.htaccess” für Apache oder den in der Nginx-Dokumentation enthaltenen. Auf Nginx sind das typischerweise die Zeilen, die mit “location ~” beginnen und ein Update benötigen. Weitere Informationen finden Sie in der Dokumentation :arrow_upper_right:.
  • Ihr Webserver ist nicht ordnungsgemäß für die Auflösung von .well-known-URLs eingerichtet. Fehler bei: /.well-known/webfinger. Weitere Informationen finden Sie in der Dokumentation :arrow_upper_right:.

Haben Sie diesen Fehler zum ersten Mal gesehen? (Y/N):

Y

Schritte zur Replikation:

Keine Idee.

Ausgabe Ihres Nextcloud-Protokolls in Admin > Protokollierung:

Der Punkt Protokollierung in der Adminzentrale lädt nicht.

Ausgabe Ihrer config.php-Datei in /path/to/nextcloud (stellen Sie sicher, dass Sie alle identifizierbaren Informationen entfernen!):

<?php                                                                                                                                                                     
$CONFIG = array (                                                                                                                                                         
  'passwordsalt' => 'XXXXXXXXXX',                                                                                                                     
  'secret' => 'XXXXXXXXX',                                                                                                         
  'trusted_domains' =>                                                                                                                                                    
  array (                                                                                                                                                                 
    0 => 'localhost',                                                                                                                                                     
    1 => 'cloud.einserver.de',                                                                                                                                          
  ),                                                                                                                                                                      
  'datadirectory' => '/var/lib/nextcloud',                                                                                                                                
  'dbtype' => 'mysql',                                                                                                                                                    
  'version' => '29.0.4.1',                                                                                                                                                
  'overwrite.cli.url' => 'http://localhost',                                                                                                                              
  'dbname' => 'nextcloud',                                                                                                                                                
  'dbhost' => '127.0.0.1',                                                                                                                                                
  'dbport' => '',                                                                                                                                                         
  'dbtableprefix' => 'oc_',                                                                                                                                               
  'mysql.utf8mb4' => true,                                                                                                                                                
  'dbuser' => 'XXXXXXXXXX',                                                                                                                                                 
  'dbpassword' => 'XXXXXXXXX',                                                                                                                       
  'installed' => true,                                                                                                                                                    
  'instanceid' => 'XXXXXXXX',                                                                                                                                         
  'loglevel' => 0,                                                                                                                                                        
  'appcodechecker' => true,                                                                                                                                               
  'activity_expire_days' => 30,                                                                                                                                           
  'default_phone_region' => 'DE',                                                                                                                                         
  'app_install_overwrite' =>                                                                                                                                              
  array (                                                                                                                                                                 
    0 => 'keeporsweep',                                                                                                                                                   
  ),                                                                                                                                                                      
  'maintenance' => false,                                                                                                                                                 
  'theme' => '',                                                                                                                                                          
  'memcache.local' => '\\OC\\Memcache\\APCu',                                                                                                                             
  'maintenance_window_start' => 1,                                                                                                                                        
);                        

Ihre nginx-Konfiguration:

upstream php-handler {                                                                                                                                                    
    #server 127.0.0.1:9000;
    server unix:/var/run/php/php8.1-fpm.sock;                                                                                                                             
}                                                                                                                                                                         
                                                                                                                                                                          
server {                                                                                                                                                                  
    listen 80;                                                                                                                                                            
    listen [::]:80;                                                                                                                                                       
    server_name cloud.einserver.de;                                                                                                                                     
                                                                                                                                                                          
    # enforce https
    location / {                                                                                                                                                          
        return 301 https://$server_name$request_uri;                                                                                                                      
    }                                                                                                                                                                     
}                                                                                                                                                                         
                                                                                                                                                                          
server {                                                                                                                                                                  
    listen 443 ssl http2;                                                                                                                                                 
    listen [::]:443 ssl http2;                                                                                                                                            
    server_name cloud.einserver.de;                                                                                                                                     
                                                                                                                                                                          
    # Use Mozilla's guidelines for SSL/TLS settings
    # https://mozilla.github.io/server-side-tls/ssl-config-generator/
    # NOTE: some settings below might be redundant
    ssl_certificate /etc/letsencrypt/cert.crt;                                                                                                                            
    ssl_certificate_key /etc/letsencrypt/privkey.key;                                                                                                                     
                                                                                                                                                                          
    # Add headers to serve security related headers
    # Before enabling Strict-Transport-Security headers please read into this
    # topic first.
    add_header Strict-Transport-Security "max-age=15768000; includeSubDomains; preload;" always;                                                                          
    #
    # WARNING: Only add the preload option once you read about
    # the consequences in https://hstspreload.org/. This option
    # will add the domain to a hardcoded list that is shipped
    # in all major browsers and getting removed from this list
    # could take several months.
    add_header Referrer-Policy "no-referrer" always;                                                                                                                      
    add_header X-Content-Type-Options "nosniff" always;                                                                                                                   
    add_header X-Download-Options "noopen" always;                                                                                                                        
    add_header X-Frame-Options "SAMEORIGIN" always;                                                                                                                       
    add_header X-Permitted-Cross-Domain-Policies "none" always;                                                                                                           
    add_header X-Robots-Tag "noindex,nofollow" always;                                                                                                                    
    add_header X-XSS-Protection "1; mode=block" always;                                                                                                                   
                                                                                                                                                                          
    # Remove X-Powered-By, which is an information leak
    fastcgi_hide_header X-Powered-By;                                                                                                                                     
                                                                                                                                                                          
    # Path to the root of your installation
    root /var/www/nextcloud/;                                                                                                                                             
                                                                                                                                                                          
    location = /robots.txt {                                                                                                                                              
        allow all;                                                                                                                                                        
        log_not_found off;                                                                                                                                                
        access_log off;                                                                                                                                                   
    }                                                                                                                                                                     
                                                                                                                                                                          
    # Set .mjs and .wasm MIME types
    include mime.types;                                                                                                                                                   
    types {                                                                                                                                                               
        text/javascript js mjs;                                                                                                                                           
        application/wasm wasm;                                                                                                                                            
    }                                                                                                                                                                     
                                                                                                                                                                          
    # The following 2 rules are only needed for the user_webfinger app.
    # Uncomment it if you're planning to use this app.
    rewrite ^/.well-known/host-meta /public.php?service=host-meta last;                                                                                                   
    rewrite ^/.well-known/host-meta.json /public.php?service=host-meta-json last;                                                                                         
                                                                                                                                                                          
    # The following rule is only needed for the Social app.
    # Uncomment it if you're planning to use this app.
    rewrite ^/.well-known/webfinger /public.php?service=webfinger last;                                                                                                   
                                                                                                                                                                          
    location = /.well-known/carddav {                                                                                                                                     
      return 301 $scheme://$host:$server_port/remote.php/dav;                                                                                                             
    }                                                                                                                                                                     
    location = /.well-known/caldav {                                                                                                                                      
      return 301 $scheme://$host:$server_port/remote.php/dav;                                                                                                             
    }                                                                                                                                                                     
                                                                                                                                                                          
    # set max upload size
    client_max_body_size 5000M;                                                                                                                                           
    fastcgi_buffers 64 4K;                                                                                                                                                
                                                                                                                                                                          
    # Enable gzip but do not remove ETag headers
    gzip on;                                                                                                                                                              
    gzip_vary on;                                                                                                                                                         
    gzip_comp_level 4;                                                                                                                                                    
    gzip_min_length 256;                                                                                                                                                  
    gzip_proxied expired no-cache no-store private no_last_modified no_etag auth;
    gzip_types application/atom+xml application/javascript application/json application/ld+json application/manifest+json application/rss+xml application/vnd.geo+json ap>
                                                                                                                                                                          
    # Uncomment if your server is build with the ngx_pagespeed module
    # This module is currently not supported.
    #pagespeed off;
                                                                                                                                                                          
    location / {                                                                                                                                                          
        rewrite ^ /index.php;                                                                                                                                             
    }                                                                                                                                                                     
                                                                                                                                                                          
    location ~ ^\/(?:build|tests|config|lib|3rdparty|templates|data)\/ {                                                                                                  
        deny all;                                                                                                                                                         
    }                                                                                                                                                                     
    location ~ ^\/(?:\.|autotest|occ|issue|indie|db_|console) {                                                                                                           
        deny all;                                                                                                                                                         
    }                                                                                                                                                                     
                                                                                                                                                                          
    location ~ ^\/(?:index|remote|public|cron|core\/ajax\/update|status|ocs\/v[12]|updater\/.+|oc[ms]-provider\/.+|.+\/richdocumentscode\/proxy)\.php(?:$|\/) {           
        fastcgi_split_path_info ^(.+?\.php)(\/.*|)$;                                                                                                                      
        set $path_info $fastcgi_path_info;                                                                                                                                
        try_files $fastcgi_script_name =404;                                                                                                                              
        include fastcgi_params;                                                                                                                                           
        fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;                                                                                                 
        fastcgi_param PATH_INFO $path_info;                                                                                                                               
        fastcgi_param HTTPS on;                                                                                                                                           
        # Avoid sending the security headers twice
        fastcgi_param modHeadersAvailable true;                                                                                                                           
        # Enable pretty urls
        fastcgi_param front_controller_active true;                                                                                                                       
        fastcgi_pass php-handler;                                                                                                                                         
        fastcgi_intercept_errors on;                                                                                                                                      
        fastcgi_request_buffering off;                                                                                                                                    
    }                                                                                                                                                                     
                                                                                                                                                                          
    location ~ ^\/(?:updater|oc[ms]-provider)(?:$|\/) {                                                                                                                   
        try_files $uri/ =404;                                                                                                                                             
        index index.php;                                                                                                                                                  
    }                                                                                                                                                                     
                                                                                                                                                                          
    # Adding the cache control header for js, css and map files
    # Make sure it is BELOW the PHP block
    location ~ \.(?:css|js|woff2?|svg|gif|map)$ {                                                                                                                         
        try_files $uri /index.php$request_uri;                                                                                                                            
        add_header Cache-Control "public, max-age=15778463";                                                                                                              
        # Add headers to serve security related headers (It is intended to
        # have those duplicated to the ones above)
        # have those duplicated to the ones above)
        # Before enabling Strict-Transport-Security headers please read into
        # this topic first.
        #add_header Strict-Transport-Security "max-age=15768000; includeSubDomains; preload;" always;
        #
        # WARNING: Only add the preload option once you read about
        # the consequences in https://hstspreload.org/. This option
        # will add the domain to a hardcoded list that is shipped
        # in all major browsers and getting removed from this list
        # could take several months.
        add_header Referrer-Policy "no-referrer" always;                                                                                                                  
        add_header X-Content-Type-Options "nosniff" always;                                                                                                               
        add_header X-Download-Options "noopen" always;                                                                                                                    
        add_header X-Frame-Options "SAMEORIGIN" always;                                                                                                                   
        add_header X-Permitted-Cross-Domain-Policies "none" always;                                                                                                       
        add_header X-Robots-Tag "none" always;                                                                                                                            
        add_header X-XSS-Protection "1; mode=block" always;                                                                                                               
                                                                                                                                                                          
        # Optional: Don't log access to assets
        access_log off;                                                                                                                                                   
    }                                                                                                                                                                     
                                                                                                                                                                          
    location ~ \.(?:png|html|ttf|ico|jpg|jpeg|bcmap|mp4|webm)$ {                                                                                                          
        try_files $uri /index.php$request_uri;                                                                                                                            
        # Optional: Don't log access to other assets
        access_log off;                                                                                                                                                   
    }                                                                                                                                                                     
}

Fehlerausgabe im nextcloud.log in /var/www/ oder als Admin-Benutzer im oberen rechten Menü, gefiltert nach Fehlern. Verwenden Sie bei Bedarf einen Pastebin-Dienst.

Konnte ich nicht finden.


English

Nextcloud version (e.g., 29.0.5):

29.0.4

Operating system and version (e.g., Ubuntu 24.04):

Debian 12 Bookworm

Apache or nginx version (e.g., Apache 2.4.25):

nginx 1.27.0

PHP version (e.g., 8.3):

8.1.29

The issue you are facing:

After updating to 29.0.4, we receive the following warnings in the system configuration:

  • JavaScript support could not be detected through your trusted_domains or overwrite.cli.url. This may be due to a server-side DNS mismatch or an outgoing firewall rule. Please manually verify that your web server serves .mjs files with the JavaScript MIME type. To perform this check, ensure your web server can connect to itself. It must be able to connect to at least one of its “trusted_domains” or the “overwrite.cli.url” and resolve them.
  • Your web server is not properly configured to resolve “/ocm-provider/”. This is most likely related to a web server configuration that has not been updated to serve this directory directly. Please compare your configuration with the provided rewrite rules in “.htaccess” for Apache or those in the Nginx documentation. For Nginx, these are typically the lines that start with “location ~” and need updating. More information can be found in the documentation :arrow_upper_right:.
  • Your web server is not properly configured to resolve .well-known URLs. Failure at: /.well-known/webfinger. More information can be found in the documentation :arrow_upper_right:.

Is this the first time you’ve seen this error? (Y/N):

Y

Steps to replicate it:

No idea.

The output of your Nextcloud log in Admin > Logging:

The logging section in the admin panel does not load.

The output of your config.php file in /path/to/nextcloud (make sure you remove any identifiable information!):

<?php                                                                                                                                                                     
$CONFIG = array (                                                                                                                                                         
  'passwordsalt' => 'XXXXXXXXXX',                                                                                                                     
  'secret' => 'XXXXXXXXX',                                                                                                         
  'trusted_domains' =>                                                                                                                                                    
  array (                                                                                                                                                                 
    0 => 'localhost',                                                                                                                                                     
    1 => 'cloud.einserver.de',                                                                                                                                          
  ),                                                                                                                                                                      
  'datadirectory' => '/var/lib/nextcloud',                                                                                                                                
  'dbtype' => 'mysql',                                                                                                                                                    
  'version' => '29.0.4.1',                                                                                                                                                
  'overwrite.cli.url' => 'http://localhost',                                                                                                                              
  'dbname' => 'nextcloud',                                                                                                                                                
  'dbhost' => '127.0.0.1',                                                                                                                                                
  'dbport' => '',                                                                                                                                                         
  'dbtableprefix' => 'oc_',                                                                                                                                               
  'mysql.utf8mb4' => true,                                                                                                                                                
  'dbuser' => 'XXXXXXXXXX',                                                                                                                                                 
  'dbpassword' => 'XXXXXXXXX',                                                                                                                       
  'installed' => true,                                                                                                                                                    
  'instanceid' => 'XXXXXXXX',                                                                                                                                            
  'loglevel' => 0,                                                                                                                                                        
  'appcodechecker' => true,                                                                                                                                               
  'activity_expire_days' => 30,                                                                                                                                           
  'default_phone_region' => 'DE',                                                                                                                                         
  'app_install_overwrite' =>                                                                                                                                              
  array (                                                                                                                                                                 
    0 => 'keeporsweep',                                                                                                                                                   
  ),                                                                                                                                                                      
  'maintenance' => false,                                                                                                                                                 
  'theme' => '',                                                                                                                                                          
  'memcache.local' => '\\OC\\Memcache\\APCu',                                                                                                                             
  'maintenance_window_start' => 1,                                                                                                                                        
);                        

Your nginx-config:

upstream php-handler {                                                                                                                                                    
    #server 127.0.0.1:9000;
    server unix:/var/run/php/php8.1-fpm.sock;                                                                                                                             
}                                                                                                                                                                         
                                                                                                                                                                          
server {                                                                                                                                                                  
    listen 80;                                                                                                                                                            
    listen [::]:80;                                                                                                                                                       
    server_name cloud.einserver.de;                                                                                                                                     
                                                                                                                                                                          
    # enforce https
    location / {                                                                                                                                                          
        return 301 https://$server_name$request_uri;                                                                                                                      
    }                                                                                                                                                                     
}                                                                                                                                                                         
                                                                                                                                                                          
server {                                                                                                                                                                  
    listen 443 ssl http2;                                                                                                                                                 
    listen [::]:443 ssl http2;                                                                                                                                            
    server_name cloud.einserver.de;                                                                                                                                     
                                                                                                                                                                          
    # Use Mozilla's guidelines for SSL/TLS settings
    # https://mozilla.github.io/server-side-tls/ssl-config-generator/
    # NOTE: some settings below might be redundant
    ssl_certificate /etc/letsencrypt/cert.crt;                                                                                                                            
    ssl_certificate_key /etc/letsencrypt/privkey.key;                                                                                                                     
                                                                                                                                                                          
    # Add headers to serve security related headers
    # Before enabling Strict-Transport-Security headers please read into this
    # topic first.
    add_header Strict-Transport-Security "max-age=15768000; includeSubDomains; preload;" always;                                                                          
    #
    # WARNING: Only add the preload option once you read about
    # the consequences in https://hstspreload.org/. This option
    # will add the domain to a hardcoded list that is shipped
    # in all major browsers and getting removed from this list
    # could take several months.
    add_header Referrer-Policy "no-referrer" always;                                                                                                                      
    add_header X-Content-Type-Options "nosniff" always;                                                                                                                   
    add_header X-Download-Options "noopen" always;                                                                                                                        
    add_header X-Frame-Options "SAMEORIGIN" always;                                                                                                                       
    add_header X-Permitted-Cross-Domain-Policies "none" always;                                                                                                           
    add_header X-Robots-Tag "noindex,nofollow" always;                                                                                                                    
    add_header X-XSS-Protection "1; mode=block" always;                                                                                                                   
                                                                                                                                                                          
    # Remove X-Powered-By, which is an information leak
    fastcgi_hide_header X-Powered-By;                                                                                                                                     
                                                                                                                                                                          
    # Path to the root of your installation
    root /var/www/nextcloud/;                                                                                                                                             
                                                                                                                                                                          
    location = /robots.txt {                                                                                                                                              
        allow all;                                                                                                                                                        
        log_not_found off;                                                                                                                                                
        access_log off;                                                                                                                                                   
    }                                                                                                                                                                     
                                                                                                                                                                          
    # Set .mjs and .wasm MIME types
    include mime.types;                                                                                                                                                   
    types {                                                                                                                                                               
        text/javascript js mjs;                                                                                                                                           
        application/wasm wasm;                                                                                                                                            
    }                                                                                                                                                                     
                                                                                                                                                                          
    # The following 2 rules are only needed for the user_webfinger app.
    # Uncomment it if you're planning to use this app.
    rewrite ^/.well-known/host-meta /public.php?service=host-meta last;                                                                                                   
    rewrite ^/.well-known/host-meta.json /public.php?service=host-meta-json last;                                                                                         
                                                                                                                                                                          
    # The following rule is only needed for the Social app.
    # Uncomment it if you're planning to use this app.
    rewrite ^/.well-known/webfinger /public.php?service=webfinger last;                                                                                                   
                                                                                                                                                                          
    location = /.well-known/carddav {                                                                                                                                     
      return 301 $scheme://$host:$server_port/remote.php/dav;                                                                                                             
    }                                                                                                                                                                     
    location = /.well-known/caldav {                                                                                                                                      
      return 301 $scheme://$host:$server_port/remote.php/dav;                                                                                                             
    }                                                                                                                                                                     
                                                                                                                                                                          
    # set max upload size
    client_max_body_size 5000M;                                                                                                                                           
    fastcgi_buffers 64 4K;                                                                                                                                                
                                                                                                                                                                          
    # Enable gzip but do not remove ETag headers
    gzip on;                                                                                                                                                              
    gzip_vary on;                                                                                                                                                         
    gzip_comp_level 4;                                                                                                                                                    
    gzip_min_length 256;                                                                                                                                                  
    gzip_proxied expired no-cache no-store private no_last_modified no_etag auth;
    gzip_types application/atom+xml application/javascript application/json application/ld+json application/manifest+json application/rss+xml application/vnd.geo+json ap>
                                                                                                                                                                          
    # Uncomment if your server is build with the ngx_pagespeed module
    # This module is currently not supported.
    #pagespeed off;
                                                                                                                                                                          
    location / {                                                                                                                                                          
        rewrite ^ /index.php;                                                                                                                                             
    }                                                                                                                                                                     
                                                                                                                                                                          
    location ~ ^\/(?:build|tests|config|lib|3rdparty|templates|data)\/ {                                                                                                  
        deny all;                                                                                                                                                         
    }                                                                                                                                                                     
    location ~ ^\/(?:\.|autotest|occ|issue|indie|db_|console) {                                                                                                           
        deny all;                                                                                                                                                         
    }                                                                                                                                                                     
                                                                                                                                                                          
    location ~ ^\/(?:index|remote|public|cron|core\/ajax\/update|status|ocs\/v[12]|updater\/.+|oc[ms]-provider\/.+|.+\/richdocumentscode\/proxy)\.php(?:$|\/) {           
        fastcgi_split_path_info ^(.+?\.php)(\/.*|)$;                                                                                                                      
        set $path_info $fastcgi_path_info;                                                                                                                                
        try_files $fastcgi_script_name =404;                                                                                                                              
        include fastcgi_params;                                                                                                                                           
        fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;                                                                                                 
        fastcgi_param PATH_INFO $path_info;                                                                                                                               
        fastcgi_param HTTPS on;                                                                                                                                           
        # Avoid sending the security headers twice
        fastcgi_param modHeadersAvailable true;                                                                                                                           
        # Enable pretty urls
        fastcgi_param front_controller_active true;                                                                                                                       
        fastcgi_pass php-handler;                                                                                                                                         
        fastcgi_intercept_errors on;                                                                                                                                      
        fastcgi_request_buffering off;                                                                                                                                    
    }                                                                                                                                                                     
                                                                                                                                                                          
    location ~ ^\/(?:updater|oc[ms]-provider)(?:$|\/) {                                                                                                                   
        try_files $uri/ =404;                                                                                                                                             
        index index.php;                                                                                                                                                  
    }                                                                                                                                                                     
                                                                                                                                                                          
    # Adding the cache control header for js, css and map files
    # Make sure it is BELOW the PHP block
    location ~ \.(?:css|js|woff2?|svg|gif|map)$ {                                                                                                                         
        try_files $uri /index.php$request_uri;                                                                                                                            
        add_header Cache-Control "public, max-age=15778463";                                                                                                              
        # Add headers to serve security related headers (It is intended to
        # have those duplicated to the ones above)
        # have those duplicated to the ones above)
        # Before enabling Strict-Transport-Security headers please read into
        # this topic first.
        #add_header Strict-Transport-Security "max-age=15768000; includeSubDomains; preload;" always;
        #
        # WARNING: Only add the preload option once you read about
        # the consequences in https://hstspreload.org/. This option
        # will add the domain to a hardcoded list that is shipped
        # in all major browsers and getting removed from this list
        # could take several months.
        add_header Referrer-Policy "no-referrer" always;                                                                                                                  
        add_header X-Content-Type-Options "nosniff" always;                                                                                                               
        add_header X-Download-Options "noopen" always;                                                                                                                    
        add_header X-Frame-Options "SAMEORIGIN" always;                                                                                                                   
        add_header X-Permitted-Cross-Domain-Policies "none" always;                                                                                                       
        add_header X-Robots-Tag "none" always;                                                                                                                            
        add_header X-XSS-Protection "1; mode=block" always;                                                                                                               
                                                                                                                                                                          
        # Optional: Don't log access to assets
        access_log off;                                                                                                                                                   
    }                                                                                                                                                                     
                                                                                                                                                                          
    location ~ \.(?:png|html|ttf|ico|jpg|jpeg|bcmap|mp4|webm)$ {                                                                                                          
        try_files $uri /index.php$request_uri;                                                                                                                            
        # Optional: Don't log access to other assets
        access_log off;                                                                                                                                                   
    }                                                                                                                                                                     
}

Output errors in nextcloud.log in /var/www/ or as admin user in top right menu, filtering for errors. Use a pastebin service if necessary.

I couldnt find that.

The first situation is as it states. You can see here for more info: Upgrade to Nextcloud 28 — Nextcloud latest Administration Manual latest documentation

For the others, did you check out the linked documentation? Your Nginx is out-of-date, as the warning states. Please compare yours and you’ll see what I mean: NGINX configuration — Nextcloud latest Administration Manual latest documentation