All that sounds a bit like this issue, where DAVdroid couldn’t handle CSFR tokens:
You can try to add the user agent string of KeeWeb to the list of incompatible clients such as the OS X finder: