Nextcloud version (eg, 20.0.5): 25.0.0.2
Operating system and version (eg, Ubuntu 20.04): Debian 11
Apache or nginx version (eg, Apache 2.4.25): Apache/2.4.54
PHP version (eg, 7.4): 8.1.13
The issue you are facing:
Unable to move or delete files created from Windows/Linux/iOS/Android Clients error 403 Forbidden" or " is not allowed to access end-to-end encrypted content" or “write access end to end encryption folder - no token sent”
Is this the first time you’ve seen this error? (Y/N): Y
Steps to replicate it:
- Install new nc instance
- setup account email
- enable and install encryption module
- enable encryption
- create App token
- Login to Windows Client with app token
6.1 enable encryption - create file using web browser and in windows sync folder
- try to delete files using web browser or windows folder
- both fail with 403 error.
The output of your Nextcloud log in Admin > Logging:
Error webdav OCA\DAV\Connector\Sabre\Exception\Forbidden: Write access to end-to-end encrypted folder requires token - no token sent
2023-01-02T23:52:06+0200
Error webdav OCA\DAV\Connector\Sabre\Exception\Forbidden: Write access to end-to-end encrypted folder requires token - no token sent
2023-01-02T23:51:37+0200
Error webdav OCA\DAV\Connector\Sabre\Exception\Forbidden: Write access to end-to-end encrypted folder requires token - no token sent
2023-01-02T23:51:37+0200
Error webdav OCA\DAV\Connector\Sabre\Exception\Forbidden: Write access to end-to-end encrypted folder requires token - no token sent
2023-01-02T23:51:37+0200
Error webdav OCA\DAV\Connector\Sabre\Exception\Forbidden: Write access to end-to-end encrypted folder requires token - no token sent
2023-01-02T23:51:37+0200
Error webdav OCA\DAV\Connector\Sabre\Exception\Forbidden: Write access to end-to-end encrypted folder requires token - no token sent
2023-01-02T23:51:08+0200
Error webdav OCA\DAV\Connector\Sabre\Exception\Forbidden: Write access to end-to-end encrypted folder requires token - no token sent
2023-01-02T23:51:08+0200
Error webdav OCA\DAV\Connector\Sabre\Exception\Forbidden: Write access to end-to-end encrypted folder requires token - no token sent
2023-01-02T23:51:08+0200
Error webdav OCA\DAV\Connector\Sabre\Exception\Forbidden: Write access to end-to-end encrypted folder requires token - no token sent
2023-01-02T23:51:08+0200
Error webdav OCA\DAV\Connector\Sabre\Exception\Forbidden: Write access to end-to-end encrypted folder requires token - no token sent
2023-01-02T23:50:15+0200
Error webdav OCA\DAV\Connector\Sabre\Exception\Forbidden: Write access to end-to-end encrypted folder requires token - no token sent
2023-01-02T23:50:15+0200
Error webdav OCA\DAV\Connector\Sabre\Exception\Forbidden: Write access to end-to-end encrypted folder requires token - no token sent
2023-01-02T23:50:15+0200
Error webdav OCA\DAV\Connector\Sabre\Exception\Forbidden: Write access to end-to-end encrypted folder requires token - no token sent
2023-01-02T23:50:15+0200
Error webdav OCA\DAV\Connector\Sabre\Exception\Forbidden: Write access to end-to-end encrypted folder requires token - no token sent
2023-01-02T23:49:50+0200
Error webdav OCA\DAV\Connector\Sabre\Exception\Forbidden: Write access to end-to-end encrypted folder requires token - no token sent
2023-01-02T23:49:50+0200
Error webdav OCA\DAV\Connector\Sabre\Exception\Forbidden: Write access to end-to-end encrypted folder requires token - no token sent
2023-01-02T23:49:50+0200
Error webdav OCA\DAV\Connector\Sabre\Exception\Forbidden: Write access to end-to-end encrypted folder requires token - no token sent
2023-01-02T23:49:50+0200
Error webdav OCA\DAV\Connector\Sabre\Exception\Forbidden: Write access to end-to-end encrypted folder requires token - no token sent
2023-01-02T23:49:45+0200
Error webdav OCA\DAV\Connector\Sabre\Exception\Forbidden: Write access to end-to-end encrypted folder requires token - no token sent
2023-01-02T23:49:45+0200
Error webdav OCA\DAV\Connector\Sabre\Exception\Forbidden: Write access to end-to-end encrypted folder requires token - no token sent
2023-01-02T23:49:45+0200
Error webdav OCA\DAV\Connector\Sabre\Exception\Forbidden: Write access to end-to-end encrypted folder requires token - no token sent
2023-01-02T23:49:45+0200
Error webdav OCA\DAV\Connector\Sabre\Exception\Forbidden: Write access to end-to-end encrypted folder requires token - no token sent
2023-01-02T23:49:31+0200
Error webdav OCA\DAV\Connector\Sabre\Exception\Forbidden: Write access to end-to-end encrypted folder requires token - no token sent
2023-01-02T23:49:31+0200
Error webdav OCA\DAV\Connector\Sabre\Exception\Forbidden: Write access to end-to-end encrypted folder requires token - no token sent
2023-01-02T23:49:31+0200
Error webdav OCA\DAV\Connector\Sabre\Exception\Forbidden: Write access to end-to-end encrypted folder requires token - no token sent
2023-01-02T23:49:31+0200
Error webdav OCA\DAV\Connector\Sabre\Exception\Forbidden: Client "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:108.0) Gecko/20100101 Firefox/108.0" is not allowed to access end-to-end encrypted content
2023-01-02T23:48:46+0200
Error webdav OCA\DAV\Connector\Sabre\Exception\Forbidden: Client "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:108.0) Gecko/20100101 Firefox/108.0" is not allowed to access end-to-end encrypted content
2023-01-02T23:48:09+0200
Error webdav OCA\DAV\Connector\Sabre\Exception\Forbidden: Client "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:108.0) Gecko/20100101 Firefox/108.0" is not allowed to access end-to-end encrypted content
2023-01-02T23:47:48+0200
Error webdav OCA\DAV\Connector\Sabre\Exception\Forbidden: Client "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:108.0) Gecko/20100101 Firefox/108.0" is not allowed to access end-to-end encrypted content
2023-01-02T23:46:57+0200
Error webdav OCA\DAV\Connector\Sabre\Exception\Forbidden: Cannot copy or move files from non-encrypted folders to end to end encrypted folders or vice versa.
2023-01-02T23:46:26+0200
Error webdav OCA\DAV\Connector\Sabre\Exception\Forbidden: Client "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:108.0) Gecko/20100101 Firefox/108.0" is not allowed to access end-to-end encrypted content
2023-01-02T23:45:49+0200
Error webdav OCA\DAV\Connector\Sabre\Exception\Forbidden: Client "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:108.0) Gecko/20100101 Firefox/108.0" is not allowed to access end-to-end encrypted content
2023-01-02T23:45:41+0200
Error webdav OCA\DAV\Connector\Sabre\Exception\Forbidden: Write access to end-to-end encrypted folder requires token - no token sent
2023-01-02T23:44:54+0200
Error webdav OCA\DAV\Connector\Sabre\Exception\Forbidden: Client "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:108.0) Gecko/20100101 Firefox/108.0" is not allowed to access end-to-end encrypted content
2023-01-02T23:41:53+0200
Error webdav OCA\DAV\Connector\Sabre\Exception\Forbidden: Client "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:108.0) Gecko/20100101 Firefox/108.0" is not allowed to access end-to-end encrypted content
2023-01-02T23:41:03+0200
Error webdav OCA\DAV\Connector\Sabre\Exception\Forbidden: Client "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:108.0) Gecko/20100101 Firefox/108.0" is not allowed to access end-to-end encrypted content
2023-01-02T23:37:39+0200
Error webdav OCA\DAV\Connector\Sabre\Exception\Forbidden: Client "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:108.0) Gecko/20100101 Firefox/108.0" is not allowed to access end-to-end encrypted content
2023-01-02T23:37:39+0200
Error webdav OCA\DAV\Connector\Sabre\Exception\Forbidden: Client "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:108.0) Gecko/20100101 Firefox/108.0" is not allowed to access end-to-end encrypted content
2023-01-02T23:37:39+0200
Error webdav OCA\DAV\Connector\Sabre\Exception\Forbidden: Client "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:108.0) Gecko/20100101 Firefox/108.0" is not allowed to access end-to-end encrypted content
The output of your config.php file:
$CONFIG = array (
'htaccess.RewriteBase' => '/',
'instanceid' => '',
'passwordsalt' => '',
'secret' => '',
'trusted_domains' =>
array (
0 => 'cloud.example.com',
),
'datadirectory' => '/var/www/cloud-storage',
'dbtype' => 'mysql',
'version' => '25.0.2.3',
'overwrite.cli.url' => 'https://cloud.example.com',
'dbname' => 'cloud',
'dbhost' => 'localhost',
'dbport' => '',
'dbtableprefix' => 'oc_',
'mysql.utf8mb4' => true,
'dbuser' => 'cloudr',
'dbpassword' => '',
'installed' => true,
'filelocking.enabled' => true,
'filelocking.ttl' => 3200,
'memcache.local' => '\\OC\\Memcache\\Redis',
'memcache.distributed' => '\\OC\\Memcache\\Redis',
'redis' =>
array (
'host' => '192.168.1.32',
'port' => 6379,
'dbindex' => 0,
'password' => '',
'timeout' => 0,
)
'maintenance' => false,
);
The output of your nextcloud.log file: https://pastebin.com/3ntRPZ02