Nextcloud & Onlyoffice integration, 404 forbiden

🍱 Features & apps onlyoffice
1

Hi, first of all i am a french so my english may not be perfect.

Ubuntu server 18.04, Nextcloud 18.04, latest apps.

I used to have onlyoffice in docker from a while, but, don’t no why ( update ? ) , it’s not working any more.

So i disabled my docker and tested the fully integration onlyoffice.
( https://nextcloud.com/blog/how-to-install-onlyoffice-in-nextcloud-hub-and-new-integration-feature/ )

  • All seem to be good :slight_smile:

    php /var/www/nextcloud/occ app:install documentserver_community
    documentserver_community installed
    documentserver_community enabled

    php /var/www/nextcloud/occ app:install onlyoffice
    onlyoffice installed
    onlyoffice enabled

  • In the ONLYOFFICE app

    the autoconfigured address as succesfully changed :
    https://xxxxx.com/apps/documentserver_community/

  • BUT, when i click save :

Erreur durant la tentative de connexion (Client error: GET https://xxxx/apps/documentserver_community/healthcheckresulted in a403 Forbidden response: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"> <html><head> <title>403 Forbidden</title> </head><body> <h1>Forbidden (truncated...) )

  • result of :

https://xxxxx/apps/documentserver_community/healthcheck is true

  • apache2 reverse proxy config

[…]
DocumentRoot /var/www/nextcloud

<Directory /var/www/nextcloud>
Options Indexes FollowSymLinks
AllowOverride All
Require all granted
Satisfy Any
</Directory>

<IfModule mod_dav.c>
Dav off
</IfModule>

SetEnv HOME /var/www/nextcloud
SetEnv HTTP_HOME /var/www/nextcloud

Include ssl.conf

[…]

  • ssl.conf

    SSLEngine on
    SSLCompression off

    SSLProtocol all -SSLv3 -TLSv1 -TLSv1.1

    SSLCipherSuite ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384
    SSLHonorCipherOrder off
    SSLSessionTickets off
    SSLCertificateFile /etc/letsencrypt/live/xxx.com/cert.pem
    SSLCertificateKeyFile /etc/letsencrypt/live/xxx.com/privkey.pem
    SSLCertificateChainFile /etc/letsencrypt/live/xxx.com/chain.pem

    SSLOpenSSLConfCmd DHParameters /etc/letsencrypt/live/xxx.com/dhparam.pem
    RequestHeader set X-Forwarded-Proto “https”
    Header add Strict-Transport-Security: “max-age=63072000;includeSubdomains”
    SSLProxyEngine On
    SSLProxyCheckPeerCN Off
    SSLProxyCheckPeerName Off
    SSLProxyVerify none
    ProxyPreserveHost On

Does someone have an idea ? thanks !