vCentre
December 10, 2016, 5:17pm
1
Fresh install on Ubuntu 14.04 LTS, MariaDB v10.1, PHP v7.0.14
https://docs.MyDomain.com/index.php/apps/files/?dir=/&fileid=2
The above link shown while browsing (HTTPS) but at log out turns to the below one (HTTP)!
http://docs.MyDomain.com/index.php/logout?requesttoken=BQAZI1d/BDESL2MaLgAERjx%2BFkIkMV4MDkIoFwZ/LBU%3D%3AcXcMx01DhYWtZ7k7wKR%2BAw5oi3nN58UeFf269Zg7CDE%3D
Platform is behind Pound Proxy v2.6 with the following configs,
User “www-data”
Group “www-data”
LogLevel 2
Alive 30
IgnoreCase 1
Control “/var/run/pound/poundctl.socket”
ListenHTTPS
Address 221.212.7.253
Port 443
AddHeader ““X-Forwarded-Proto: https””
HeadRemove ““X-Forwarded-Proto””
HeadRemove ““X-Forwarded-For””
Cert “/etc/pound/MyDomainCRT.PEM”
avoid poodle security attack
#Disable SSLv3
#Disable SSLv2
SSLAllowClientRenegotiation 0
SSLHonorCipherOrder 1
xHTTP 4
Service
HeadRequire “Host: .docs.MyDomain.com . ”
BackEnd
Address 221.212.7.147
Port 46147
End
End
Security & setup warnings shows that, All checks passed.
The above configurations are working fine with Nextcloud v10.0.1
Please advice
How does your config.php file look?
In particular the overwrite.cli and overwriteprotocol lines.
vCentre
December 10, 2016, 5:30pm
3
Below is config.php contents,
$CONFIG = array (
‘instanceid’ => ‘oczaz0rhk0za’,
‘passwordsalt’ => ‘XXXXX’,
‘secret’ => ‘XXXXX’,
‘memcache.local’ => ‘\OC\Memcache\APCu’,
‘preview_libreoffice_path’ => ‘/usr/bin/libreoffice’,
‘trusted_domains’ =>
array (
0 => ‘localhost’,
1 => ‘221.212.7.147:46147’,
2 => ‘docs.MyDomain.com ’,
),
‘datadirectory’ => ‘/home/nextcloud/data’,
‘overwrite.cli.url’ => ‘http://localhost/nextcloud ’, Apache document root changed to /var/www/nextcloud so that http://localhost can access normally
‘dbtype’ => ‘mysql’,
‘version’ => ‘9.1.2.2’,
‘dbname’ => ‘nextcloud’,
‘dbhost’ => ‘localhost’,
‘dbport’ => ‘’,
‘dbtableprefix’ => ‘oc_’,
‘dbuser’ => ‘nextcloud’,
‘dbpassword’ => ‘PasswordSQL’,
‘logtimezone’ => ‘UTC’,
‘installed’ => true,
);
Overwrite URL should be external unless you always access from the machine it’s installed on -
Here’s mine:
‘overwrite.cli.url’ => ‘https://cloud.mydomain.org ’,
‘overwriteprotocol’ => ‘https’,
Also if you’ve changed the root to nextcloud then you wouldn’t have /nextcloud on the end of the overwrite URL.
vCentre
December 10, 2016, 5:49pm
5
Fixed!
Yes no /nextcloud in address, just facing localhost:port
Thanks Jason for your kind and quick support!
1 Like
You can edit out your password salt and secret.
Just to clarify, in case someone else is about to make the stupid mistake I almost made: I’m pretty sure @JasonBayton meant @vCentre should edit their message (above) which contains the salt and secret, not that they should edit those out of their live config.php on the server, as that would cause the loss of all existing passwords .
I’ve removed the sensitive data from the posted config.
uusijani:
Just to clarify, in case someone else is about to make the stupid mistake I almost made: I’m pretty sure @JasonBayton meant @vCentre should edit their message (above) which contains the salt and secret, not that they should edit those out of their live config.php on the server, as that would cause the loss of all existing passwords.
So I know to be clearer in the future - Edited that out of the solution as @LukasReschke has edited the post.
1 Like
system
Closed
September 23, 2024, 6:20pm
9
This topic was automatically closed 90 days after the last reply. New replies are no longer allowed.