Nextcloud v10.0.2 Does not log out

vCentre · December 10, 2016, 5:17pm

Fresh install on Ubuntu 14.04 LTS, MariaDB v10.1, PHP v7.0.14

https://docs.MyDomain.com/index.php/apps/files/?dir=/&fileid=2

The above link shown while browsing (HTTPS) but at log out turns to the below one (HTTP)!

http://docs.MyDomain.com/index.php/logout?requesttoken=BQAZI1d/BDESL2MaLgAERjx%2BFkIkMV4MDkIoFwZ/LBU%3D%3AcXcMx01DhYWtZ7k7wKR%2BAw5oi3nN58UeFf269Zg7CDE%3D

Platform is behind Pound Proxy v2.6 with the following configs,

User “www-data”
Group “www-data”
LogLevel 2
Alive 30
IgnoreCase 1
Control “/var/run/pound/poundctl.socket”
ListenHTTPS
Address 221.212.7.253
Port 443
AddHeader ““X-Forwarded-Proto: https””
HeadRemove ““X-Forwarded-Proto””
HeadRemove ““X-Forwarded-For””
Cert “/etc/pound/MyDomainCRT.PEM”

avoid poodle security attack

#Disable SSLv3
#Disable SSLv2
SSLAllowClientRenegotiation 0
SSLHonorCipherOrder 1
xHTTP 4
Service
HeadRequire “Host: .docs.MyDomain.com.”
BackEnd
Address 221.212.7.147
Port 46147
End
End

Security & setup warnings shows that, All checks passed.
The above configurations are working fine with Nextcloud v10.0.1

Please advice

JasonBayton · December 10, 2016, 5:22pm

How does your config.php file look?

In particular the overwrite.cli and overwriteprotocol lines.

vCentre · December 10, 2016, 5:30pm

Below is config.php contents,

$CONFIG = array (
‘instanceid’ => ‘oczaz0rhk0za’,
‘passwordsalt’ => ‘XXXXX’,
‘secret’ => ‘XXXXX’,
‘memcache.local’ => ‘\OC\Memcache\APCu’,
‘preview_libreoffice_path’ => ‘/usr/bin/libreoffice’,
‘trusted_domains’ =>
array (
0 => ‘localhost’,
1 => ‘221.212.7.147:46147’,
2 => ‘docs.MyDomain.com’,
),
‘datadirectory’ => ‘/home/nextcloud/data’,
‘overwrite.cli.url’ => ‘http://localhost/nextcloud’, Apache document root changed to /var/www/nextcloud so that http://localhost can access normally
‘dbtype’ => ‘mysql’,
‘version’ => ‘9.1.2.2’,
‘dbname’ => ‘nextcloud’,
‘dbhost’ => ‘localhost’,
‘dbport’ => ‘’,
‘dbtableprefix’ => ‘oc_’,
‘dbuser’ => ‘nextcloud’,
‘dbpassword’ => ‘PasswordSQL’,
‘logtimezone’ => ‘UTC’,
‘installed’ => true,
);

JasonBayton · December 10, 2016, 5:41pm

Overwrite URL should be external unless you always access from the machine it’s installed on -

Here’s mine:

‘overwrite.cli.url’ => ‘https://cloud.mydomain.org’,
‘overwriteprotocol’ => ‘https’,

Also if you’ve changed the root to nextcloud then you wouldn’t have /nextcloud on the end of the overwrite URL.

vCentre · December 10, 2016, 5:49pm

Fixed!
Yes no /nextcloud in address, just facing localhost:port
Thanks Jason for your kind and quick support!

uusijani · December 13, 2016, 2:41pm

You can edit out your password salt and secret.

Just to clarify, in case someone else is about to make the stupid mistake I almost made: I’m pretty sure @JasonBayton meant @vCentre should edit their message (above) which contains the salt and secret, not that they should edit those out of their live config.php on the server, as that would cause the loss of all existing passwords.

LukasReschke · December 13, 2016, 3:55pm

I’ve removed the sensitive data from the posted config.

JasonBayton · December 13, 2016, 4:22pm

So I know to be clearer in the future - Edited that out of the solution as @LukasReschke has edited the post.