No login screen when accessing from wan, from lan no issues

R0yk3 · May 5, 2020, 2:50pm

Nextcloud version _: 18.0.4
Operating system and version : Debian 10
nginx: 1.17.10
PHP version _:7.4.5

The issue you are facing:
Loggin in from a local ip to local ip is no problem. Everything works like a charm.
local ip 192.168.1.119 post 443
Loggin in from a local ip to url is a problem.
I see the nextcloud screen and logo. but the login boxes do not apear.
home.sieliakus.nl

Loggin in from local network or outside network i see the same.

URL is with allowed hosts.
nginx servername is home.sieliakus.nl.

i used Install Nextcloud 18 using one script only – Carsten Rieger IT-Services for instalation.

Is this the first time you’ve seen this error?:
Yes, never tried it before.

Steps to replicate it:
goto
home.sieliakus.nl

KarlF12 · May 5, 2020, 3:01pm

Very strange issue indeed. I haven’t seen this before. I think we’ll need to see your Nextcloud and nginx configs to troubleshoot.

R0yk3 · May 5, 2020, 3:17pm

Nextcloud config

?php
$CONFIG = array (
‘passwordsalt’ => ‘###’,
‘secret’ => ‘###’,
‘trusted_domains’ =>
array (
0 => ‘home.sieliakus.nl’,
1 => ‘sieliakus.no-ip.org’,
2 => ‘192.168.1.119’,
),
‘datadirectory’ => ‘/mnt/nextcloud’,
‘dbtype’ => ‘mysql’,
‘version’ => ‘18.0.4.2’,
‘overwrite.cli.url’ => ‘https://home.sieliakus.nl’,
‘dbname’ => ‘nextcloud’,
‘dbhost’ => ‘localhost’,
‘dbport’ => ‘’,
‘dbtableprefix’ => ‘oc_’,
‘mysql.utf8mb4’ => true,
‘dbuser’ => ‘##’,
‘dbpassword’ => ‘##’,
‘installed’ => true,
‘instanceid’ => ‘##’,
‘activity_expire_days’ => 14,
‘auth.bruteforce.protection.enabled’ => true,
‘blacklisted_files’ =>
array (
0 => ‘.htaccess’,
1 => ‘Thumbs.db’,
2 => ‘thumbs.db’,
),
‘cron_log’ => true,
‘enable_previews’ => true,
‘enabledPreviewProviders’ =>
array (
0 => ‘OC\Preview\PNG’,
1 => ‘OC\Preview\JPEG’,
2 => ‘OC\Preview\GIF’,
3 => ‘OC\Preview\BMP’,
4 => ‘OC\Preview\XBitmap’,
5 => ‘OC\Preview\Movie’,
6 => ‘OC\Preview\PDF’,
7 => ‘OC\Preview\MP3’,
8 => ‘OC\Preview\TXT’,
9 => ‘OC\Preview\MarkDown’,
),
‘filesystem_check_changes’ => 0,
‘filelocking.enabled’ => ‘true’,
‘htaccess.RewriteBase’ => ‘/’,
‘integrity.check.disabled’ => false,
‘knowledgebaseenabled’ => false,

Nginx.conf

server {
server_name home.sieliakus.nl;
listen 80 default_server;
listen [::]:80 default_server;
location ^~ /.well-known/acme-challenge {
proxy_pass http://127.0.0.1:81;
proxy_set_header Host $host;
}
location / {
return 301 https://$host$request_uri;
}
}
server {
server_name home.sieliakus.nl;
listen 443 ssl http2 default_server;
listen [::]:443 ssl http2 default_server;
root /var/www/nextcloud/;
location = /robots.txt {
allow all;
log_not_found off;
access_log off;
#}
#location = /.well-known/carddav {
#return 301 $scheme://$host/remote.php/dav;
}
location = /.well-known/caldav {
return 301 $scheme://$host/remote.php/dav;
}
#SOCIAL app enabled? Please uncomment the following row
#rewrite ^/.well-known/webfinger /public.php?service=webfinger last;
#WEBFINGER app enabled? Please uncomment the following two rows.
#rewrite ^/.well-known/host-meta /public.php?service=host-meta last;
#rewrite ^/.well-known/host-meta.json /public.php?service=host-meta-json last;
client_max_body_size 10240M;
location / {
rewrite ^ /index.php;
}
location ~ ^/(?:build|tests|config|lib|3rdparty|templates|data)/ {
deny all;
}
location ~ ^/(?:.|autotest|occ|issue|indie|db_|console) {
deny all;
}
location ^~ /apps/rainloop/app/data {
deny all;
}
location ~ .(?:flv|mp4|mov|m4a)$ {
mp4;
mp4_buffer_size 100M;
mp4_max_buffer_size 1024M;
fastcgi_split_path_info ^(.+?.php)(/.|)$;
set $path_info $fastcgi_path_info;
try_files $fastcgi_script_name =404;
include fastcgi_params;
include php_optimization.conf;
}
location ~ ^/(?:index|remote|public|cron|core/ajax/update|status|ocs/v[12]|updater/.+|oc[ms]-provider/.+).php(?:$|/) {
fastcgi_split_path_info ^(.+?.php)(/.|)$;
set $path_info $fastcgi_path_info;
try_files $fastcgi_script_name =404;
include fastcgi_params;
include php_optimization.conf;
}
location ~ ^/(?:updater|oc[ms]-provider)(?:$|/) {
try_files $uri/ =404;
index index.php;
}
location ~ .(?:css|js|woff2?|svg|gif|map|png|html|ttf|ico|jpg|jpeg)$ {
try_files $uri /index.php$request_uri;
access_log off;
expires 360d;
}
}

KarlF12 · May 5, 2020, 3:56pm

It’s probably this. That won’t be valid from off-network. Try setting it to your FQDN.

You may need to set other overwrite parameters as well.

https://docs.nextcloud.com/server/18/admin_manual/configuration_server/reverse_proxy_configuration.html#overwrite-parameters

R0yk3 · May 5, 2020, 4:07pm

I found it.
My certificates (cloudflare) are not installed right.
I have to get id off the let’s encrypt things an point is to cloudflare.
The cli url i already edited. but more reverse proxy things are going on.
when i have it working i wil post the right .conf
Thankyou.

R0yk3 · May 7, 2020, 7:58am

Wel everything installed right. but for some reasons the url is not resolving right.
if you use https://sieliakus.no-ip.org you can login. if you use https://home.sieliakus.nl loggin in is not possible??
For sieliakus.no-ip.org i did nothing, only added it to the trusted domains??

i’m lost…