I have a broken 25.0.13 instance, used by only me, with server-side encryption enabled.
There I have data that I need to recover.
The instance is on a hosting provider, which does not give me ssh access.
I have all the data files, database and passwords for the instance.
What I would like to do is to either get the instance back up running, preferably through transferring the data to a new installation, or decrypt the data on my computer.
I tried doing both on my own, transferring the data folder and using the decrypt tool, but I had no luck in recovering anything.
I would try to create the Nextcloud locally 1:1, possibly with a different name. I think there is then an occ-command to decrypt the Nextcloud. Or maybe you have direct access.
well, how would I do that? I would need to run a database, webserver etc all with the same configs and passwords. I can try the occ on the local copy, if it works, I’ll report here.
I did not do the migration like that, I copied the data folder, then in the config i changed the secret and instance ID, leaving the password salt, since I thought it might make it impossible to log in.
The recovery I tried used the tool and I had set the environment variables, like the secret, data path and user password. It always errored out with “can’t decrypt any private keys” or similar message
Using the recovery tools will likely be your best option if you aren’t going to bring up a working Nextcloud Server and migrate everything.
You should not need (nor do you want) to provide USER_PASSWORDS to the recovery tool (unless you explicitly overrode the default behavior, which uses a master key not per-use keys, when you first set up encryption – or if you set it up many many years ago when the default was different).
