Hello Friends,
I’m running NC 28.0.2 as a docker app on Unraid.
For the past few days I am getting a Temporary Error message when I try to log in to my nextcloud dashboard using Firefox for Mac.
The weird thing is I am able to log in when I’m using a Firefox Private Browsing window, but I get the error message when I’m using a regular browsing window.
Log in also works correctly with the Safari browser.
Can anyone help me solve this?
1 Like
Does it work if you immediately try to log in again?
1 Like
No. I tried a few times, but I get the same error.
What appears in your Nextcloud Server log at log-in time?
Anything like Tried to log in but could not verify token?
Yes, I’m getting quite a few error messages.
Here are some examples I copied from the log:
"Bruteforce attempt from \"172.68.110.176\"
"IP address throttled because it reached the attempts limit in the last 30 minutes [action: login, delay: 1600, ip: 172.68.110.176]"
"Token is not valid: Token is too short for a generated token, should be the password during basic auth"
"Token is too short for a generated token, should be the password during basic auth"
"Session token is invalid because it does not exist"
@jtr1 Any thoughts on the error messages?
I find it weird Nextcloud will give me the brute force error because I have the Brute Force Settings app set to disabled.
The only way I currently found to solve this issue was to log in with a device, instead of my username and password.
Can you post:
- your
occ config:list system - explain whether you’re using a proxy in front of Nextcloud
- a full raw log entry (ideally surrounding 2-3 entries as well) from the time period you are attempting to log in (i.e. need the stack trace) [using Copy raw or Copy formatted if you do it from the Web UI under Logging works]
I have the Brute Force Settings app set to disabled.
That app just adjusts the settings (currently only the whitelist). It’s a core function otherwise built into server. To disable it outright you use a config directive[1].
The only way I currently found to solve this issue was to log in with a device, instead of my username and password.
Wait, you’re able to log in with a device/app password via the web UI or via a device?
[1] Configuration Parameters — Nextcloud latest Administration Manual latest documentation
I have expereinced sometimes likely problems when logging in to my NC instance. But when I respected the capital / lower letters as the user, I was able to log in without any issue.
Maybe this helps someone with the same issue
Hi,
Here is my occ config:list system
root@Tower:~# docker exec -it nextcloud occ config:list system
{
"system": {
"datadirectory": "***REMOVED SENSITIVE VALUE***",
"instanceid": "***REMOVED SENSITIVE VALUE***",
"passwordsalt": "***REMOVED SENSITIVE VALUE***",
"secret": "***REMOVED SENSITIVE VALUE***",
"trusted_domains": [
"192.168.1.20:449",
"nc.eatingheads.com"
],
"trusted_proxies": "***REMOVED SENSITIVE VALUE***",
"dbtype": "mysql",
"version": "28.0.2.5",
"overwrite.cli.url": "https:\/\/nc.eatingheads.com\/",
"overwritehost": "nc.eatingheads.com",
"overwriteprotocol": "https",
"default_phone_region": "IL",
"dbname": "***REMOVED SENSITIVE VALUE***",
"dbhost": "***REMOVED SENSITIVE VALUE***",
"dbport": "",
"dbtableprefix": "oc_",
"mysql.utf8mb4": true,
"dbuser": "***REMOVED SENSITIVE VALUE***",
"dbpassword": "***REMOVED SENSITIVE VALUE***",
"installed": true,
"mail_smtpmode": "smtp",
"mail_sendmailmode": "smtp",
"mail_from_address": "***REMOVED SENSITIVE VALUE***",
"mail_domain": "***REMOVED SENSITIVE VALUE***",
"mail_smtpauth": 1,
"mail_smtphost": "***REMOVED SENSITIVE VALUE***",
"mail_smtpport": "587",
"mail_smtpname": "***REMOVED SENSITIVE VALUE***",
"mail_smtppassword": "***REMOVED SENSITIVE VALUE***",
"mail_smtpsecure": "tls",
"mail_smtpauthtype": "LOGIN",
"bulkupload.enabled": false,
"maintenance_window_start": 3,
"maintenance": false,
"theme": "",
"loglevel": 0,
"filelocking.enabled": "true",
"memcache.locking": "\\OC\\Memcache\\APCu",
"memcache.local": "\\OC\\Memcache\\APCu",
"upgrade.disable-web": true,
"defaultapp": "files,dashboard",
"app_install_overwrite": [
"news"
]
}
}
I have Nextcloud running behind NginxProxyManager and Cloudflare.
Ahh ok, that explains why my ip is being throttled.
I meant I was able to log-in using the web UI, but I used the option to log-in without a password. Meaning with a predefined passkey I set with Enpass.
Couple things:
- Disable Asset Caching in NPM
- Are the IP addresses logged always the same? Are they the IP of your workstation/device or of your proxy? You may need to add a
trusted_proxiesentry. Please check the Admin Manual (https://docs.nextcloud.com) for how to use a Reverse Proxy with Nextcloud. Though if you’re using the Apache based micro-services Docker image it does have some intelligence that work for many environments to sort of auto determine proxy handling
Thank you for the tips.
My NPM Proxy Host for Nextcloud was already set with Cache Assets disabled.
I also already had NginxProxyManager added as a trusted proxy in the Nextcloud config.php file.
After a reboot of my server today, it seems the issue has been resolved by itself.
I don’t know what fixed it, because I tried to reboot the server also last week and last week it didn’t help. But the important thing is the issue is gone.
Thank you for your help 