I am currently using Nextcloud Community Edition in a Docker container behind an NGINX reverse proxy, and I would like to ask about support for header-based login.
In my setup, users are authenticated by an external system before reaching Nextcloud. Once the user is authenticated, that external system sends the user’s ID to NGINX, which then forwards it to the Nextcloud container using the X-Remote-User HTTP header.
What I want to achieve is for Nextcloud to automatically log in users based on this header value (i.e., the user ID sent in X-Remote-User) without requiring them to see or use the Nextcloud login page.
Could you please clarify the following:
-
Does the Nextcloud Community Edition support automatic login using the
X-Remote-UserHTTP header? -
If not, is this feature only available in the Enterprise Edition (e.g., via the “SSO & SAML authentication” app)?
-
Are there any officially supported or recommended ways to implement this kind of header-based login in the Community Edition (e.g., with OpenID Connect, external authentication apps, or any other method)?
-
If unsupported directly, is it possible to build a custom plugin or authentication module for this, and are there any available resources or documentation to help with such development?
Any guidance would be greatly appreciated, especially in understanding whether this scenario can be supported with the Community Edition.
