Where is documentation for 'updater.secret'?

JudahK · October 6, 2022, 8:53pm

I have been using the betas and now RCs of the upcoming NC25 release. After the first update to a beta I have been unable to use the web based updater.

Now when I try to use it I get a message like this:

NCUpdaterError

At first I assumed this was just a bug in the beta and used the CLI to update. However, it has remained through each step, and I’ve done them all. Even with my current attempt to go from RC2 to RC3 I am facing the same issue.

I have tried to find documentation about this without success. I followed the instructions given and created my own hash and plaintext, putting the hash in the ‘updater.secret’ field which is being insterted into my config file, and putting the plaintext into the password field of the message. It rejects the password and if I check the config file it has a different value for updater.secret than I just entered. It appears that clicking update changes the config value so I don’t see how I’m supposed to know what to enter in this field to update successfully from the web interface. I have even tried deleting the updater.secret line entirely and it just shows up again.

I have confirmed with testing that clicking the ‘Open updater’ button immediately creates the ‘updater.secret’ line in the config file if it did not already exists, and puts a new random value in there if it does.

What is the proper procedure to follow when faced with this issue? More to the point? How can I restore the previous functionality where as an admin I can update the server without yet another password?

just · October 7, 2022, 6:23am

It is a bug in 25. It hasn’t been fixed yet.

github.com/nextcloud/server

[Bug]: NC 25 error when trying upgrade from beta 7 to RC1 with GUI

opened 09:17PM - 22 Sep 22 UTC

nicrame

bug 0. Needs triage 25-feedback

### ⚠️ This issue respects the following points: ⚠️ - [X] This is a **bug**, …not a question or a configuration/webserver/proxy issue. - [X] This issue is **not** already reported on Github _(I've searched it)_. - [X] Nextcloud Server **is** up to date. See [Maintenance and Release Schedule](https://github.com/nextcloud/server/wiki/Maintenance-and-Release-Schedule) for supported versions. - [X] Nextcloud Server **is** running on 64bit capable CPU, PHP and OS. - [X] I agree to follow Nextcloud's [Code of Conduct](https://nextcloud.com/contribute/code-of-conduct/). ### Bug description When i try to upgrade using GUI from 25 beta 7 (25.0.0.11) to 25 RC1 there some strange information appeared asking for password from config file. I did copy & paste the secret, but it didn't work like it would ignore LOGIN button (it didn't show/did anything). ![Zrzut ekranu (754)](https://user-images.githubusercontent.com/5872054/191849765-07c1eb3e-2eab-41f9-b538-d25dd9e7ac5d.png) Also updating from command line (terminal) did worked well. ### Steps to reproduce 1. Go to setting. 2. Click on update. 3. Error is just appearing. ### Expected behavior It should just start upgrade page. ### Installation method Community Manual installation with Archive ### Operating system RHEL/CentOS ### PHP engine version PHP 8.1 ### Web server Nginx ### Database engine version MariaDB ### Is this bug present after an update or on a fresh install? Updated from a minor version (ex. 22.2.3 to 22.2.4) ### Are you using the Nextcloud Server Encryption module? Encryption is Disabled ### What user-backends are you using? - [X] Default user-backend _(database)_ - [ ] LDAP/ Active Directory - [ ] SSO - SAML - [ ] Other ### Configuration report ```shell { "system": { "blacklisted_files": [], "instanceid": "***REMOVED SENSITIVE VALUE***", "passwordsalt": "***REMOVED SENSITIVE VALUE***", "secret": "***REMOVED SENSITIVE VALUE***", "trusted_domains": [ "localhost", "127.0.0.1", "172.25.8.11", "love", "itos-cloud", "192.168.zzz.2", "192.168.zzz.5", "zzz-NAS", "192.168.zzz.2", "my.domain.com", "zzz.127.zzz.207", "192.168.zzz.1" ], "enable_previews": true, "enabledPreviewProviders": [ "OC\\Preview\\TXT", "OC\\Preview\\MarkDown", "OC\\Preview\\PDF", "OC\\Preview\\Image", "OC\\Preview\\Photoshop", "OC\\Preview\\TIFF", "OC\\Preview\\SVG", "OC\\Preview\\Font", "OC\\Preview\\MP3", "OC\\Preview\\Movie", "OC\\Preview\\MKV", "OC\\Preview\\MP4", "OC\\Preview\\AVI", "OC\\Preview\\PNG", "OC\\Preview\\GIF", "OC\\Preview\\JPEG", "OC\\Preview\\XBitmap", "OC\\Preview\\BMP" ], "datadirectory": "***REMOVED SENSITIVE VALUE***", "dbtype": "mysql", "version": "25.0.0.13", "overwrite.cli.url": "https:\/\/my.domain.com", "dbname": "***REMOVED SENSITIVE VALUE***", "dbhost": "***REMOVED SENSITIVE VALUE***", "dbport": "", "dbtableprefix": "1c_", "mysql.utf8mb4": true, "dbuser": "***REMOVED SENSITIVE VALUE***", "dbpassword": "***REMOVED SENSITIVE VALUE***", "installed": true, "default_language": "pl", "default_locale": "pl", "simpleSignUpLink.shown": false, "memcache.local": "\\OC\\Memcache\\APCu", "memcache.locking": "\\OC\\Memcache\\Redis", "redis": { "host": "***REMOVED SENSITIVE VALUE***", "port": 0, "timeout": 2.5 }, "skeletondirectory": "core\/clear-default", "maintenance": false, "app_install_overwrite": [ "bruteforcesettings", "dicomviewer", "files_photospheres", "camerarawpreviews", "documentserver_community", "spreed" ], "mail_smtpmode": "smtp", "mail_smtpsecure": "tls", "mail_sendmailmode": "smtp", "mail_domain": "***REMOVED SENSITIVE VALUE***", "mail_smtpauthtype": "LOGIN", "mail_smtpauth": 1, "mail_smtphost": "***REMOVED SENSITIVE VALUE***", "mail_smtpport": "25", "mail_from_address": "***REMOVED SENSITIVE VALUE***", "mail_smtpname": "***REMOVED SENSITIVE VALUE***", "mail_smtppassword": "***REMOVED SENSITIVE VALUE***", "default_phone_region": "PL", "theme": "", "loglevel": 2, "updater.release.channel": "beta", "preview_max_memory": "512", "trusted_proxies": "***REMOVED SENSITIVE VALUE***", "updater.secret": "***REMOVED SENSITIVE VALUE***" } } ``` ### List of activated Apps ```shell Enabled: - activity: 2.17.0 - admin_audit: 1.15.0 - bruteforcesettings: 2.5.0 - calendar: 4.0.0-alpha.1 - camerarawpreviews: 0.8.0 - circles: 25.0.0-alpha.0 - cloud_federation_api: 1.8.0 - comments: 1.15.0 - contacts: 5.0.0-alpha.2 - contactsinteraction: 1.6.0 - dashboard: 7.5.0 - dav: 1.24.0 - deck: 1.8.0-beta.1 - dicomviewer: 1.2.3 - federatedfilesharing: 1.15.0 - federation: 1.15.0 - files: 1.20.0 - files_external: 1.17.0 - files_pdfviewer: 2.6.0 - files_photospheres: 1.24.1 - files_rightclick: 1.4.0 - files_sharing: 1.17.0 - files_trashbin: 1.15.0 - files_versions: 1.18.0 - files_videoplayer: 1.14.0 - firstrunwizard: 2.14.0 - logreader: 2.10.0 - lookup_server_connector: 1.13.0 - mail: 2.0.0-beta.7 - maps: 0.2.1 - nextcloud_announcements: 1.14.0 - notes: 4.5.1 - notifications: 2.13.1 - oauth2: 1.13.0 - password_policy: 1.15.0 - photos: 1.7.1 - privacy: 1.9.0 - provisioning_api: 1.15.0 - recommendations: 1.4.0 - related_resources: 1.0.0 - serverinfo: 1.15.0 - settings: 1.7.0 - sharebymail: 1.15.0 - spreed: 15.0.0-rc.1 - support: 1.8.0 - survey_client: 1.13.0 - systemtags: 1.15.0 - text: 3.6.0 - theming: 2.0.0 - twofactor_backupcodes: 1.14.0 - updatenotification: 1.15.0 - user_status: 1.5.0 - viewer: 1.9.0 - weather_status: 1.5.0 - workflowengine: 2.7.0 Disabled: - documentserver_community: 0.1.12 - encryption: 2.9.0 - extract: 1.3.5 - forms: 3.0.0-beta.1 - groupfolders: 13.0.0-beta.1 - metadata: 0.16.0 - notify_push: 0.4.0 - onlyoffice: 7.5.4 - ransomware_protection: 1.13.0 - suspicious_login - tasks: 0.14.4 - twofactor_totp - user_ldap ``` ### Nextcloud Signing status ```shell No errors have been found. ``` ### Nextcloud Logs ```shell There is no any log about this. ``` ### Additional info I'm using RHEL 9, on 64-bit CPU, with 64G RAM. nginx -v nginx version: nginx/1.20.1 php81 -v PHP 8.1.10 (cli) (built: Aug 30 2022 16:09:36) (NTS gcc x86_64) Copyright (c) The PHP Group Zend Engine v4.1.10, Copyright (c) Zend Technologies with Zend OPcache v8.1.10, Copyright (c), by Zend Technologies mariadb --version mariadb Ver 15.1 Distrib 10.5.16-MariaDB, for Linux (x86_64) using EditLine wrapper uname -a Linux zzz-NAS 5.14.0-70.26.1.el9_0.x86_64 https://github.com/nextcloud/server/issues/1 SMP PREEMPT Fri Sep 2 16:07:40 EDT 2022 x86_64 x86_64 x86_64 GNU/Linux