Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Bug]: WebDAV auth 503 via any device/connection #39590

Closed
6 of 8 tasks
kcastner opened this issue Jul 27, 2023 · 7 comments
Closed
6 of 8 tasks

[Bug]: WebDAV auth 503 via any device/connection #39590

kcastner opened this issue Jul 27, 2023 · 7 comments
Labels
0. Needs triage Pending check for reproducibility or if it fits our roadmap 27-feedback bug feature: authentication feature: dav

Comments

@kcastner
Copy link

⚠️ This issue respects the following points: ⚠️

Bug description

After update to version 27.0.1 WebDAV will get 503 error at CalDAV.
Error: No 'Authorization: Basic' header found.

Logs via occ log:watch

Debug webdav Sabre\DAV\Exception\NotAuthenticated: No public access to this resource., No 'Authorization: 2023-07-27T10:35:29+00:00
Basic' header found. Either the client didn't send one, or the server is misconfigured, No
'Authorization: Bearer' header found. Either the client didn't send one, or the server is
mis-configured, No 'Authorization: Basic' header found. Either the client didn't send one, or
the server is misconfigured at 3rdparty/sabre/dav/lib/DAV/Auth/Plugin.php line 152

                          0. .../sabre/event/lib/WildcardEmitterTrait.php line 89                                                                  
                             Sabre\DAV\Auth\Plugin->beforeMethod(                                                                                  
                                                                                                                                                   
                             )                                                                                                                     
                          1. 3rdparty/sabre/dav/lib/DAV/Server.php line 456                                                                        
                             Sabre\DAV\Server->emit(                                                                                               
                                                                                                                                                   
                             )                                                                                                                     
                          2. 3rdparty/sabre/dav/lib/DAV/Server.php line 253                                                                        
                             Sabre\DAV\Server->invokeMethod(                                                                                       
                                                                                                                                                   
                             )                                                                                                                     
                          3. 3rdparty/sabre/dav/lib/DAV/Server.php line 321                                                                        
                             Sabre\DAV\Server->start(                                                                                              
                                                                                                                                                   
                             )                                                                                                                     
                          4. apps/dav/lib/Server.php line 364                                                                                      
                             Sabre\DAV\Server->exec(                                                                                               
                                                                                                                                                   
                             )                                                                                                                     
                          5. apps/dav/appinfo/v2/remote.php line 35                                                                                
                             OCA\DAV\Server->exec(                                                                                                 
                                                                                                                                                   
                             )                                                                                                                     
                          6. remote.php line 172                                                                                                   
                             require_once("\/var\/www\/html\/nextcloud\/apps\/dav\/appinfo\/v2\/remote.php")

Steps to reproduce

  1. Update from 26.x to 27.0.1
  2. Login as any user
  3. Open calendar

Expected behavior

Loadng calendar after clicking it at top of nextcloud page

Installation method

Community Manual installation with Archive

Nextcloud Server version

27

Operating system

RHEL/CentOS

PHP engine version

PHP 8.1

Web server

Apache (supported)

Database engine version

MariaDB

Is this bug present after an update or on a fresh install?

Upgraded to a MAJOR version (ex. 22 to 23)

Are you using the Nextcloud Server Encryption module?

Encryption is Disabled

What user-backends are you using?

  • Default user-backend (database)
  • LDAP/ Active Directory
  • SSO - SAML
  • Other

Configuration report

{
    "system": {
        "instanceid": "***REMOVED SENSITIVE VALUE***",
        "passwordsalt": "***REMOVED SENSITIVE VALUE***",
        "secret": "***REMOVED SENSITIVE VALUE***",
        "trusted_domains": [
            "192.168.2.74",
            "***REMOVED SENSITIVE VALUE***"
        ],
        "datadirectory": "***REMOVED SENSITIVE VALUE***",
        "dbtype": "mysql",
        "version": "27.0.1.2",
        "overwrite.cli.url": "http:\/\/192.168.2.74",
        "dbname": "***REMOVED SENSITIVE VALUE***",
        "dbhost": "***REMOVED SENSITIVE VALUE***",
        "dbport": "",
        "dbtableprefix": "oc_",
        "mysql.utf8mb4": true,
        "dbuser": "***REMOVED SENSITIVE VALUE***",
        "dbpassword": "***REMOVED SENSITIVE VALUE***",
        "installed": true,
        "memcache.distributed": "\\OC\\Memcache\\Redis",
        "memcache.locking": "\\OC\\Memcache\\Redis",
        "memcache.local": "\\OC\\Memcache\\APCu",
        "redis": {
            "host": "***REMOVED SENSITIVE VALUE***",
            "port": 6379
        },
        "htaccess.RewriteBase": "\/",
        "ldapProviderFactory": "OCA\\User_LDAP\\LDAPProviderFactory",
        "app_install_overwrite": [
            "richdocumentscode",
            "money",
            "pdfdraw",
            "extract",
            "apporder",
            "breezedark",
            "ncdownloader",
            "cms_pico"
        ],
        "default_language": "de",
        "default_locale": "de_DE",
        "default_phone_region": "DE",
        "mail_smtpmode": "smtp",
        "mail_smtpsecure": "ssl",
        "mail_sendmailmode": "smtp",
        "mail_from_address": "***REMOVED SENSITIVE VALUE***",
        "mail_domain": "***REMOVED SENSITIVE VALUE***",
        "mail_smtphost": "***REMOVED SENSITIVE VALUE***",
        "mail_smtpport": "465",
        "mail_smtpauth": 1,
        "mail_smtpname": "***REMOVED SENSITIVE VALUE***",
        "mail_smtppassword": "***REMOVED SENSITIVE VALUE***",
        "twofactor_enforced": "false",
        "maintenance": false,
        "ncd_admin_settings": {
            "ncd_aria2_binary": "\/usr\/bin\/aria2c",
            "focusVisibleAdded": "",
            "disallow_aria2_settings": "0",
            "ncd_yt_binary": "\/usr\/local\/bin\/yt-dlp"
        },
        "global_aria2_config": [],
        "twofactor_enforced_groups": [],
        "twofactor_enforced_excluded_groups": [],
        "theme": "",
        "loglevel": 0,
        "memories.exiftool_no_local": true,
        "memories.vod.path": "\/var\/www\/html\/nextcloud\/apps\/memories\/exiftool-bin\/go-vod-amd64",
        "memories.vod.ffmpeg": "\/usr\/bin\/ffmpeg",
        "memories.vod.ffprobe": "\/usr\/bin\/ffprobe",
        "encryption_skip_signature_check": true
    }
}

List of activated Apps

Enabled:
  - activity: 2.19.0
  - apporder: 0.15.0
  - bookmarks: 13.0.1
  - breezedark: 26.0.0
  - calendar: 4.4.3
  - circles: 27.0.1
  - cloud_federation_api: 1.10.0
  - collectives: 2.6.1
  - comments: 1.17.0
  - contacts: 5.3.2
  - contactsinteraction: 1.8.0
  - dashboard: 7.7.0
  - dav: 1.27.0
  - deck: 1.10.0
  - drawio: 2.1.2
  - event_update_notification: 2.2.0
  - extract: 1.3.6
  - federatedfilesharing: 1.17.0
  - federation: 1.17.0
  - files: 1.22.0
  - files_pdfviewer: 2.8.0
  - files_rightclick: 1.6.0
  - files_sharing: 1.19.0
  - files_trashbin: 1.17.0
  - files_versions: 1.20.0
  - firstrunwizard: 2.16.0
  - group_everyone: 0.1.13
  - guests: 2.5.0
  - logreader: 2.12.0
  - lookup_server_connector: 1.15.0
  - mail: 3.2.4
  - memories: 5.2.1
  - nextcloud_announcements: 1.16.0
  - notes: 4.8.1
  - notifications: 2.15.0
  - oauth2: 1.15.1
  - oidc: 0.6.1
  - password_policy: 1.17.0
  - passwords: 2023.7.30
  - photos: 2.3.0
  - privacy: 1.11.0
  - provisioning_api: 1.17.0
  - recommendations: 1.6.0
  - related_resources: 1.2.0
  - richdocuments: 8.1.0
  - richdocumentscode: 23.5.104
  - serverinfo: 1.17.0
  - settings: 1.9.0
  - sharebymail: 1.17.0
  - spreed: 17.0.2
  - support: 1.10.0
  - survey_client: 1.15.0
  - systemtags: 1.17.0
  - text: 3.8.0
  - theming: 2.2.0
  - twofactor_backupcodes: 1.16.0
  - twofactor_totp: 9.0.0
  - twofactor_webauthn: 1.2.0
  - updatenotification: 1.17.0
  - user_ldap: 1.17.0
  - user_status: 1.7.0
  - viewer: 2.1.0
  - weather_status: 1.7.0
  - welcome: 1.0.9
  - workflowengine: 2.9.0
Disabled:
  - admin_audit: 1.17.0
  - bruteforcesettings: 2.7.0
  - encryption: 2.15.0
  - files_external: 1.19.0
  - pdfdraw: 0.1.2
  - suspicious_login: 5.0.0

Nextcloud Signing status

No errors have been found.

Nextcloud Logs

Debug    webdav             Sabre\DAV\Exception\NotAuthenticated: No public access to this resource., No 'Authorization:   2023-07-27T10:35:29+00:00 
                              Basic' header found. Either the client didn't send one, or the server is misconfigured, No                               
                              'Authorization: Bearer' header found. Either the client didn't send one, or the server is                                
                              mis-configured, No 'Authorization: Basic' header found. Either the client didn't send one, or                            
                              the server is misconfigured at 3rdparty/sabre/dav/lib/DAV/Auth/Plugin.php line 152                                       
                                                                                                                                                       
                              0. .../sabre/event/lib/WildcardEmitterTrait.php line 89                                                                  
                                 Sabre\DAV\Auth\Plugin->beforeMethod(                                                                                  
                                                                                                                                                       
                                 )                                                                                                                     
                              1. 3rdparty/sabre/dav/lib/DAV/Server.php line 456                                                                        
                                 Sabre\DAV\Server->emit(                                                                                               
                                                                                                                                                       
                                 )                                                                                                                     
                              2. 3rdparty/sabre/dav/lib/DAV/Server.php line 253                                                                        
                                 Sabre\DAV\Server->invokeMethod(                                                                                       
                                                                                                                                                       
                                 )                                                                                                                     
                              3. 3rdparty/sabre/dav/lib/DAV/Server.php line 321                                                                        
                                 Sabre\DAV\Server->start(                                                                                              
                                                                                                                                                       
                                 )                                                                                                                     
                              4. apps/dav/lib/Server.php line 364                                                                                      
                                 Sabre\DAV\Server->exec(                                                                                               
                                                                                                                                                       
                                 )                                                                                                                     
                              5. apps/dav/appinfo/v2/remote.php line 35                                                                                
                                 OCA\DAV\Server->exec(                                                                                                 
                                                                                                                                                       
                                 )                                                                                                                     
                              6. remote.php line 172                                                                                                   
                                 require_once("\/var\/www\/html\/nextcloud\/apps\/dav\/appinfo\/v2\/remote.php")

Additional info

Problem persists in any browser/mobile device
@kcastner kcastner added 0. Needs triage Pending check for reproducibility or if it fits our roadmap bug labels Jul 27, 2023
@kcastner
Copy link
Author

@Gaming4LifeDE maybe you sub too - its your system

@joshtrichards
Copy link
Member

Hi @kcastner - I'm unable to reproduce this. Main difference is I don't have LDAP set-up in my test bed. Maybe it's somehow related to that... or maybe that has nothing to do with it. Does the same happen if you log in on a an admin account (i.e. local/bypassing LDAP)?

@kcastner
Copy link
Author

Hi @joshtrichards,
yeah, it does happen with local admin account too.

Maybe the OS might be a hint: we are using Fedora 36 at latest patchlevel.

@joshtrichards
Copy link
Member

Are you using php in FPM mode?
Any recent changes to Apache?
Any security/setup warnings in NC under Administration Settings?

@kcastner
Copy link
Author

kcastner commented Jul 28, 2023
edited
Loading

Yes PHP FPM.
No, Same settings as before.
No warnings there - its all okay.

Maybe some system packages/versions are to old to run the v27. I'll try an OS Update from 36 to current Version 38. Im not sure If it helps. It could because 36 is EOL since May 2023
Any other stuff i should check before upgrading?

@kcastner
Copy link
Author

@joshtrichards an update to Fedora 38 fixes the issue. Do you want to do further Investigation?

@joshtrichards
Copy link
Member

I think this is going to have to be one of those transient technical mysteries left unsolved.

It if re-occurs we can revisit/reopen. Glad it's working for you now!

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
0. Needs triage Pending check for reproducibility or if it fits our roadmap 27-feedback bug feature: authentication feature: dav
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@joshtrichards @kcastner @szaimen