Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Security Check Fails with 401 Error After Consecutive Updates (30.0.0 → 30.0.1 → 30.0.2) #664

Open
Diogo-Rego opened this issue Dec 5, 2024 · 2 comments
Open

Security Check Fails with 401 Error After Consecutive Updates (30.0.0 → 30.0.1 → 30.0.2) #664

Diogo-Rego opened this issue Dec 5, 2024 · 2 comments

Comments

@Diogo-Rego
Copy link

Steps to Reproduce:

  1. Deploy Nextcloud using Helm chart (version: X.X.X).
  2. Update Nextcloud from version 30.0.0 to 30.0.1 using Helm:
helm upgrade my-nextcloud nextcloud/nextcloud --set image.tag=30.0.1
  • System functions normally, no issues observed.
  1. Immediately update from 30.0.1 to 30.0.2 using Helm:
helm upgrade my-nextcloud nextcloud/nextcloud --set image.tag=30.0.2
  • The update completes successfully, and the system appears functional.
  1. Access Settings > Administration > Overview for the Security & Setup Warnings check.

Expected Behavior:

  • The Security Check should display no issues if the system is correctly configured.

Actual Behavior:

  • The Security Check fails, and the logs show a 401 Unauthorized error related to remote.php.

Logs: From nextcloud.log:

{
  "reqId": "XXXX",
  "level": 3,
  "time": "YYYY-MM-DDTHH:MM:SSZ",
  "remoteAddr": "IP_ADDRESS",
  "user": "--",
  "app": "PHP",
  "method": "GET",
  "url": "/remote.php",
  "message": "401 Unauthorized"
}

Notes:

  • If I skip the intermediate step and directly update from 30.0.0 to 30.0.2, the problem does not occur.

  • Running occ maintenance:repair or clearing the cache after the first update does not seem to prevent this issue.

  • This issue seems related to intermediate migrations or state inconsistencies during back-to-back updates.

Environment:

  • Nextcloud Version: 30.0.0 → 30.0.1 → 30.0.2
  • Deployment: Helm chart on Kubernetes
  • Database: PostgreSQL
  • Cache: Redis
  • PHP Version: X.X
  • Web Server: NGINX
  • Authentication: (e.g., local, SAML, LDAP, etc.)

Troubleshooting Steps Taken:

  1. Restarted all related services (Nextcloud, Redis, PostgreSQL).
  2. Verified permissions for remote.php.

Additional Information:

  • This issue seems related to token or session management.

  • Happy to provide more logs or test specific fixes.
@provokateurin
Copy link
Member

This sounds like it is not related to the Helm chart itself but rather a bug in server.

@Diogo-Rego
Copy link
Author

This sounds like it is not related to the Helm chart itself but rather a bug in server.

The problem seems to be with migrations to PostgreSQL.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@provokateurin @Diogo-Rego