Multiple issues with my Nextcloud instance

@nebulon Thanks.

I chose to do a restore, since I could manually replace files that were updated/changed during these days.

Edit: will you pull the update? Or should I set my Nextcloud instance to stop auto updating?

I still have two issues remaining, but these have probably been there a long time:

    WebSocket server URL is not configured. Real-time collaboration requires a separate WebSocket server. Basic whiteboard functionality works without it. For more details see the documentation ↗.
    No High-performance backend configured - Running Nextcloud Talk without the High-performance backend only scales for very small calls (max. 2-3 participants). Please set up the High-performance backend to ensure calls with multiple participants work seamlessly. For more details see the documentation ↗.

Hello,

I post here, hoping to get some help. I've been running Nextcloud with no issue for a long time, but recently, multiple issues have occurred. I am not 100% sure, but I think most of these issues occurred after updating to v32 (the Nextcloud error log has several entries all dating back to when that update was installed).

Here are the new issues visible when I go to the "Administration -> Overview" page (I didn't include the code integrity checker disabled issue, since that has always been there):

There are some errors regarding your setup.

AppAPI deploy daemon
AppAPI default deploy daemon is not set. Please register a default deploy daemon in the settings to install External Apps (Ex-Apps).
Whiteboard real-time collaboration
WebSocket server URL is not configured. Real-time collaboration requires a separate WebSocket server. Basic whiteboard functionality works without it.

   High-performance backend
   No High-performance backend configured - Running Nextcloud Talk without the High-performance backend only scales for very small calls (max. 2-3 participants). Please set up the High-performance backend to ensure calls with multiple participants work seamlessly.

Errors in the log
60 errors in the logs since 25 September 2025, 11:13:34
Client Push
Client Push is not installed, this might lead to performance issues when using desktop clients.

In addition to these errors, Nextcloud now refuses to connect to my Onlyoffice instance (it even refuses to save Secret key in https://mynextcloudurl/settings/admin/onlyoffice). When trying to enter a new key (or use my existing key) and pressing "save", I only get a "spinning wheel" that seems to go on forever. Nothing is changed and saved. I tried the solutions listed in the Onlyoffice forum, including uninstalling and reinstalling the plugin, but that didn't change anything. Uninstalling clearly didn't remove any settings, as the old Secret key was still stored. And in this settings window, none of the settings appear that should appear after a successful setup. When I go to the Nextcloud file manager and click on a document, it only downloads the file, it doesn't open in the web browser any longer.

Here are a few errors in my Nextcloud log (I've removed "username" and ip address):

Exception Error occurred in the document service: Error while downloading the document file to be converted
application: onlyoffice:

{"reqId":"U52c122kQBgX6PTFH7xj","level":3,"time":"2025-10-02T08:49:21+00:00","remoteAddr":"ipaddress","user":"username","app":"onlyoffice","method":"GET","url":"/core/preview?fileId=214357&x=32&y=32&mimeFallback=true&v=9265e3&a=0","message":"getConvertedUri: from docx to jpeg","userAgent":"Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:143.0) Gecko/20100101 Firefox/143.0","version":"32.0.0.13","exception":{"Exception":"Exception","Message":"Error occurred in the document service: Error while downloading the document file to be converted.","Code":0,"Trace":[{"file":"/app/data/apps/onlyoffice/lib/DocumentService.php","line":104,"function":"processConvServResponceError","class":"OCA\\Onlyoffice\\DocumentService","type":"->"},{"file":"/app/data/apps/onlyoffice/lib/Preview.php","line":271,"function":"getConvertedUri","class":"OCA\\Onlyoffice\\DocumentService","type":"->"},{"file":"/app/code/lib/private/Preview/ProviderV1Adapter.php","line":35,"function":"getThumbnail","class":"OCA\\Onlyoffice\\Preview","type":"->"},{"file":"/app/code/lib/private/Preview/GeneratorHelper.php","line":45,"function":"getThumbnail","class":"OC\\Preview\\ProviderV1Adapter","type":"->"},{"file":"/app/code/lib/private/Preview/Generator.php","line":342,"function":"getThumbnail","class":"OC\\Preview\\GeneratorHelper","type":"->"},{"file":"/app/code/lib/private/Preview/Generator.php","line":313,"function":"generateProviderPreview","class":"OC\\Preview\\Generator","type":"->"},{"file":"/app/code/lib/private/Preview/Generator.php","line":117,"function":"getMaxPreview","class":"OC\\Preview\\Generator","type":"->"},{"file":"/app/code/lib/private/Preview/Generator.php","line":87,"function":"generatePreviews","class":"OC\\Preview\\Generator","type":"->"},{"file":"/app/code/lib/private/PreviewManager.php","line":161,"function":"getPreview","class":"OC\\Preview\\Generator","type":"->"},{"file":"/app/code/core/Controller/PreviewController.php","line":166,"function":"getPreview","class":"OC\\PreviewManager","type":"->"},{"file":"/app/code/core/Controller/PreviewController.php","line":128,"function":"fetchPreview","class":"OC\\Core\\Controller\\PreviewController","type":"->"},{"file":"/app/code/lib/private/AppFramework/Http/Dispatcher.php","line":204,"function":"getPreviewByFileId","class":"OC\\Core\\Controller\\PreviewController","type":"->"},{"file":"/app/code/lib/private/AppFramework/Http/Dispatcher.php","line":118,"function":"executeController","class":"OC\\AppFramework\\Http\\Dispatcher","type":"->"},{"file":"/app/code/lib/private/AppFramework/App.php","line":153,"function":"dispatch","class":"OC\\AppFramework\\Http\\Dispatcher","type":"->"},{"file":"/app/code/lib/private/Route/Router.php","line":321,"function":"main","class":"OC\\AppFramework\\App","type":"::"},{"file":"/app/code/lib/base.php","line":1061,"function":"match","class":"OC\\Route\\Router","type":"->"},{"file":"/app/code/index.php","line":25,"function":"handleRequest","class":"OC","type":"::"}],"File":"/app/data/apps/onlyoffice/lib/DocumentService.php","Line":255,"message":"getConvertedUri: from docx to jpeg","exception":[],"CustomMessage":"getConvertedUri: from docx to jpeg"},"id":"68de40ae08650"}

ServerMaintenanceMode System is in maintenance mode.
application: no app in context:

{"reqId":"442EaA2kJHkbjGxUiE0f","level":3,"time":"2025-10-02T08:29:06+00:00","remoteAddr":"192.168.8.1","user":"username","app":"no app in context","method":"PROPFIND","url":"/remote.php/dav/files/oddgeir/","message":"Uncaught exception","userAgent":"Mozilla/5.0 (Windows) mirall/3.17.1 (build 20250818) (Nextcloud, windows-10.0.26100 ClientArchitecture: x86_64 OsArchitecture: x86_64)","version":"32.0.0.13","clientReqId":"58f3f9f3-39d7-4e96-a3d1-c9f1da700502","exception":{"Exception":"OCA\\DAV\\Exception\\ServerMaintenanceMode","Message":"System is in maintenance mode.","Code":0,"Trace":[{"file":"/app/code/3rdparty/sabre/event/lib/WildcardEmitterTrait.php","line":89,"function":"checkMaintenanceMode","class":"OCA\\DAV\\Connector\\Sabre\\MaintenancePlugin","type":"->"},{"file":"/app/code/3rdparty/sabre/dav/lib/DAV/Server.php","line":456,"function":"emit","class":"Sabre\\DAV\\Server","type":"->"},{"file":"/app/data/apps/dav/lib/Connector/Sabre/Server.php","line":211,"function":"invokeMethod","class":"Sabre\\DAV\\Server","type":"->"},{"file":"/app/data/apps/dav/lib/Server.php","line":424,"function":"start","class":"OCA\\DAV\\Connector\\Sabre\\Server","type":"->"},{"file":"/app/data/apps/dav/appinfo/v2/remote.php","line":22,"function":"exec","class":"OCA\\DAV\\Server","type":"->"},{"file":"/app/code/remote.php","line":151,"args":["/app/data/apps/dav/appinfo/v2/remote.php"],"function":"require_once"}],"File":"/app/data/apps/dav/lib/Connector/Sabre/MaintenancePlugin.php","Line":65,"message":"Uncaught exception","exception":[],"CustomMessage":"Uncaught exception"},"id":"68de40b80f088"}

If anyone can help, I'd be very happy. It is really hard, borderline impossible, for me to scrap my current install and start with a fresh instance. So any help will be appreciated.

@girish Thank you for the really quick fix!

Hello

Emby (stable) was updated to 4.8.11.0 in March (https://github.com/MediaBrowser/Emby.Releases/releases/tag/4.8.11.0)

Is it possible to update the Cloudron package?

Thanks!

@nebulon This is probably a meaningless response, but I have no ideas for this. I'll post back if I think of something, but it seems to me that there's very little I can do about this as an end user. Thanks anyway for looking into this.

@nebulon I'm no programmer, so I'm not 100 % sure I understand you correctly, but it seems like you managed to do what I referred to in this post? :Post #5 on this topic

If so, the way I understand it, is that the on first auth (the one that succeeds), the app pw verifies ok, but on the second auth, the post cannot find the link to the auth part of the plugin (which is referenced in the PATH_INFO part), and thus returns unauthorized. But I might be completely mistanken on this.

Thanks for looking into this. This plugin would be worth a lot, as it basically lets you manage your entire TTRSS installation with remote clients.

@nebulon said in Trying to get the FreshAPI plugin to work, but can't switch to local auth:

PATH_INFO

Thanks for following up. Does this help? Apache Core Features on apache.org - specifically under the headline "AcceptPathInfo Directive"?

Hello

This is a follow-up of the post in this topic: Trying to get FreshAPI plugin to work, but can't switch to local auth

The FreshAPI plugin looks like a really useful addon for TTRSS, and I hope it's possible to use this plugin on Cloudron. I post this request in case it was "forgotten" in the preivous topic. Apologies if this has been considered impossible or unviable to implement on Cloudron.

PATH_INFO is a requirement to have this plugin working. There's an instruction set posted here on how to implement: Non-Official Docker based Installs
Here's a link to the plugin repository: FreshAPI

Thank you very much.

@lucidfox Did you follow the procedure described in this post above? Post 102335 in this thread

Wallos needs these custom headers to fire its notifications (refer to Wallos github support issue 524 in that post).

@girish said in Notifications not working?:

I pushed a fix but didn't test it . Can you test?

Apologies for the delay - work stuff. I updated now and tested. Notifications fires perfectly when issuing (from cli) the following command:

/app/pkg/cron.sh sendnotifications

Output:

2025-02-26 17:36:25<br />
Next payment date: 2025-02-27<br />Current date: 2025-02-26<br />Difference: 1<br />Email Notifications sent<br />Ntfy Notifications sent<br /

Also, Cloudron logs now show (every 2 mins):

Feb 26 18:38:03 => Run cron job 'sendverificationemails'
Feb 26 18:38:10 - - - [26/Feb/2025:17:38:10 +0000] "GET / HTTP/1.1" 302 - "-" "Mozilla (CloudronHealth)"
Feb 26 18:38:20 - - - [26/Feb/2025:17:38:20 +0000] "GET / HTTP/1.1" 302 - "-" "Mozilla (CloudronHealth)"
Feb 26 18:38:30 - - - [26/Feb/2025:17:38:30 +0000] "GET / HTTP/1.1" 302 - "-" "Mozilla (CloudronHealth)"
Feb 26 18:38:39 => Run cron job 'sendresetpasswordemails'
F

I will post back if notifications fail to fire on subscriptions (when the service is running "by itself")

Another idea: Maybe these instructions could be added to the Cloudron docs. It wasn't easy to find out how to set custom headers when using a Cloudron hosted nfty-instance (ie with access restrictions and access tokens: https://forum.cloudron.io/post/102335

@joseph said in Notifications not working?:

/app/pkg/cron.sh sendnotifications

When I run this command in terminal, it gives the following output:

root@(redacted):/app/code# /app/pkg/cron.sh sendnotifications
=> Run cron job ''
Could not open input file: /app/code/endpoints/cronjobs/.php

Also, in my log files, I get these error messages every 2nd minute:

Feb 26 11:02:02 => Run cron job ''
Feb 26 11:02:02 Could not open input file: /app/code/endpoints/cronjobs/.php
Feb 26 11:02:10 - - - [26/Feb/2025:10:02:10 +0000] "GET / HTTP/1.1" 302 - "-" "Mozilla (CloudronHealth)"
Feb 26 11:02:14 => Run cron job ''
Feb 26 11:02:14 Could not open input file: /app/code/endpoints/cronjobs/.php

This behaviour is consistent on both my main app installation and my test app installation.

However, if I go to the Wallos app, to the (username)->admin menu, there is an option to run Cronjobs from the GUI of the Wallos app. When I click the "send notifications" button, it sends notifications - both via email and via the ntfy service.

@joseph said in Notifications not working?:

@odie see https://github.com/ellite/Wallos/issues/524 and https://github.com/ellite/Wallos/issues/560 . Maybe something to do with how you have provide the tokens, I am not sure. I haven't read those issues in detail

Thanks for the link. The following header now sends test notifications from Wallos to ntfy ok (issue 524 as you linked above):

{
  "Authorization": "Bearer tk_(removed)",
  "Title": "Subscription Notice",
  "Tags": "repeat"
}

However, Wallos still doesn't send subscription end notifications via email, and probably not via ntfy either (I assume, since the email test worked and my wallos doesn't send email notifications).

@joseph said in Notifications not working?:

@odie said in Notifications not working?:

but I don't receive notifications on my phone.

Wanted to test this but are you referring to some mobile app here? I can't seem to find a mobile app for Wallos .

No, the Phone app I'm referring to is the ntfy app. My ntfy server works ok and sends notifications to my ntfy app on my phone, but Wallos can't seem to send notifications to my ntfy server (and consequently, I don't receive Wallos notifications sent through my nfty server to my phone's ntfy app)

Hello

I set up Wallos to track my subscriptions. For most of my subscriptions, I've clicked "enable notifications for this subscription", and in my settings (username->settings->notifications), I have enabled Email notifications (and when I click "test settings", I get a "success" popup, and I receive an email with "Wallos Notification test" ok).

I've also enabled Ntfy notifications, and even set up ntfy on my Cloudron. When I click "test", I get the same "Success" popup, but I don't receive notifications on my phone.

Maybe I'm doing this wrong? Has anyone else had any success with enabling these notifications? For me, this is a big advantage of Wallos - there are several annual subscriptions I'd love to get notified about. I'd prefer Wallos to work quietly in the background and just notifify me when I need to take action.

Note: I set up a test Wallos installation, and behaviour is the same on that test version. So most likely this is an end user (me) error of some sorts (?).

Any help would be appreciated.

@joseph said in Cannot administer APP Passwords after moving to OIDC integration:

I tried this on a new install and I can't reproduce this. @odie can you please check if you see the same issue on a new install? I think that's one step to understand if we are testing this wrong OR this is some update related issue

I tested several times, and I can't reproduce it either. It just works. On package 5.1.1. No need to install a clean install either.

I have no way to explain this. It just stopped behaving this way. I can even delet the same old APP Password that I previously got a "failed" message on.

You can probably mark this as solved...??

@girish said in Nextcloud fails to provision my users after upgrade to v30.05:

@odie this should be fixed now. Update to 5.1.1 and it should work.

Thanks! Updating now, will report back if there are any issues (updates take some time due to large backups). Edit: Updated to 5.1.1, the fixes are working. Thanks.

@girish said in Cannot administer APP Passwords after moving to OIDC integration:

Is the app password issue in 5.1.0 or 5.0.4 or both ? And to double check the app passwords are inside nextcloud correct ? (because cloudron also has an app password feature)

Yes, the app password issue is in both 5.1.0 and 5.0.4 (Go to Nextcloud -> Profile settings -> Personal settings -> Security and look under "Devices & sessions"). It's impossible to delete old tokens (pre OIDC migration) and impossible to add new (get http error 503 in the logs, like above).

Nextcloud APP passwords are required for clients (mobile and app), plus some external services.

There have been several issues moving to OIDC with Nextcloud, primarily discussed here: https://forum.cloudron.io/topic/13285/nextcloud-fails-to-provision-my-users-after-upgrade-to-v30.05/15

I am currently on package v5.0.4, since the v5.1.0 version seemed to re-introduce the "failed to provision user" error upon login.

In addition to the issues discussed in the above post (which don't seem to be solved in package v5.1.0), Nextcloud cannot make use of APP Passwords after migrating to OIDC. Exisiting App passwords are invalid, and when attempting to set new, I only get HTTP 503 errors in my log:

Feb 17 23:17:27 [IP] - - [17/Feb/2025:22:17:27 +0000] "POST /settings/personal/authtokens HTTP/1.1" 503 2 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:135.0) Gecko/20100101 Firefox/135.0"
Feb 17 23:17:30 [IP] - - [17/Feb/2025:22:17:30 +0000] "POST /settings/personal/authtokens HTTP/1.1" 503 2 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:135.0) Gecko/20100101 Firefox/135.0"

This is related to the OIDC integration. If I log in as admin (the built-in admin account), I can set APP Passwords perfectly.

@girish said in Nextcloud fails to provision my users after upgrade to v30.05:

Sorry hit the weekend, so couldn't spend time on debugging it. But https://git.cloudron.io/packages/nextcloud-app/-/merge_requests/14 should hopefully fix the problem.

Thank you, @girish for debugging and fixing today. Everything was working great.

... until it wasn't. Upon installing tonight's update (version 5.1.0), I get the same error message (Access forbidden: Failed to provision the user) when I try to add new clients. This happens on web and via Nextcloud sync clients. On clients where I managed to log in (after the update you fixed earlier today, but before v5.1.0 (could it be Package v5.0.4, perhaps), your fixes worked. But they seem to have been re-introduced in package v5.1.0.

The behaviour is strange. After updating to v5.1.0, I can still log in and work with files etc. on clients that were logged in before updating to 5.1.0. But after the update, any new client that attempts to connect, get the "Failed to provision the user" error message.

I restored the v5.0.4 backup, and with this version, I can log in with Cloudron. But once I install v5.1.0, the same errors trigger again.

@odie said in Nextcloud fails to provision my users after upgrade to v30.05:

@girish said in Nextcloud fails to provision my users after upgrade to v30.05:

@odie The app won't update automatically since this is pushed a major package release.

Are you able to clone your app and provide us access to the test app instance? Understand that it's probably very technical. We can debug the issue further. Can you write to support@cloudron.io , please?

Apologies for the delay. Things exploded at work. I've cloned the app and sent an e-mail to support.

Hello again

I haven't heard back from support, but I noticed I sent it from the wrong email address (an address unassociated with my Cloudron setup). Should I resend from my Clodron associated email?

Apologies, Friday suddenly became an insane day at work (good stuff, but urgent stuff).

On a side note - on the cloned app instance. I tried the update, and that too fails in the same way (same error message: Failed to provision the user). I know that Cloudron accepts the login, as I get a "new login" email. So it's something happening after the login is accepted by Cloudron.