user_saml icon indicating copy to clipboard operation
user_saml copied to clipboard

Published 20 hours ago verified publisher icon nextcloud

User account is not provisioned - Nextcloud 29 and authentik

Open bastiane273 opened this issue 8 months ago • 4 comments

Steps to reproduce

  1. Fresh Install of Nextcloud AIO v. 9.0.1 (Hub 8 - 29.0.2)
  2. Fresh install of Authentik 2024.6.0
  3. Using this instruction https://blog.cubieserver.de/2022/complete-guide-to-nextcloud-saml-authentication-with-authentik/ (which worked with earlier verison)

Expected behaviour

The Account unknows to nextclozud should be autimagically created :-)

Actual behaviour

Everything seems fine, but after all - Nextcloud will say an your account has not been provisioned.

Server configuration

Operating system: Debian 12 Web server: Apache Database: Postgresql PHP version:

Nextcloud version: (see Nextcloud admin page) Nextcloud AIO 9.0.1 - did made an update yesterday (Hub 8 - 29.0.2) Where did you install Nextcloud from: Docker compose - nextcloud/all-in-one:latest

List of activated apps:

If you have access to your command line run e.g.:
sudo -u www-data php occ app:list
from within your Nextcloud installation folder
  • activity: 2.21.1
  • admin_audit: 1.19.0
  • announcementcenter: 6.8.1
  • calendar: 4.7.6
  • certificate24: 0.3.2
  • circles: 29.0.0-dev
  • cloud_federation_api: 1.12.0
  • comments: 1.19.0
  • contacts: 6.0.0
  • contactsinteraction: 1.10.0
  • dashboard: 7.9.0
  • dav: 1.30.1
  • deck: 1.13.1
  • end_to_end_encryption: 1.15.2
  • external: 5.4.0
  • federatedfilesharing: 1.19.0
  • federation: 1.19.0
  • files: 2.1.0
  • files_accesscontrol: 1.19.1
  • files_antivirus: 5.5.5
  • files_automatedtagging: 1.19.0
  • files_downloadlimit: 2.0.0
  • files_external: 1.21.0
  • files_fulltextsearch: 29.0.0
  • files_pdfviewer: 2.10.0
  • files_reminders: 1.2.0
  • files_sharing: 1.21.0
  • files_trashbin: 1.19.0
  • files_versions: 1.22.0
  • firstrunwizard: 2.18.0
  • forms: 4.2.4
  • fulltextsearch: 29.0.0
  • fulltextsearch_elasticsearch: 29.0.1
  • gestion: 2.5.1
  • groupfolders: 17.0.1
  • issuetemplate: 0.7.0
  • logreader: 2.14.0
  • lookup_server_connector: 1.17.0
  • mail: 3.7.2
  • nextcloud-aio: 0.6.0
  • nextcloud_announcements: 1.18.0
  • notes: 4.10.0
  • notifications: 2.17.0
  • notify_push: 0.6.12
  • oauth2: 1.17.0
  • password_policy: 1.19.0
  • photos: 2.5.0
  • privacy: 1.13.0
  • provisioning_api: 1.19.0
  • recommendations: 2.1.0
  • registration: 2.4.0
  • related_resources: 1.4.0
  • richdocuments: 8.4.3
  • richdocumentscode: 24.4.402
  • secrets: 1.5.4
  • serverinfo: 1.19.0
  • settings: 1.12.0
  • sharebymail: 1.19.0
  • support: 1.12.0
  • survey_client: 1.17.0
  • systemtags: 1.19.0
  • tasks: 0.16.0
  • text: 3.10.0
  • theming: 2.4.0
  • twofactor_backupcodes: 1.18.0
  • twofactor_totp: 11.0.0-dev
  • user_oidc: 5.0.3
  • user_saml: 6.1.3
  • user_status: 1.9.0
  • viewer: 2.3.0
  • weather_status: 1.9.0
  • workflowengine: 2.11.0 Disabled:
  • bruteforcesettings: 2.9.0
  • encryption: 2.17.0
  • suspicious_login: 7.0.0
  • user_ldap: 1.20.0

Nextcloud configuration:

<?php
$CONFIG = array (
  'one-click-instance' => true,
  'one-click-instance.user-limit' => 100,
  'memcache.local' => '\\OC\\Memcache\\APCu',
  'apps_paths' =>
  array (
    0 =>
    array (
      'path' => '/var/www/html/apps',
      'url' => '/apps',
      'writable' => false,
    ),
    1 =>
    array (
      'path' => '/var/www/html/custom_apps',
      'url' => '/custom_apps',
      'writable' => true,
    ),
  ),
  'appsallowlist' => false,
  'check_data_directory_permissions' => false,
  'memcache.distributed' => '\\OC\\Memcache\\Redis',
  'memcache.locking' => '\\OC\\Memcache\\Redis',
  'redis' =>
  array (
    'host' => 'nextcloud-aio-redis',
    'password' => '…',
    'port' => 6379,
  ),
  'overwritehost' => 'nc.imparadies.jetzt',
  'overwriteprotocol' => 'https',
  'passwordsalt' => '…',
  'secret' => '…',
  'trusted_domains' =>
  array (
    0 => 'localhost',
    1 => 'nc.imparadies.jetzt',
  ),
  'datadirectory' => '/mnt/ncdata',
  'dbtype' => 'pgsql',
  'version' => '29.0.2.2',
  'overwrite.cli.url' => 'https://nc.xxx.jetzt/',
  'dbname' => 'nextcloud_database',
  'dbhost' => 'nextcloud-aio-database',
  'dbport' => '',
  'dbtableprefix' => 'oc_',
  'dbuser' => 'oc_nextcloud',
  'dbpassword' => '',
  'installed' => true,
  'instanceid' => '…',
  'maintenance' => false,
  'updatedirectory' => '/nc-updater',
  'loglevel' => '2',
  'app_install_overwrite' =>
  array (
    0 => 'nextcloud-aio',
    1 => 'gestion',
    2 => 'issuetemplate',
  ),
  'log_type' => 'file',
  'logfile' => '/var/www/html/data/nextcloud.log',
  'log_rotate_size' => '10485760',
  'log.condition' =>
  array (
    'apps' =>
    array (
      0 => 'admin_audit',
    ),
  ),
  'preview_max_x' => '2048',
  'preview_max_y' => '2048',
  'jpeg_quality' => '60',
  'enabledPreviewProviders' =>
  array (
    1 => 'OC\\Preview\\Image',
    2 => 'OC\\Preview\\MarkDown',
    3 => 'OC\\Preview\\MP3',
    4 => 'OC\\Preview\\TXT',
    5 => 'OC\\Preview\\OpenDocument',
    6 => 'OC\\Preview\\Movie',
    7 => 'OC\\Preview\\Krita',
    0 => 'OC\\Preview\\Imaginary',
  ),
  'enable_previews' => true,
  'upgrade.disable-web' => true,
  'mail_smtpmode' => 'smtp',
  'trashbin_retention_obligation' => 'auto, 30',
  'versions_retention_obligation' => 'auto, 30',
  'activity_expire_days' => '30',
  'simpleSignUpLink.shown' => false,
  'share_folder' => '/Shared',
  'one-click-instance.link' => 'https://nextcloud.com/all-in-one/',
  'upgrade.cli-upgrade-link' => 'https://github.com/nextcloud/all-in-one/discussions/2726',
  'maintenance_window_start' => 100,
  'allow_local_remote_servers' => true,
  'davstorage.request_timeout' => 3600,
  'htaccess.RewriteBase' => '/',
  'dbpersistent' => false,
  'auth.bruteforce.protection.enabled' => true,

Client configuration

Browser: Any Browser

Operating system: Any OS / Windows 10-11 / Zorin OS / Ubuntu / Debian 12

Logs

Nextcloud log (data/owncloud.log)

Log of container bextcloud-aio-database hats some info:
5.152 UTC [11706] ERROR:  duplicate key value violates unique constraint "oc_user_saml_configurations_pkey"
2024-06-27 15:45:15.152 UTC [11706] DETAIL:  Key (id)=(1) already exists.
2024-06-27 15:45:15.152 UTC [11706] STATEMENT:  INSERT INTO "oc_user_saml_configurations" ("id", "configuration", "name") VALUES($1, $2, $3)
2024-06-27 15:45:25.823 UTC [11718] ERROR:  duplicate key value violates unique constraint "oc_user_saml_configurations_pkey"
2024-06-27 15:45:25.823 UTC [11718] DETAIL:  Key (id)=(1) already exists.
2024-06-27 15:45:25.823 UTC [11718] STATEMENT:  INSERT INTO "oc_user_saml_configurations" ("id", "configuration", "name") VALUES($1, $2, $3)
2024-06-27 15:46:29.420 UTC [11744] ERROR:  duplicate key value violates unique constraint "oc_user_saml_configurations_pkey"
2024-06-27 15:46:29.420 UTC [11744] DETAIL:  Key (id)=(1) already exists.
2024-06-27 15:46:29.420 UTC [11744] STATEMENT:  INSERT INTO "oc_user_saml_configurations" ("id", "configuration", "name") VALUES($1, $2, $3)

Maybe configuration of SSO_SAML-App has not written the configuration in full.

Greetings

bastiane273 avatar Jun 27 '24 16:06 bastiane273