Closed Igortorrente closed 2 years ago
I have the same issue with a dockerless (standalone) CODE server. Nextcloud integration fails after the latest CODE server update. I still get the green tick in the nextcloud settings but documents fail to load.
@timparker14 For curiosity, which Nextcloud/Nextcloud Office versions are you using?
Nextcloud 23.0.5 Nextcloud Office 5.0.5
Sent from my iPhone
On 1 Jun 2022, at 22:29, Igortorrente @.***> wrote:
@timparker14 For curiosity, which Nextcloud/Nextcloud Office versions are you using?
— Reply to this email directly, view it on GitHub, or unsubscribe. You are receiving this because you were mentioned.
ping @Ezinnem or @thebearon
Nextcloud 23.0.5 Nextcloud Office 5.0.5 … Sent from my iPhone On 1 Jun 2022, at 22:29, Igortorrente @.***> wrote: @timparker14 For curiosity, which Nextcloud/Nextcloud Office versions are you using? — Reply to this email directly, view it on GitHub, or unsubscribe. You are receiving this because you were mentioned.
hello, @timparker14 have you tried to update Nextcloud Office to 6.1.0? I just finished setting up Collabora now and it worked fine.
Hi,
Same problem here: Nextcloud Office 5.0.5 Nextcloud 23.0.5
Documents are not opened since collabora/code:21.11.5.0.1
.
The previous version docker pull collabora/code:21.11.4.2.1
works just fine.
Same configuration (container environment variables taken from the output of docker inspect
):
"Env": [
"aliasgroup1=https://nextcloud\\.mydomain\\.de:443",
"server_name=collabora.mydomain.de",
"extra_params=--o:ssl.enable=false --o:ssl.termination=true --o:net.post_allow.host[0]=::ffff:172.18.0.1 -o:storage.wopi.host[0]=nextcloud.mydomain.de",
"username=myadminuser",
"password=myadminpassword",
"dictionaries=de_DE en_US",
"PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin",
"LC_CTYPE=C.UTF-8"
],
With Collabora CODE version 21.11.5.0.1, I get the following log messages, when a document is opened in Nextcloud:
Ready to accept connections on port 9980.
wsd-00001-00001 2022-06-05 08:49:23.846105 +0000 [ coolwsd ] WRN Waking up dead poll thread [update], started: false, finished: false| net/Socket.hpp:722
wsd-00001-00042 2022-06-05 08:50:00.026866 +0000 [ websrv_poll ] WRN client - server version mismatch, disabling browser cache. Expected: 338d741| wsd/FileServer.cpp:510
wsd-00001-00046 2022-06-05 08:50:00.254008 +0000 [ docbroker_001 ] ERR No acceptable WOPI hosts found matching the target host [nextcloud.mydomain.de] in config.| wsd/Storage.cpp:259
wsd-00001-00046 2022-06-05 08:50:00.254256 +0000 [ docbroker_001 ] ERR loading document exception: No acceptable WOPI hosts found matching the target host [nextcloud.mydomain.de] in config.| wsd/DocumentBroker.cpp:2216
wsd-00001-00046 2022-06-05 08:50:00.254310 +0000 [ docbroker_001 ] ERR Failed to add session to [https://nextcloud.mydomain.de:443/index.php/apps/richdocuments/wopi/files/4195176_ocobe9ubr97l] with URI [https://nextcloud.mydomain.de/index.php/apps/richdocuments/wopi/files/4195176_ocobe9ubr97l?access_token=asdf&access_token_ttl=0]: No acceptable WOPI hosts found matching the target host [nextcloud.mydomain.de] in config.| wsd/DocumentBroker.cpp:2178
wsd-00001-00046 2022-06-05 08:50:00.254365 +0000 [ docbroker_001 ] ERR Unauthorized Request while starting session on https://nextcloud.mydomain.de:443/index.php/apps/richdocuments/wopi/files/4195176_ocobe9ubr97l for socket #29. Terminating connection. Error: No acceptable WOPI hosts found matching the target host [nextcloud.mydomain.de] in config.| wsd/COOLWSD.cpp:4397
wsd-00001-00046 2022-06-05 08:50:00.254617 +0000 [ docbroker_001 ] WRN Ignoring attempted read from 29| net/Socket.hpp:1102
wsd-00001-00046 2022-06-05 08:50:00.254680 +0000 [ docbroker_001 ] ERR #29: Socket write returned -1 (EPIPE: Broken pipe)| net/Socket.hpp:1418
wsd-00001-00046 2022-06-05 08:50:00.254722 +0000 [ docbroker_001 ] ERR Invalid or unknown session [009] to remove.| wsd/DocumentBroker.cpp:2261
wsd-00001-00042 2022-06-05 08:50:00.850348 +0000 [ websrv_poll ] WRN DocBroker with docKey [https://nextcloud.mydomain.de:443/index.php/apps/richdocuments/wopi/files/4195176_ocobe9ubr97l] is unloading. Rejecting client request to load.| wsd/COOLWSD.cpp:2994
wsd-00001-00042 2022-06-05 08:50:00.850673 +0000 [ websrv_poll ] ERR Error while handling Client WS Request: Failed to create DocBroker with docKey [https://nextcloud.mydomain.de:443/index.php/apps/richdocuments/wopi/files/4195176_ocobe9ubr97l].| wsd/COOLWSD.cpp:4437
wsd-00001-00042 2022-06-05 08:50:00.851212 +0000 [ websrv_poll ] ERR #33: Socket write returned -1 (EPIPE: Broken pipe)| net/Socket.hpp:1418
wsd-00001-00042 2022-06-05 08:50:00.851647 +0000 [ websrv_poll ] ERR #33: Socket write returned -1 (EPIPE: Broken pipe)| net/Socket.hpp:1418
wsd-00001-00042 2022-06-05 08:50:00.851709 +0000 [ websrv_poll ] WRN #33 is shutting down but 64 bytes couldn't be flushed and still remain in the output buffer.| net/WebSocketHandler.hpp:795
wsd-00001-00042 2022-06-05 08:50:00.851789 +0000 [ websrv_poll ] ERR #33: attempted to remove: 1009 which is > size: 0 clamped to 0| net/Socket.hpp:1224
wsd-00001-00042 2022-06-05 08:50:00.851958 +0000 [ websrv_poll ] WRN Ignoring attempted read from 33| net/Socket.hpp:1102
wsd-00001-00042 2022-06-05 08:50:00.852579 +0000 [ websrv_poll ] ERR #33: Socket write returned -1 (EPIPE: Broken pipe)| net/Socket.hpp:1418
wsd-00001-00042 2022-06-05 08:50:01.206269 +0000 [ websrv_poll ] WRN DocBroker with docKey [https://nextcloud.mydomain.de:443/index.php/apps/richdocuments/wopi/files/4195176_ocobe9ubr97l] is unloading. Rejecting client request to load.| wsd/COOLWSD.cpp:2994
wsd-00001-00042 2022-06-05 08:50:01.206585 +0000 [ websrv_poll ] ERR Error while handling Client WS Request: Failed to create DocBroker with docKey [https://nextcloud.mydomain.de:443/index.php/apps/richdocuments/wopi/files/4195176_ocobe9ubr97l].| wsd/COOLWSD.cpp:4437
wsd-00001-00042 2022-06-05 08:50:01.206658 +0000 [ websrv_poll ] ERR #33: Socket write returned -1 (EPIPE: Broken pipe)| net/Socket.hpp:1418
wsd-00001-00042 2022-06-05 08:50:01.206724 +0000 [ websrv_poll ] ERR #33: Socket write returned -1 (EPIPE: Broken pipe)| net/Socket.hpp:1418
wsd-00001-00042 2022-06-05 08:50:01.206784 +0000 [ websrv_poll ] WRN #33 is shutting down but 64 bytes couldn't be flushed and still remain in the output buffer.| net/WebSocketHandler.hpp:795
wsd-00001-00042 2022-06-05 08:50:01.206854 +0000 [ websrv_poll ] ERR #33: attempted to remove: 1009 which is > size: 0 clamped to 0| net/Socket.hpp:1224
wsd-00001-00042 2022-06-05 08:50:01.206929 +0000 [ websrv_poll ] WRN Ignoring attempted read from 33| net/Socket.hpp:1102
wsd-00001-00042 2022-06-05 08:50:01.206995 +0000 [ websrv_poll ] ERR #33: Socket write returned -1 (EPIPE: Broken pipe)| net/Socket.hpp:1418
wsd-00001-00037 2022-06-05 08:50:02.255322 +0000 [ prisoner_poll ] WRN Prisoner connection disconnected but without valid socket.| wsd/COOLWSD.cpp:3079
wsd-00001-00037 2022-06-05 08:50:02.255460 +0000 [ prisoner_poll ] WRN Prisoner connection disconnected but without valid socket.| wsd/COOLWSD.cpp:3079
sh: 1: /usr/bin/coolmount: Operation not permitted
frk-00038-00038 2022-06-05 08:50:03.238616 +0000 [ forkit ] ERR Failed to unmount [/opt/cool/child-roots/fE4bW8aNgqO9yKAP/tmp]| common/JailUtil.cpp:70
sh: 1: /usr/bin/coolmount: Operation not permitted
frk-00038-00038 2022-06-05 08:50:03.264552 +0000 [ forkit ] ERR Failed to unmount [/opt/cool/child-roots/fE4bW8aNgqO9yKAP/lo]| common/JailUtil.cpp:70
sh: 1: /usr/bin/coolmount: Operation not permitted
frk-00038-00038 2022-06-05 08:50:03.286751 +0000 [ forkit ] ERR Failed to unmount [/opt/cool/child-roots/fE4bW8aNgqO9yKAP]| common/JailUtil.cpp:70
wsd-00001-00054 2022-06-05 08:50:03.300041 +0000 [ docbroker_002 ] ERR No acceptable WOPI hosts found matching the target host [nextcloud.mydomain.de] in config.| wsd/Storage.cpp:259
wsd-00001-00054 2022-06-05 08:50:03.300272 +0000 [ docbroker_002 ] ERR loading document exception: No acceptable WOPI hosts found matching the target host [nextcloud.mydomain.de] in config.| wsd/DocumentBroker.cpp:2216
wsd-00001-00054 2022-06-05 08:50:03.300342 +0000 [ docbroker_002 ] ERR Failed to add session to [https://nextcloud.mydomain.de:443/index.php/apps/richdocuments/wopi/files/4195176_ocobe9ubr97l] with URI [https://nextcloud.mydomain.de/index.php/apps/richdocuments/wopi/files/4195176_ocobe9ubr97l?access_token=asdf&access_token_ttl=0&permission=edit]: No acceptable WOPI hosts found matching the target host [nextcloud.mydomain.de] in config.| wsd/DocumentBroker.cpp:2178
wsd-00001-00054 2022-06-05 08:50:03.300418 +0000 [ docbroker_002 ] ERR Unauthorized Request while starting session on https://nextcloud.mydomain.de:443/index.php/apps/richdocuments/wopi/files/4195176_ocobe9ubr97l for socket #21. Terminating connection. Error: No acceptable WOPI hosts found matching the target host [nextcloud.mydomain.de] in config.| wsd/COOLWSD.cpp:4397
wsd-00001-00054 2022-06-05 08:50:03.300681 +0000 [ docbroker_002 ] WRN Ignoring attempted read from 21| net/Socket.hpp:1102
wsd-00001-00054 2022-06-05 08:50:03.300748 +0000 [ docbroker_002 ] ERR #21: Socket write returned -1 (EPIPE: Broken pipe)| net/Socket.hpp:1418
wsd-00001-00054 2022-06-05 08:50:03.300806 +0000 [ docbroker_002 ] ERR Invalid or unknown session [018] to remove.| wsd/DocumentBroker.cpp:2261
wsd-00001-00037 2022-06-05 08:50:05.301194 +0000 [ prisoner_poll ] WRN Prisoner connection disconnected but without valid socket.| wsd/COOLWSD.cpp:3079
wsd-00001-00037 2022-06-05 08:50:05.301313 +0000 [ prisoner_poll ] WRN Prisoner connection disconnected but without valid socket.| wsd/COOLWSD.cpp:3079
sh: 1: /usr/bin/coolmount: Operation not permitted
frk-00038-00038 2022-06-05 08:50:05.703945 +0000 [ forkit ] ERR Failed to unmount [/opt/cool/child-roots/a5mH47GZxNgo45Nn/tmp]| common/JailUtil.cpp:70
sh: 1: /usr/bin/coolmount: Operation not permitted
frk-00038-00038 2022-06-05 08:50:05.724670 +0000 [ forkit ] ERR Failed to unmount [/opt/cool/child-roots/a5mH47GZxNgo45Nn/lo]| common/JailUtil.cpp:70
sh: 1: /usr/bin/coolmount: Operation not permitted
frk-00038-00038 2022-06-05 08:50:05.742723 +0000 [ forkit ] ERR Failed to unmount [/opt/cool/child-roots/a5mH47GZxNgo45Nn]| common/JailUtil.cpp:70
I noticed the error message No acceptable WOPI hosts found matching the target host
.
But, I only changed the Collabora CODE version, not the configuration.
Maybe this helps.
I've built a new cloud server as I have seen previous configurations can cause issues. Using Nextcloud 24.0.1 and Nextcloud Office 6.1.0. Still get a green tick in the settings docs still fail to load.
שיש לי הרגשה על מישהו/ או משהו זה כמו בסרטים הרוצח זה הדמות שאתה לא מצפה לה .
אלמקייס חיים
בתאריך יום ב׳, 6 ביוני 2022, 12:48, מאת timparker14 < @.***>:
I've built a new cloud server as I have seen previous configurations can cause issues. Using Nextcloud 24.0.1 and Nextcloud Office 6.1.0. Still get a green tick in the settings docs still fail to load.
— Reply to this email directly, view it on GitHub https://github.com/CollaboraOnline/online/issues/4828#issuecomment-1147264863, or unsubscribe https://github.com/notifications/unsubscribe-auth/AXOZ5UBJQK2LEGIVCNPDJXDVNXCM7ANCNFSM5XFRT6YQ . You are receiving this because you are subscribed to this thread.Message ID: @.***>
-o:storage.wopi.host[0]=nextcloud.mydomain.de"
@shoelzle can you try removing this parameter ?
@Rash419 That worked for me. I'm not using docker but edited the XML file and all is good. Thank you
-o:storage.wopi.host[0]=nextcloud.mydomain.de"
@shoelzle can you try removing this parameter ?
Removing the parameter --o:storage.wopi.host[0]=nextcloud.mydomain.de
works for me.
I guess I picked up this configuration parameter somewhere without really needing it. Btw, for anyone curious, the parameter is kind of mentioned in the Backend storage configurations: ".. The administrator has to list the host names and/or IP addresses of these trusted WOPI hosts in the storage.wopi block. .."
Thanks for helping @Rash419 !
@Igortorrente, unfortunately, I guess this doesn't solve your original issue.
But I noticed that your configuration contains the parameter "aliasgroup1=https://\(collaboraonline\.\)*example.com:443"
. In my configuration, this is the URL of Nextcloud, not the URL of Collabara CODE.
Also, my configuration is missing only contains --cap-add MKNOD
, so I guess the other parameters (--cap-add SYS_CHROOT --cap-add FOWNER --cap-add CHOWN --cap-add SYS_ADMIN
) are not necessary.
-o:storage.wopi.host[0]=nextcloud.mydomain.de"
@shoelzle can you try removing this parameter ?
Removing the parameter
--o:storage.wopi.host[0]=nextcloud.mydomain.de
works for me. I guess I picked up this configuration parameter somewhere without really needing it. Btw, for anyone curious, the parameter is kind of mentioned in the Backend storage configurations: ".. The administrator has to list the host names and/or IP addresses of these trusted WOPI hosts in the storage.wopi block. .."Thanks for helping @Rash419 !
@Igortorrente, unfortunately, I guess this doesn't solve your original issue. But I noticed that your configuration contains the parameter
"aliasgroup1=https://\(collaboraonline\.\)*example.com:443"
. In my configuration, this is the URL of Nextcloud, not the URL of Collabara CODE.Also, my configuration is missing only contains
--cap-add MKNOD
, so I guess the other parameters (--cap-add SYS_CHROOT --cap-add FOWNER --cap-add CHOWN --cap-add SYS_ADMIN
) are not necessary.
@shoelzle thanks I will update the documentation , thanks for reporting
@Rash419 ,
@Igortorrente already shared logs:
As I first read this issue, I overlooked that collapsed logs, maybe you too?
@Rash419 , @Igortorrente already shared logs:
As I first read this issue, I overlooked that collapsed looks, maybe you too?
yup thanks : )
Hey,
same problem her. This was my first try to integrate an office into Nextcloud.
Setup:
Nextcloud reachable via https://nc.mydomain.de Collabora reachable via https://office.mydomain.de
Nginx conf for Nextcloud:
server {
listen 443 http2 ssl;
server_name nc.mydomain.de;
include /etc/nginx/conf.d/ssl.conf;
client_max_body_size 0;
proxy_read_timeout 300;
proxy_connect_timeout 300;
proxy_send_timeout 300;
location / {
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_pass http://192.162.172.31:8080;
}
location ^~ /.well-known {
location = /.well-known/carddav { return 301 /remote.php/dav/; }
location = /.well-known/caldav { return 301 /remote.php/dav/; }
# Anything else is dynamically handled by Nextcloud
location ^~ /.well-known { return 301 /index.php$uri; }
try_files $uri $uri/ =404;
}
}
Nginx conf for Collabora:
server {
listen 443 http2 ssl;
server_name office.mydomain.de;
include /etc/nginx/conf.d/ssl.conf;
client_max_body_size 0;
proxy_read_timeout 300;
proxy_connect_timeout 300;
proxy_send_timeout 300;
location ^~ / {
proxy_pass http://192.162.172.100:9980;
proxy_set_header Host $http_host;
}
# static files
location ^~ /browser {
proxy_pass http://192.162.172.100:9980;
proxy_set_header Host $http_host;
}
# WOPI discovery URL
location ^~ /hosting/discovery {
proxy_pass http://192.162.172.100:9980;
proxy_set_header Host $http_host;
}
# Capabilities
location ^~ /hosting/capabilities {
proxy_pass http://192.162.172.100:9980;
proxy_set_header Host $http_host;
}
# main websocket
location ~ ^/cool/(.*)/ws$ {
proxy_pass http://192.162.172.100:9980;
proxy_set_header Upgrade $http_upgrade;
proxy_set_header Connection "Upgrade";
proxy_set_header Host $http_host;
proxy_read_timeout 36000s;
}
# download, presentation and image upload
location ~ ^/(c|l)ool {
proxy_pass http://192.162.172.100:9980;
proxy_set_header Host $http_host;
}
# Admin Console websocket
location ^~ /cool/adminws {
proxy_pass http://192.162.172.100:9980;
proxy_set_header Upgrade $http_upgrade;
proxy_set_header Connection "Upgrade";
proxy_set_header Host $http_host;
proxy_read_timeout 36000s;
}
}
Things I've tried:
Right now I'm still trying to get the Docker version running on the RPi4. I manually edited the collwsd.xml file because it seems some settings are ignored when I run it via docker compose. (Disabled SSL, enabled termination)
I can access the discovery and capabilities URLs, the admin UI and Nextcloud shows that the server works. Running a curl https://nc.mydomain.de
from within the collabora/code Docker container works, too.
No errors in Nginx or Nextcloud logs when trying to open a document, but in the collabora/code it shows:
collabora | wsd-00001-00034 2022-06-06 13:48:49.862982 +0000 [ websrv_poll ] ERR #30 Exception while processing incoming request: [GET /cool/https%3A%2F%2Fnc.mydomain.de%2Findex.php%2Fapps%2Frichdocuments%2Fwopi%2Ffiles%2F11_oc9gakpatouy%3Faccess_token%3DrInxBrX9eXV3...]: Invalid or unknown request.| wsd/COOLWSD.cpp:3539https%3A%2F%2Fnc.mydomain.de%2Findex.php%2Fapps%2Frichdocuments%2Fwopi%2Ffiles%2F11_oc9gakpatouy&compat=/ws HTTP/1.0
collabora | wsd-00001-00034 2022-06-06 13:48:50.160054 +0000 [ websrv_poll ] ERR #30 Exception while processing incoming request: [GET /cool/https%3A%2F%2Fnc.mydomain.de%2Findex.php%2Fapps%2Frichdocuments%2Fwopi%2Ffiles%2F11_oc9gakpatouy%3Faccess_token%3DrInxBrX9eXV3...]: Invalid or unknown request.| wsd/COOLWSD.cpp:3539n%3Dedit/ws?WOPISrc=https%3A%2F%2Fnc.mydomain.de%2Findex.php%2Fapps%2Frichdocuments%2Fwopi%2Ffiles%2F11_oc9gakpatouy&compat=/ws HTTP/1.0
collabora | wsd-00001-00034 2022-06-06 13:48:50.616088 +0000 [ websrv_poll ] ERR #30 Exception while processing incoming request: [GET /cool/https%3A%2F%2Fnc.mydomain.de%2Findex.php%2Fapps%2Frichdocuments%2Fwopi%2Ffiles%2F11_oc9gakpatouy%3Faccess_token%3DrInxBrX9eXV3...]: Invalid or unknown request.| wsd/COOLWSD.cpp:3539n%3Dedit/ws?WOPISrc=https%3A%2F%2Fnc.mydomain.de%2Findex.php%2Fapps%2Frichdocuments%2Fwopi%2Ffiles%2F11_oc9gakpatouy&compat=/ws HTTP/1.0
Edit: Forgot to mention that the quick tryout from https://www.collaboraoffice.com/code/quick-tryout-nextcloud-docker/ does work.
Hey,
same problem her. This was my first try to integrate an office into Nextcloud.
Setup:
- Nextcloud 24.0.1 in Docker on Synology Diskstation with DSM 7
- Nginx 1.21.3 reverse proxy in Docker on RPi4 with Debian 10
- Nextcloud Office 6.1.0
- second RPi4 running collabora/code 21.11.5.0.1 (and 21.11.4.2.1 like mentioned here) in Docker with Debian 11
Nextcloud reachable via https://nc.mydomain.de Collabora reachable via https://office.mydomain.de
Nginx conf for Nextcloud:
server { listen 443 http2 ssl; server_name nc.mydomain.de; include /etc/nginx/conf.d/ssl.conf; client_max_body_size 0; proxy_read_timeout 300; proxy_connect_timeout 300; proxy_send_timeout 300; location / { proxy_set_header Host $host; proxy_set_header X-Real-IP $remote_addr; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; proxy_pass http://192.162.172.31:8080; } location ^~ /.well-known { location = /.well-known/carddav { return 301 /remote.php/dav/; } location = /.well-known/caldav { return 301 /remote.php/dav/; } # Anything else is dynamically handled by Nextcloud location ^~ /.well-known { return 301 /index.php$uri; } try_files $uri $uri/ =404; } }
Nginx conf for Collabora:
server { listen 443 http2 ssl; server_name office.mydomain.de; include /etc/nginx/conf.d/ssl.conf; client_max_body_size 0; proxy_read_timeout 300; proxy_connect_timeout 300; proxy_send_timeout 300; location ^~ / { proxy_pass http://192.162.172.100:9980; proxy_set_header Host $http_host; } # static files location ^~ /browser { proxy_pass http://192.162.172.100:9980; proxy_set_header Host $http_host; } # WOPI discovery URL location ^~ /hosting/discovery { proxy_pass http://192.162.172.100:9980; proxy_set_header Host $http_host; } # Capabilities location ^~ /hosting/capabilities { proxy_pass http://192.162.172.100:9980; proxy_set_header Host $http_host; } # main websocket location ~ ^/cool/(.*)/ws$ { proxy_pass http://192.162.172.100:9980; proxy_set_header Upgrade $http_upgrade; proxy_set_header Connection "Upgrade"; proxy_set_header Host $http_host; proxy_read_timeout 36000s; } # download, presentation and image upload location ~ ^/(c|l)ool { proxy_pass http://192.162.172.100:9980; proxy_set_header Host $http_host; } # Admin Console websocket location ^~ /cool/adminws { proxy_pass http://192.162.172.100:9980; proxy_set_header Upgrade $http_upgrade; proxy_set_header Connection "Upgrade"; proxy_set_header Host $http_host; proxy_read_timeout 36000s; } }
Things I've tried:
- built-in code version -> failed to load Nextcloud Office - try again later...
- collabora/code Docker image on Diskstation -> container keeps crashing
- collabora/code Docker image on RPi4 -> failed to load Nextcloud Office - try again later...
- demo-server -> working
Right now I'm still trying to get the Docker version running on the RPi4. I manually edited the collwsd.xml file because it seems some settings are ignored when I run it via docker compose. (Disabled SSL, enabled termination) I can access the discovery and capabilities URLs, the admin UI and Nextcloud shows that the server works. Running a
curl https://nc.mydomain.de
from within the collabora/code Docker container works, too. No errors in Nginx or Nextcloud logs when trying to open a document, but in the collabora/code it shows:collabora | wsd-00001-00034 2022-06-06 13:48:49.862982 +0000 [ websrv_poll ] ERR #30 Exception while processing incoming request: [GET /cool/https%3A%2F%2Fnc.mydomain.de%2Findex.php%2Fapps%2Frichdocuments%2Fwopi%2Ffiles%2F11_oc9gakpatouy%3Faccess_token%3DrInxBrX9eXV3...]: Invalid or unknown request.| wsd/COOLWSD.cpp:3539https%3A%2F%2Fnc.mydomain.de%2Findex.php%2Fapps%2Frichdocuments%2Fwopi%2Ffiles%2F11_oc9gakpatouy&compat=/ws HTTP/1.0 collabora | wsd-00001-00034 2022-06-06 13:48:50.160054 +0000 [ websrv_poll ] ERR #30 Exception while processing incoming request: [GET /cool/https%3A%2F%2Fnc.mydomain.de%2Findex.php%2Fapps%2Frichdocuments%2Fwopi%2Ffiles%2F11_oc9gakpatouy%3Faccess_token%3DrInxBrX9eXV3...]: Invalid or unknown request.| wsd/COOLWSD.cpp:3539n%3Dedit/ws?WOPISrc=https%3A%2F%2Fnc.mydomain.de%2Findex.php%2Fapps%2Frichdocuments%2Fwopi%2Ffiles%2F11_oc9gakpatouy&compat=/ws HTTP/1.0 collabora | wsd-00001-00034 2022-06-06 13:48:50.616088 +0000 [ websrv_poll ] ERR #30 Exception while processing incoming request: [GET /cool/https%3A%2F%2Fnc.mydomain.de%2Findex.php%2Fapps%2Frichdocuments%2Fwopi%2Ffiles%2F11_oc9gakpatouy%3Faccess_token%3DrInxBrX9eXV3...]: Invalid or unknown request.| wsd/COOLWSD.cpp:3539n%3Dedit/ws?WOPISrc=https%3A%2F%2Fnc.mydomain.de%2Findex.php%2Fapps%2Frichdocuments%2Fwopi%2Ffiles%2F11_oc9gakpatouy&compat=/ws HTTP/1.0
Edit: Forgot to mention that the quick tryout from https://www.collaboraoffice.com/code/quick-tryout-nextcloud-docker/ does work.
@kinslayer1982 can you check for error like ERR No acceptable WOPI hosts found matching the target host in config.
? If there is mentioned error then can you paste wopi settings in cooolwsd.xml
@Rash419 That worked for me. I'm not using docker but edited the XML file and all is good. Thank you
This also works on my old Nextcloud Server after restarting the codeserver
@kinslayer1982 can you check for error like
ERR No acceptable WOPI hosts found matching the target host in config.
? If there is mentioned error then can you paste wopi settings in cooolwsd.xml
@Rash419 There's no such error. After trying to open different documents multiple times I see
collabora | sh: 1: /usr/bin/coolmount: Operation not permitted
collabora | frk-00030-00030 2022-06-07 15:44:28.010462 +0000 [ forkit ] ERR Failed to unmount [/opt/cool/child-roots/a2ZbFgKXkRwyyTwp/tmp]| common/JailUtil.cpp:70
collabora | sh: 1: /usr/bin/coolmount: Operation not permitted
collabora | frk-00030-00030 2022-06-07 15:44:28.047137 +0000 [ forkit ] ERR Failed to unmount [/opt/cool/child-roots/a2ZbFgKXkRwyyTwp/lo]| common/JailUtil.cpp:70
collabora | sh: 1: /usr/bin/coolmount: Operation not permitted
collabora | frk-00030-00030 2022-06-07 15:44:28.091501 +0000 [ forkit ] ERR Failed to unmount [/opt/cool/child-roots/a2ZbFgKXkRwyyTwp]| common/JailUtil.cpp:70
collabora | wsd-00001-00029 2022-06-07 15:44:30.239514 +0000 [ prisoner_poll ] WRN Prisoner connection disconnected but without valid socket.| wsd/COOLWSD.cpp:3079
Aside from that only the errors from my previous post, nothing more.
Edit: Tried without setting a WOPI host and using the setting 'first' in storage.wopi.host with same result.
@kinslayer1982, I guess the culprit lies within the nginx configuration, because the incoming request to the Collabora container doesn't look healthy to me:
GET /cool/https%3A%2F%2Fnc.mydomain.de%2Findex.php%2Fapps%2Frichdocuments%2Fwopi%2Ffiles%2F11_oc9gakpatouy%3Faccess_token%3DrInxBrX9eXV3...
So I compared your nginx configuration with the configuration from the Collabora docs.
There is one difference: Could you try your nginx configuration without the following part of the Collabora part of the nginx configuration:
location ^~ / {
proxy_pass http://192.162.172.100:9980;
proxy_set_header Host $http_host;
}
@kinslayer1982, I guess the culprit lies within the nginx configuration, because the incoming request to the Collabora container doesn't look healthy to me:
GET /cool/https%3A%2F%2Fnc.mydomain.de%2Findex.php%2Fapps%2Frichdocuments%2Fwopi%2Ffiles%2F11_oc9gakpatouy%3Faccess_token%3DrInxBrX9eXV3...
So I compared your nginx configuration with the configuration from the Collabora docs.
There is one difference: Could you try your nginx configuration without the following part of the Collabora part of the nginx configuration:
location ^~ / { proxy_pass http://192.162.172.100:9980; proxy_set_header Host $http_host; }
This part wan't there in the beginning, I added it at some point because trying to open https://office.mydomain.de resulted in "404" instead of the "200 ok" message when testing if the code server is reachable. (My Nginx is configured to block access to unconfigured URLs)
But I'll try again without and report back as soon as I can.
-o:storage.wopi.host[0]=nextcloud.mydomain.de"
@shoelzle can you try removing this parameter ?
Removing the parameter
--o:storage.wopi.host[0]=nextcloud.mydomain.de
works for me. I guess I picked up this configuration parameter somewhere without really needing it. Btw, for anyone curious, the parameter is kind of mentioned in the Backend storage configurations: ".. The administrator has to list the host names and/or IP addresses of these trusted WOPI hosts in the storage.wopi block. .."Thanks for helping @Rash419 !
@Igortorrente, unfortunately, I guess this doesn't solve your original issue. But I noticed that your configuration contains the parameter
"aliasgroup1=https://\(collaboraonline\.\)*example.com:443"
. In my configuration, this is the URL of Nextcloud, not the URL of Collabara CODE.Also, my configuration is missing only contains
--cap-add MKNOD
, so I guess the other parameters (--cap-add SYS_CHROOT --cap-add FOWNER --cap-add CHOWN --cap-add SYS_ADMIN
) are not necessary.
Unfortunately no luck so far
podman run --rm -it --cap-add SYS_CHROOT --cap-add MKNOD --cap-add FOWNER --cap-add CHOWN --cap-add SYS_ADMIN -e username=collabora-admin -e password=collabora-password -e "aliasgroup1=https://example.com:443" -e server_name=collaboraonline.example.com -p 10.0.0.1:9980:9980 --name collabora-online collabora/code:21.11.5.0.1
podman run --rm -it --cap-add MKNOD -e username=collabora-admin -e password=collabora-password -e "aliasgroup1=https://example.com:443" -e server_name=collaboraonline.example.com -p 10.0.0.1:9980:9980 --name collabora-online2 collabora/code:21.11.5.0.1
@shoelzle That really fixed it! Strange, it didn't work before I added the location / part, but after removing it, it does...
Only one more thing. Should I worry about any of these:
collabora | wsd-00001-00043 2022-06-08 16:03:47.642380 +0000 [ docbroker_001 ] WRN Waking up dead poll thread [HttpSynReqPoll], started: false, finished: false| net/Socket.hpp:722
collabora | wsd-00001-00043 2022-06-08 16:03:51.858906 +0000 [ docbroker_001 ] WRN Waking up dead poll thread [HttpSynReqPoll], started: false, finished: false| net/Socket.hpp:722
collabora | wsd-00001-00001 2022-06-08 16:04:36.217104 +0000 [ coolwsd ] WRN Waking up dead poll thread [update], started: false, finished: false| net/Socket.hpp:722
collabora | wsd-00001-00043 2022-06-08 16:05:02.910563 +0000 [ docbroker_001 ] WRN Ignoring attempted read from 30| net/Socket.hpp:1102
collabora | wsd-00001-00034 2022-06-08 16:05:02.947615 +0000 [ prisoner_poll ] WRN Prisoner connection disconnected but without valid socket.| wsd/COOLWSD.cpp:3079
collabora | sh: 1: /usr/bin/coolmount: Operation not permitted
collabora | frk-00035-00035 2022-06-08 16:05:03.817927 +0000 [ forkit ] ERR Failed to unmount [/opt/cool/child-roots/LFVlSjpuyRB9mFFz/tmp]| common/JailUtil.cpp:70
collabora | sh: 1: /usr/bin/coolmount: Operation not permitted
collabora | frk-00035-00035 2022-06-08 16:05:03.854671 +0000 [ forkit ] ERR Failed to unmount [/opt/cool/child-roots/LFVlSjpuyRB9mFFz/lo]| common/JailUtil.cpp:70
collabora | sh: 1: /usr/bin/coolmount: Operation not permitted
collabora | frk-00035-00035 2022-06-08 16:05:03.891174 +0000 [ forkit ] ERR Failed to unmount [/opt/cool/child-roots/LFVlSjpuyRB9mFFz]| common/JailUtil.cpp:70
collabora | wsd-00001-00061 2022-06-08 16:10:44.536186 +0000 [ docbroker_002 ] WRN Waking up dead poll thread [HttpSynReqPoll], started: false, finished: false| net/Socket.hpp:722
collabora | wsd-00001-00061 2022-06-08 16:10:48.732485 +0000 [ docbroker_002 ] WRN Waking up dead poll thread [HttpSynReqPoll], started: false, finished: false| net/Socket.hpp:722
collabora | wsd-00001-00061 2022-06-08 16:10:52.271611 +0000 [ docbroker_002 ] WRN Dropping empty tile response: tile: nviewid=0 part=0 width=256 height=256 tileposx=0 tileposy=7680 tilewidth=3840 tileheight=3840 oldwid=10 wid=10 ver=62| wsd/DocumentBroker.cpp:2978
collabora | wsd-00001-00061 2022-06-08 16:10:57.785654 +0000 [ docbroker_002 ] WRN Ignoring attempted read from 28| net/Socket.hpp:1102
collabora | sh: 1: /usr/bin/coolmount: Operation not permitted
collabora | frk-00035-00035 2022-06-08 16:10:58.860113 +0000 [ forkit ] ERR Failed to unmount [/opt/cool/child-roots/GzdWYZapGwEEjGLQ/tmp]| common/JailUtil.cpp:70
collabora | sh: 1: /usr/bin/coolmount: Operation not permitted
collabora | frk-00035-00035 2022-06-08 16:10:58.896738 +0000 [ forkit ] ERR Failed to unmount [/opt/cool/child-roots/GzdWYZapGwEEjGLQ/lo]| common/JailUtil.cpp:70
collabora | sh: 1: /usr/bin/coolmount: Operation not permitted
collabora | frk-00035-00035 2022-06-08 16:10:58.933384 +0000 [ forkit ] ERR Failed to unmount [/opt/cool/child-roots/GzdWYZapGwEEjGLQ]| common/JailUtil.cpp:70
collabora | wsd-00001-00034 2022-06-08 16:11:16.578692 +0000 [ prisoner_poll ] WRN Prisoner connection disconnected but without valid socket.| wsd/COOLWSD.cpp:3079
For testing purposes, I installed both. The Collabora and Onlyoffice built-in servers.
The Onlyoffice is working with all documents available. But the Collabora office isn't working at all.
These are the messages in the log:
Now I'm suspect of my nginx config files. Can you spot anything wrong in them?
nginx_proxy/conf.d/nextcloud.conf
nginx_proxy/conf.d/collabora-online.conf
nextcloud-nginx.conf
@Igortorrente,
In the config file nginx_proxy/conf.d/collabora-online.conf
, your upstream URL is https://10.0.0.1:9980
.
Is you Colllabora instance really speaking HTTPS or is it plain HTTP without SSL?
@shoelzle That really fixed it! Strange, it didn't work before I added the location / part, but after removing it, it does...
Great :)
Only one more thing. Should I worry about any of these:
collabora | wsd-00001-00043 2022-06-08 16:03:47.642380 +0000 [ docbroker_001 ] WRN Waking up dead poll thread [HttpSynReqPoll], started: false, finished: false| net/Socket.hpp:722 collabora | wsd-00001-00043 2022-06-08 16:03:51.858906 +0000 [ docbroker_001 ] WRN Waking up dead poll thread [HttpSynReqPoll], started: false, finished: false| net/Socket.hpp:722 collabora | wsd-00001-00001 2022-06-08 16:04:36.217104 +0000 [ coolwsd ] WRN Waking up dead poll thread [update], started: false, finished: false| net/Socket.hpp:722 collabora | wsd-00001-00043 2022-06-08 16:05:02.910563 +0000 [ docbroker_001 ] WRN Ignoring attempted read from 30| net/Socket.hpp:1102 collabora | wsd-00001-00034 2022-06-08 16:05:02.947615 +0000 [ prisoner_poll ] WRN Prisoner connection disconnected but without valid socket.| wsd/COOLWSD.cpp:3079 collabora | sh: 1: /usr/bin/coolmount: Operation not permitted collabora | frk-00035-00035 2022-06-08 16:05:03.817927 +0000 [ forkit ] ERR Failed to unmount [/opt/cool/child-roots/LFVlSjpuyRB9mFFz/tmp]| common/JailUtil.cpp:70 collabora | sh: 1: /usr/bin/coolmount: Operation not permitted collabora | frk-00035-00035 2022-06-08 16:05:03.854671 +0000 [ forkit ] ERR Failed to unmount [/opt/cool/child-roots/LFVlSjpuyRB9mFFz/lo]| common/JailUtil.cpp:70 collabora | sh: 1: /usr/bin/coolmount: Operation not permitted collabora | frk-00035-00035 2022-06-08 16:05:03.891174 +0000 [ forkit ] ERR Failed to unmount [/opt/cool/child-roots/LFVlSjpuyRB9mFFz]| common/JailUtil.cpp:70 collabora | wsd-00001-00061 2022-06-08 16:10:44.536186 +0000 [ docbroker_002 ] WRN Waking up dead poll thread [HttpSynReqPoll], started: false, finished: false| net/Socket.hpp:722 collabora | wsd-00001-00061 2022-06-08 16:10:48.732485 +0000 [ docbroker_002 ] WRN Waking up dead poll thread [HttpSynReqPoll], started: false, finished: false| net/Socket.hpp:722 collabora | wsd-00001-00061 2022-06-08 16:10:52.271611 +0000 [ docbroker_002 ] WRN Dropping empty tile response: tile: nviewid=0 part=0 width=256 height=256 tileposx=0 tileposy=7680 tilewidth=3840 tileheight=3840 oldwid=10 wid=10 ver=62| wsd/DocumentBroker.cpp:2978 collabora | wsd-00001-00061 2022-06-08 16:10:57.785654 +0000 [ docbroker_002 ] WRN Ignoring attempted read from 28| net/Socket.hpp:1102 collabora | sh: 1: /usr/bin/coolmount: Operation not permitted collabora | frk-00035-00035 2022-06-08 16:10:58.860113 +0000 [ forkit ] ERR Failed to unmount [/opt/cool/child-roots/GzdWYZapGwEEjGLQ/tmp]| common/JailUtil.cpp:70 collabora | sh: 1: /usr/bin/coolmount: Operation not permitted collabora | frk-00035-00035 2022-06-08 16:10:58.896738 +0000 [ forkit ] ERR Failed to unmount [/opt/cool/child-roots/GzdWYZapGwEEjGLQ/lo]| common/JailUtil.cpp:70 collabora | sh: 1: /usr/bin/coolmount: Operation not permitted collabora | frk-00035-00035 2022-06-08 16:10:58.933384 +0000 [ forkit ] ERR Failed to unmount [/opt/cool/child-roots/GzdWYZapGwEEjGLQ]| common/JailUtil.cpp:70 collabora | wsd-00001-00034 2022-06-08 16:11:16.578692 +0000 [ prisoner_poll ] WRN Prisoner connection disconnected but without valid socket.| wsd/COOLWSD.cpp:3079
I also have these log messages in my Collabora logs, but I couldn't find any side effects, so I just decided to ignore them.
@Igortorrente, In the config file
nginx_proxy/conf.d/collabora-online.conf
, your upstream URL ishttps://10.0.0.1:9980
. Is you Colllabora instance really speaking HTTPS or is it plain HTTP without SSL?
I tried all combinations:
The first two doesn't work for me at all.
The third connects but I'm receiving this following message "Saved with error: Collabora Online should use the same protocol as the server installation."
And the last connects without any error.
(I'm using extra_params=--o:ssl.enable=false
when http)
(The aliasgroup
that I'm using to test -e "aliasgroup1=https://example\\.com:443,https://collaboraonline\\.example\\.com:443"
)
After spend some time reading all the comments and documentation I discovered that I forgot one backslash at some point. It's working with this cmd:
podman run --rm -it --cap-add MKNOD -e "aliasgroup1=https://example\\.com:443" -e server_name="collaboraonline.example.com" -v $PWD/configs/coolwsd.xml:/etc/coolwsd/coolwsd.xml -v $PWD/log/collabora-office/:/var/log/ -p 10.0.0.1:9980:9980 --name collabora-online collabora/code:21.11.5.0.1
Thank you all!!
Describe the bug Cannot open a document in nextcloud using Collabora office online docker container.
To Reproduce Steps to reproduce the behavior:
podman pull docker.io/collabora/code:21.11.5.0.1
podman run --rm -it --cap-add SYS_CHROOT --cap-add MKNOD --cap-add FOWNER --cap-add CHOWN --cap-add SYS_ADMIN -e username=collabora-admin -e password=collabora-password -e "aliasgroup1=https://\(collaboraonline\.\)*example.com:443" -e server_name=collaboraonline.example.com -p 10.0.0.1:9980:9980 --name collabora-online collabora/code:21.11.5.0.1
Nextcloud Hub.docx
and see the errorExpected behavior The document should be opened successfully.
Actual behavior Fail to load the document.
Desktop (please complete the following information)
Additional context In my setup I'm using nginx reverse-proxy to expose the collabora office with this configuration. Aside from this issue the Collabora container seems to be working properly and I can access the admin page through the reverse proxy. Nextcloud 24.0.0 Nextcloud Office 6.1.0
Logs Rootfull container
Rootless container