Testing

[ericgaspar]

• 684 29.0.2

• 690

• 691

[ericgaspar]

!testme

[yunohost-bot]

:carousel_horse:

[yunohost-bot]

:worm:

[ericgaspar]

!testme

[yunohost-bot]

:rocket:

[yunohost-bot]

:bug:

[nicofrand]

Hi!

I don't know if this is related to testing or also the case with master but I get this error in /admin/overview:

Votre dossier de données et vos fichiers sont probablement accessibles depuis internet. Le fichier .htaccess ne fonctionne pas. Nous vous recommandons vivement de configurer votre serveur web de façon à ce que ce dossier de données ne soit plus accessible, ou de le déplacer hors de la racine du serveur web.

It basically says that the .htaccess is not working and my data is reachable through internet.

root@nicofrand:/var/www/nextcloud# ls -la /home/yunohost.app/nextcloud/data/.htaccess 
-rw-r----- 1 nextcloud nextcloud 542 Jun 20 08:03 /home/yunohost.app/nextcloud/data/.htaccess

root@nicofrand:/var/www/nextcloud# cat /home/yunohost.app/nextcloud/data/.htaccess 
# Generated by Nextcloud on 2024-06-20 08:03:52
# Section for Apache 2.4 to 2.6
<IfModule mod_authz_core.c>
  Require all denied
</IfModule>
<IfModule mod_access_compat.c>
  Order Allow,Deny
  Deny from all
  Satisfy All
</IfModule>

# Section for Apache 2.2
<IfModule !mod_authz_core.c>
  <IfModule !mod_access_compat.c>
    <IfModule mod_authz_host.c>
      Order Allow,Deny
      Deny from all
    </IfModule>
    Satisfy All
  </IfModule>
</IfModule>

# Section for Apache 2.2 to 2.6
<IfModule mod_autoindex.c>
  IndexIgnore *
</IfModule>

[nicofrand]

:facepalm: That might only be a warning for apache and should be ignored? I don't know if nginx is secured enough though?

[ericgaspar]

We have some rules borrowed from .htaccess in our NGINX config

[nicofrand]

We have some rules borrowed from .htaccess in our NGINX config

Do you know if nextcloud really checks the file access or just the htaccess by another way? Maybe the nginx config is broken too?