search

nextcloud / server

☁️ Nextcloud server, a safe home for all your data
https://nextcloud.com
GNU Affero General Public License v3.0
27.32k stars 4.06k forks source link

[Bug]: user_ldap Attempt for Paging? in Logging #31175

Open q-wertz opened 2 years ago

q-wertz commented 2 years ago

⚠️ This issue respects the following points: ⚠️

Bug description

In the admin logging I get the Error "Attempt for Paging?" from the user_ldap app.

Not sure if related, but the LDAP/AD integration interface says Configuration incorrect and that The Base DN appears to be wrong but when checking on command line everything appears to be correct

root@machine01:/var/www/nextcloud# sudo -u www-data ./occ ldap:test-config s03
The configuration is valid and the connection could be established!

Using google I stumbled into this https://github.com/owncloud/user_ldap/issues/423 which seems related.

Steps to reproduce

  1. Have a working LDAP config
  2. (Maybe due to update)
  3. Get error message in the Web interface

Expected behavior

Installation method

Manual installation

Operating system

Debian/Ubuntu

PHP engine version

PHP 7.4

Web server

Nginx

Database engine version

MariaDB

Is this bug present after an update or on a fresh install?

Updated to a major version (ex. 22.2.3 to 23.0.1)

Are you using the Nextcloud Server Encryption module?

Encryption is Disabled

What user-backends are you using?

Configuration report

{
    "system": {
        "instanceid": "***REMOVED SENSITIVE VALUE***",
        "passwordsalt": "***REMOVED SENSITIVE VALUE***",
        "secret": "***REMOVED SENSITIVE VALUE***",
        "trusted_domains": [
            "nc.top.secret.de",
            "nc.topp.secret.de"
        ],
        "datadirectory": "***REMOVED SENSITIVE VALUE***",
        "dbtype": "mysql",
        "version": "22.2.3.0",
        "overwrite.cli.url": "https:\/\/nc.top.secret.de",
        "dbname": "***REMOVED SENSITIVE VALUE***",
        "dbhost": "***REMOVED SENSITIVE VALUE***",
        "dbport": "",
        "dbtableprefix": "oc_",
        "dbuser": "***REMOVED SENSITIVE VALUE***",
        "dbpassword": "***REMOVED SENSITIVE VALUE***",
        "installed": true,
        "mysql.utf8mb4": true,
        "maintenance": false,
        "session_lifetime": 604800,
        "session_keepalive": true,
        "mail_smtpmode": "smtp",
        "mail_sendmailmode": "smtp",
        "mail_domain": "***REMOVED SENSITIVE VALUE***",
        "mail_from_address": "***REMOVED SENSITIVE VALUE***",
        "mail_smtphost": "***REMOVED SENSITIVE VALUE***",
        "mail_smtpport": "25",
        "default_language": "de_DE",
        "default_locale": "de",
        "default_phone_region": "DE",
        "skeletondirectory": "",
        "loglevel": 2,
        "updater.release.channel": "stable",
        "app_install_overwrite": [
            "drawio"
        ],
        "mail_smtpsecure": "tls",
        "ldapIgnoreNamingRules": false,
        "ldapProviderFactory": "OCA\\User_LDAP\\LDAPProviderFactory",
        "memcache.local": "\\OC\\Memcache\\APCu",
        "memcache.distributed": "\\OC\\Memcache\\Redis",
        "memcache.locking": "\\OC\\Memcache\\Redis",
        "redis": {
            "host": "***REMOVED SENSITIVE VALUE***",
            "port": 0,
            "password": "***REMOVED SENSITIVE VALUE***"
        }
    }
}

List of activated Apps

Enabled:
  - accessibility: 1.8.0
  - activity: 2.15.0
  - admin_audit: 1.12.0
  - appointments: 1.11.12
  - bruteforcesettings: 2.3.0
  - calendar: 3.0.5
  - calendar_resource_management: 0.1.0
  - circles: 22.1.1
  - cloud_federation_api: 1.5.0
  - comments: 1.12.0
  - contacts: 4.0.7
  - dashboard: 7.2.0
  - dav: 1.19.0
  - deck: 1.5.5
  - drawio: 1.0.2
  - federatedfilesharing: 1.12.0
  - federation: 1.12.0
  - files: 1.17.0
  - files_external: 1.13.0
  - files_pdfviewer: 2.3.1
  - files_rightclick: 1.1.0
  - files_sharing: 1.14.0
  - files_trashbin: 1.12.0
  - files_versions: 1.15.0
  - files_videoplayer: 1.11.0
  - firstrunwizard: 2.11.0
  - groupfolders: 10.0.2
  - integration_gitlab: 1.0.3
  - integration_openproject: 1.0.6
  - logreader: 2.7.0
  - lookup_server_connector: 1.10.0
  - news: 17.0.1
  - nextcloud_announcements: 1.11.0
  - notifications: 2.10.1
  - oauth2: 1.10.0
  - password_policy: 1.12.0
  - photos: 1.4.0
  - polls: 3.4.2
  - privacy: 1.6.0
  - provisioning_api: 1.12.0
  - quota_warning: 1.13.0
  - recommendations: 1.1.0
  - serverinfo: 1.12.0
  - settings: 1.4.0
  - sharebymail: 1.12.0
  - smb_test: 0.3.3
  - support: 1.5.0
  - systemtags: 1.12.0
  - tasks: 0.14.2
  - text: 3.3.0
  - theming: 1.13.0
  - twofactor_backupcodes: 1.11.0
  - updatenotification: 1.12.0
  - user_ldap: 1.12.1
  - user_status: 1.2.0
  - viewer: 1.6.0
  - weather_status: 1.2.0
  - workflowengine: 2.4.0
Disabled:
  - contactsinteraction
  - encryption
  - mail
  - ransomware_protection
  - survey_client

Nextcloud Signing status

No errors have been found.

Nextcloud Logs

{"reqId":"xM6hlC9vjtmWFGEx5Lpo","level":3,"time":"2022-02-14T16:18:33+00:00","remoteAddr":"123.456.789.123","user":"admin.sonn","app":"user_ldap","method":"POST","url":"/apps/user_ldap/ajax/wizard.php","message":"Attempt for Paging?  ","userAgent":"Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0","version":"22.2.3.0","id":"620a80d9cb9ae"}

Additional info

We are using Global Catalog (port 3269)

szaimen commented 1 year ago

Hi, please update to 24.0.9 or better 25.0.3 and report back if it fixes the issue. Thank you!

My goal is to add a label like e.g. 25-feedback to this ticket of an up-to-date major Nextcloud version where the bug could be reproduced. However this is not going to work without your help. So thanks for all your effort!

If you don't manage to reproduce the issue in time and the issue gets closed but you can reproduce the issue afterwards, feel free to create a new bug report with up-to-date information by following this link: https://github.com/nextcloud/server/issues/new?assignees=&labels=bug%2C0.+Needs+triage&template=BUG_REPORT.yml&title=%5BBug%5D%3A+

q-wertz commented 1 year ago

Yes, still on 25.0.3. Not sure if this is important: the user "admin_user" is not on LDAP but a local one 

{
   "reqId":"4yeOsXJoq1oWMFMpCPkx",
   "level":3,
   "time":"2023-01-23T15:54:19+00:00",
   "remoteAddr":"141.58.121.86",
   "user":"admin_user",
   "app":"user_ldap",
   "method":"POST",
   "url":"/apps/user_ldap/ajax/wizard.php",
   "message":"Attempt for Paging?  ",
   "userAgent":"Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/109.0",
   "version":"25.0.3.2",
   "data":{
      "app":"user_ldap"
   },
   "id":"63ceae53bc7ac"
}
joshtrichards commented 1 year ago

Just to confirm I understand: the error is logged and those errors appear in the UI, but everything functions normally? 🤔

Can you provide the output of occ ldap:show-config? Feel free to sensor out your domain/identifying info - just make sure any matching entries are the same/etc.

EDIT: I also just noted you're using NGINX. Can you confirm the following two lines exist in your nginx config:

https://github.com/nextcloud/documentation/blob/32559abb2d9995d9de094747b754d0eea5c0af60/admin_manual/installation/nginx-root.conf.sample#L145-L146

I suspect the telltale sign is that CLI test works, but not the web UI...

nextcloud-command commented 11 months ago

This issue has been automatically marked as stale because it has not had recent activity and seems to be missing some essential information. It will be closed if no further activity occurs. Thank you for your contributions.

q-wertz commented 11 months ago

Sorry, forgot to answer.

seal61 commented 5 months ago

I have the same issue, but running on apache2. Described it in the nextcloud forums, not solved (yet).

https://help.nextcloud.com/t/attempt-for-paging-bad-search-filter/185970

lwt-pressy commented 4 months ago

still present in 29.0.3, seems to be related if LDAP - server has a inactivity timeout set.