User account is not provisioned - Nextcloud 29 and authentik

[bastiane273]

Steps to reproduce

1. Fresh Install of Nextcloud AIO v. 9.0.1 (Hub 8 - 29.0.2)
2. Fresh install of Authentik 2024.6.0
3. Using this instruction https://blog.cubieserver.de/2022/complete-guide-to-nextcloud-saml-authentication-with-authentik/ (which worked with earlier verison)

Expected behaviour

The Account unknows to nextclozud should be autimagically created :-)

Actual behaviour

Everything seems fine, but after all - Nextcloud will say an your account has not been provisioned.

Server configuration

Operating system: Debian 12 Web server: Apache Database: Postgresql PHP version:

Nextcloud version: (see Nextcloud admin page) Nextcloud AIO 9.0.1 - did made an update yesterday (Hub 8 - 29.0.2) Where did you install Nextcloud from: Docker compose - nextcloud/all-in-one:latest

List of activated apps:

If you have access to your command line run e.g.:
sudo -u www-data php occ app:list
from within your Nextcloud installation folder

• activity: 2.21.1
• admin_audit: 1.19.0
• announcementcenter: 6.8.1
• calendar: 4.7.6
• certificate24: 0.3.2
• circles: 29.0.0-dev
• cloud_federation_api: 1.12.0
• comments: 1.19.0
• contacts: 6.0.0
• contactsinteraction: 1.10.0
• dashboard: 7.9.0
• dav: 1.30.1
• deck: 1.13.1
• end_to_end_encryption: 1.15.2
• external: 5.4.0
• federatedfilesharing: 1.19.0
• federation: 1.19.0
• files: 2.1.0
• files_accesscontrol: 1.19.1
• files_antivirus: 5.5.5
• files_automatedtagging: 1.19.0
• files_downloadlimit: 2.0.0
• files_external: 1.21.0
• files_fulltextsearch: 29.0.0
• files_pdfviewer: 2.10.0
• files_reminders: 1.2.0
• files_sharing: 1.21.0
• files_trashbin: 1.19.0
• files_versions: 1.22.0
• firstrunwizard: 2.18.0
• forms: 4.2.4
• fulltextsearch: 29.0.0
• fulltextsearch_elasticsearch: 29.0.1
• gestion: 2.5.1
• groupfolders: 17.0.1
• issuetemplate: 0.7.0
• logreader: 2.14.0
• lookup_server_connector: 1.17.0
• mail: 3.7.2
• nextcloud-aio: 0.6.0
• nextcloud_announcements: 1.18.0
• notes: 4.10.0
• notifications: 2.17.0
• notify_push: 0.6.12
• oauth2: 1.17.0
• password_policy: 1.19.0
• photos: 2.5.0
• privacy: 1.13.0
• provisioning_api: 1.19.0
• recommendations: 2.1.0
• registration: 2.4.0
• related_resources: 1.4.0
• richdocuments: 8.4.3
• richdocumentscode: 24.4.402
• secrets: 1.5.4
• serverinfo: 1.19.0
• settings: 1.12.0
• sharebymail: 1.19.0
• support: 1.12.0
• survey_client: 1.17.0
• systemtags: 1.19.0
• tasks: 0.16.0
• text: 3.10.0
• theming: 2.4.0
• twofactor_backupcodes: 1.18.0
• twofactor_totp: 11.0.0-dev
• user_oidc: 5.0.3
• user_saml: 6.1.3
• user_status: 1.9.0
• viewer: 2.3.0
• weather_status: 1.9.0
• workflowengine: 2.11.0 Disabled:
• bruteforcesettings: 2.9.0
• encryption: 2.17.0
• suspicious_login: 7.0.0
• user_ldap: 1.20.0

Nextcloud configuration:

<?php
$CONFIG = array (
  'one-click-instance' => true,
  'one-click-instance.user-limit' => 100,
  'memcache.local' => '\\OC\\Memcache\\APCu',
  'apps_paths' =>
  array (
    0 =>
    array (
      'path' => '/var/www/html/apps',
      'url' => '/apps',
      'writable' => false,
    ),
    1 =>
    array (
      'path' => '/var/www/html/custom_apps',
      'url' => '/custom_apps',
      'writable' => true,
    ),
  ),
  'appsallowlist' => false,
  'check_data_directory_permissions' => false,
  'memcache.distributed' => '\\OC\\Memcache\\Redis',
  'memcache.locking' => '\\OC\\Memcache\\Redis',
  'redis' =>
  array (
    'host' => 'nextcloud-aio-redis',
    'password' => '…',
    'port' => 6379,
  ),
  'overwritehost' => 'nc.imparadies.jetzt',
  'overwriteprotocol' => 'https',
  'passwordsalt' => '…',
  'secret' => '…',
  'trusted_domains' =>
  array (
    0 => 'localhost',
    1 => 'nc.imparadies.jetzt',
  ),
  'datadirectory' => '/mnt/ncdata',
  'dbtype' => 'pgsql',
  'version' => '29.0.2.2',
  'overwrite.cli.url' => 'https://nc.xxx.jetzt/',
  'dbname' => 'nextcloud_database',
  'dbhost' => 'nextcloud-aio-database',
  'dbport' => '',
  'dbtableprefix' => 'oc_',
  'dbuser' => 'oc_nextcloud',
  'dbpassword' => '',
  'installed' => true,
  'instanceid' => '…',
  'maintenance' => false,
  'updatedirectory' => '/nc-updater',
  'loglevel' => '2',
  'app_install_overwrite' =>
  array (
    0 => 'nextcloud-aio',
    1 => 'gestion',
    2 => 'issuetemplate',
  ),
  'log_type' => 'file',
  'logfile' => '/var/www/html/data/nextcloud.log',
  'log_rotate_size' => '10485760',
  'log.condition' =>
  array (
    'apps' =>
    array (
      0 => 'admin_audit',
    ),
  ),
  'preview_max_x' => '2048',
  'preview_max_y' => '2048',
  'jpeg_quality' => '60',
  'enabledPreviewProviders' =>
  array (
    1 => 'OC\\Preview\\Image',
    2 => 'OC\\Preview\\MarkDown',
    3 => 'OC\\Preview\\MP3',
    4 => 'OC\\Preview\\TXT',
    5 => 'OC\\Preview\\OpenDocument',
    6 => 'OC\\Preview\\Movie',
    7 => 'OC\\Preview\\Krita',
    0 => 'OC\\Preview\\Imaginary',
  ),
  'enable_previews' => true,
  'upgrade.disable-web' => true,
  'mail_smtpmode' => 'smtp',
  'trashbin_retention_obligation' => 'auto, 30',
  'versions_retention_obligation' => 'auto, 30',
  'activity_expire_days' => '30',
  'simpleSignUpLink.shown' => false,
  'share_folder' => '/Shared',
  'one-click-instance.link' => 'https://nextcloud.com/all-in-one/',
  'upgrade.cli-upgrade-link' => 'https://github.com/nextcloud/all-in-one/discussions/2726',
  'maintenance_window_start' => 100,
  'allow_local_remote_servers' => true,
  'davstorage.request_timeout' => 3600,
  'htaccess.RewriteBase' => '/',
  'dbpersistent' => false,
  'auth.bruteforce.protection.enabled' => true,

Client configuration

Browser: Any Browser

Operating system: Any OS / Windows 10-11 / Zorin OS / Ubuntu / Debian 12

Logs

Nextcloud log (data/owncloud.log)

Log of container bextcloud-aio-database hats some info:
5.152 UTC [11706] ERROR:  duplicate key value violates unique constraint "oc_user_saml_configurations_pkey"
2024-06-27 15:45:15.152 UTC [11706] DETAIL:  Key (id)=(1) already exists.
2024-06-27 15:45:15.152 UTC [11706] STATEMENT:  INSERT INTO "oc_user_saml_configurations" ("id", "configuration", "name") VALUES($1, $2, $3)
2024-06-27 15:45:25.823 UTC [11718] ERROR:  duplicate key value violates unique constraint "oc_user_saml_configurations_pkey"
2024-06-27 15:45:25.823 UTC [11718] DETAIL:  Key (id)=(1) already exists.
2024-06-27 15:45:25.823 UTC [11718] STATEMENT:  INSERT INTO "oc_user_saml_configurations" ("id", "configuration", "name") VALUES($1, $2, $3)
2024-06-27 15:46:29.420 UTC [11744] ERROR:  duplicate key value violates unique constraint "oc_user_saml_configurations_pkey"
2024-06-27 15:46:29.420 UTC [11744] DETAIL:  Key (id)=(1) already exists.
2024-06-27 15:46:29.420 UTC [11744] STATEMENT:  INSERT INTO "oc_user_saml_configurations" ("id", "configuration", "name") VALUES($1, $2, $3)

Maybe configuration of SSO_SAML-App has not written the configuration in full.

Greetings

[blizzz]

The errors on the database are strange, but do not have anything to do with users not being able to log in.

How many users do you have? Already 100?