-
Notifications
You must be signed in to change notification settings - Fork 3
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Cross reference to support question opened in https://help.nextcloud.com #13
Comments
Hi Michael, thanks for reporting the issue! Before diving deeper, do have the checkbox |
Did as advised. Unfortunately Ausweisapp2 says ~ "succesful, eid can be removed", but eid-login says "Anmelden mit eID fehlgeschlagen! Bitte stellen Sie sicher, dass die genutzte eID-Karte gültig ist". MAYBE because after the encryption errors I've disabled and removed eid-login. Installed again after your answer here, existing skidentity.de config re-used. As I can't login now, I'll try to unset the "disable password based login" flag via an sql command, last option I'm aware of. |
Disabling of "disable pw based login" SUCCESSFUL. Had to |
Tried to enable eid-login again. Does not work. Tried to recreate everything: |
Regarding your encryption error: there is an open issue nextcloud/server#8546 with the exact error message. To find out, if there is an additional problem with the eID-login plugin, it would be helpful if you could increase the log level to find out where exactly the problem is. You can have a look at the docs or (if you use Docker), this might help. Make sure your settings and your metadata are OK. You can have a look at your Service Provider metadata under In general, the resetting and re-configuring of the plugin should not be a problem. |
My encryption issue is sorted out, recovered everything and now encryption is switched off, thanks for your hint! Regarding eidlogin: Loglevel has been 0 (DEBUG) since I don't know, some earlier issue :) These are the latest (anonymized) logs for trying to connect a user to eidlogin:
As you mentioned |
The fact that the SP metadata site throws a "Page not found" indicates that something is wrong with your Nextcloud instance or the eidlogin configuration. The errors during the authentication process are probably just consequences of this misconfiguration. Are there any settings in your Apache config / .htaccess that could prevent Nextcloud from returning the metadata, e.g. like redirects? I am a bit confused about your logs. It seems that the encryption app uses / calls code from the eidlogin plugin, as in line 1:
My recommendation would be to completely remove the eidlogin plugin and reconfigure it again (the SkIDentity service account can be left untouched and reused):
|
I need an "intermediate" help step ;) |
"Fixed" this intermediate issue. As I've had a mysqldump available incl. SQL structure, with the But main issue, "Create connection to eID" not possible anymore, unchanged. Just to repeat: The connection to eID worked once, but with the mentioned strange Broken since I've disabled and removed eidlogin for the first time. Not sure but IMHO there might be some general (re)install issues with eidlogin, as the |
I agree, that in most cases the database tables should be removed on uninstall. But if I remember correctly, we had a long discussion whether to do so or not and we decided to leave the tables untouched to prevent the loss of important data. For example, if the admin of a large Nextcloud instance mistakenly uninstalls the plugin, all users would loose their eID connections. Regarding your main issue, I have to say, I really don't know want else you could do as no other user seems to have that problem until now. |
Do you know how eidlogin checks/knows on the very first install that the tables must be created? Or, precisely, what triggers eidlogin on SECOND install to NOT create the tables, not even to check for their existence, although they have been removed in my case by me? For me this looks like that there must be some peace of information somewhere that tells eidlogin to behave different than on first install, when tables are definitively created. |
And, FYI, I've seen in the log files that there are different entries for two returns: a) the "invalid xml Schema" error reg. eidlogin.xsd when AusweisApp2 and skidentity are returning "all fine" |
HEUREK! It works (again)! Added as mentioned in eidlogin's readme
to Nextcloud's config file, and now the eID connection was succesful established and can be used. Means IMHO that log entry
seems to be the root cause. Whyever :) No THANK YIU VERY MUCH for helping @ecmrauh !!! |
You're welcome, I'm glad you could fix the problem! |
First of all:
THANK YOU VERY MUCH for this app/plugin!!!
I've opened a support question for Nextcloud: https://help.nextcloud.com/t/encryption-mixup-after-installing-configuring-and-activating-eid-login-app/166426
Crosslinking here, as issue appears after installing eid-login, so maybe relevant also for you.
Regards,
Michael
The text was updated successfully, but these errors were encountered: