New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Nextcloud and Onlyoffice: Error when trying to connect (cURL error 60: SSL certificate problem: unable to get local issuer certificate (see http://curl.haxx.se/libcurl/c/libcurl-errors.html)) #18899
Comments
Are you suggesting to ignore certificate errors? Is it a self signed? |
Hi @kesselb, Since I updated Nextcloud, Onlyoffice (that is using the same certificate as Nextcloud) is not allowing me to save my files (stored in Nextcloud) so I tried to check the configuration of Nextcloud and under the Onlyoffice integration when I click on Save I am receiving the weird error that I left as a subject of this issue. I have no idea on why it's doing this, before the update was working fine, and NO I am not suggesting to ignore certificate errors, I am asking help to understand why since the upgrade I am receiving that error considering that the certificate is the same as before and it's a valid certificate. |
OK. Please don't use the bug tracker for questions ;) Nextcloud uses a copy of https://curl.haxx.se/docs/caextract.html for certificate validation. Copy is updated from time to time. The list contains the certificates we trust.
If 1 works but 2 fails usually the server fails to validate the certificate. Why does it fail? The list of certificates contains only the big certificate companies. A reseller like Trustico pays another certificate company for a intermediate certificate. With this intermediate certificate Trustico is able to sign certificates (like the one you bought) without being on the list (but the big companies are also using intermediates). Solution A) Configure the webserver to deliver the certificate chain. Right now your webserver only sends the certificate for the domain not the intermediate. A tool like https://www.ssllabs.com/ssltest/analyze.html is handy to check for such issues. But curl also works:
Solution B) Otherwise you can fix this problem by adding the certificate to your systems certificate storage. For Nextcloud (because we use our own files) via |
@H4M1O you were able to fix the issue? |
Hi @kesselb, yes sorry but I was extremely busy and was abroad so I couldn't answer earlier. |
I resolved this by putting our internal self-issued ca.crt into /usr/share/ca-certificates/ |
I have the same issue but I run Nextcloud on TrueNAS-12.0-U5.1 in a jail. I tried solution B to no avail. Would love to get rid of this error and get onlyoffice to work 1 Install Nextcloud 22.2.0 Expected behaviour: It should connect to Onlyoffice instead is giving me a certificate error Actual behaviour: Just does not work at all Server configuration: Operating system: Web server: Database: PHP version:
Are you using external storage, if yes which one: smb Are you using encryption: yes/no Client configuration Browser: |
Steps to reproduce
Expected behaviour
It should connect to Onlyoffice instead is giving me a certificate error and before upgrading Nextcloud, Onlyoffice was working without issues.
Actual behaviour
After the upgrade Onlyoffice is not working anymore, I can open the documents but I can't save them and when I checked the configuration I found out that if I try to save it I am receiving a certificate error
Server configuration
Operating system:
Ubuntu 16.04.6 LTS
Web server:
Apache 2.4 --> 2.4.41-1+ubuntu16.04.1+deb.sury.org+5
Database:
MySQL 5.7 --> 5.7.28-0ubuntu0.16.04.2
PHP version:
PHP 7.0 --> 7.0.33-11+ubuntu16.04.1+deb.sury.org+1
Nextcloud version: (see Nextcloud admin page)
16.0.7 (Production)
Updated from an older Nextcloud/ownCloud or fresh install:
Upgraded regurarly since version 13
Where did you install Nextcloud from:
Nextcloud website
Signing status:
Signing status
List of activated apps:
App list
Nextcloud configuration:
Config report
Are you using external storage, if yes which one: local/smb/sftp/...
No
Are you using encryption: yes/no
No
Are you using an external user-backend, if yes which one: LDAP/ActiveDirectory/Webdav/...
No
Client configuration
Browser:
Chrome, Brave, Firefox, Edge.
Operating system:
Windows 10, Linux (different flavours), OSX Catalina.
Logs
Web server error log
Web server error log
The text was updated successfully, but these errors were encountered: