When new users logon to our OwnCloud via LDAP, they get "Invalid private key for Encryption App" and when they go to change their password to recreate the private key, the app just sits at "saving...." and does not continue on.
Steps to reproduce
- Logon with an LDAP account of a user that has never logged on before
- Get the error message
- Try to recreate the new private key by entering the old and new password, which happen to be the same because the password has not changed
Expected behaviour
New private key is created and user can continue on using the system
Actual behaviour
The page sits stating "saving..." located after the "Update Private Key Password" button
Server configuration
Operating system: CentOS7
Web server: Apache
Database:
PHP version: 5.6
ownCloud version: (see ownCloud admin page) 10.0.4.4
Updated from an older ownCloud or fresh install: Updated from 9.1.7 a couple weeks ago
Where did you install ownCloud from: Package
Signing status (ownCloud 9.0 and above):
No errors have been found.
{
"basic": {
"license key": "REMOVED SENSITIVE VALUE",
"date": "Thu, 11 Jan 2018 14:15:46 +0000",
"ownCloud version": "10.0.4.4",
"ownCloud version string": "10.0.4",
"ownCloud edition": "Community",
"server OS": "Linux",
"server OS version": "Linux REMOVED SENSITIVE VALUE 3.10.0-693.11.1.el7.x86_64 #1 SMP Mon Dec 4 23:52:40 UTC 2017 x86_64",
"server SAPI": "apache2handler",
"webserver version": "Apache\/2.4.6 (CentOS) OpenSSL\/1.0.2k-fips mod_fcgid\/2.3.9 PHP\/5.6.32",
"hostname": "REMOVED SENSITIVE VALUE",
"user count": 12,
"user directories": 12,
"logged-in user": "Eric Fanning"
},
"config": {
"updatechecker": false,
"instanceid": "oczcbaoff560",
"passwordsalt": "REMOVED SENSITIVE VALUE",
"secret": "REMOVED SENSITIVE VALUE",
"skeletondirectory": "",
"trusted_domains": [
"REMOVED SENSITIVE VALUE"
],
"datadirectory": "\/var\/www\/Owncloud data",
"overwrite.cli.url": "https:\/\/***REMOVED SENSITIVE VALUE***\/owncloud",
"dbtype": "mysql",
"theme": "briljent",
"version": "10.0.4.4",
"dbname": "owncloud",
"dbhost": "localhost",
"dbtableprefix": "oc_",
"dbuser": "REMOVED SENSITIVE VALUE",
"dbpassword": "REMOVED SENSITIVE VALUE",
"logtimezone": "America\/Indiana\/Indianapolis",
"installed": true,
"mail_smtpmode": "smtp",
"mail_domain": "briljent.com",
"mail_smtphost": "mail.briljent.com",
"mail_smtpport": "25",
"mail_from_address": "files",
"loglevel": 1,
"maintenance": false,
"ldapIgnoreNamingRules": false
},
```
**List of activated apps:**
Enabled:
- activity: 2.3.6
- comments: 0.3.0
- configreport: 0.1.1
- dav: 0.3.2
- encryption: 1.3.1
- federatedfilesharing: 0.3.1
- files: 1.5.1
- files_external: 0.7.1
- files_sharing: 0.10.1
- files_trashbin: 0.9.1
- files_versions: 1.3.0
- files_videoplayer: 0.9.8
- gallery: 16.0.2
- market: 0.2.3
- notifications: 0.3.2
- provisioning_api: 0.5.0
- systemtags: 0.3.0
- templateeditor: 0.1
- updatenotification: 0.2.1
- user_ldap: 0.10.0
Disabled:
- external
- federation
- firstrunwizard
- shorten
- theme-example
- user_external
**Are you using external storage, if yes which one:** No
**Are you using encryption:** Yes
**Are you using an external user-backend, if yes which one:** LDAP/ActiveDirectory
#### LDAP configuration (delete this part if not used)
+-------------------------------+-----------------------------------------------------+
| Configuration | s01 |
+-------------------------------+-----------------------------------------------------+
| hasMemberOfFilterSupport | 1 |
| hasPagedResultSupport | |
| homeFolderNamingRule | |
| lastJpegPhotoLookup | 0 |
| ldapAgentName | CN=owncloud,OU=ServiceAccounts,DC=briljent,DC=local |
| ldapAgentPassword | *** |
| ldapAttributesForGroupSearch | |
| ldapAttributesForUserSearch | |
| ldapBackupHost | |
| ldapBackupPort | |
| ldapBase | dc=briljent,dc=local |
| ldapBaseGroups | dc=briljent,dc=local |
| ldapBaseUsers | dc=briljent,dc=local |
| ldapCacheTTL | 600 |
| ldapConfigurationActive | 1 |
| ldapDynamicGroupMemberURL | |
| ldapEmailAttribute | mail |
| ldapExperiencedAdmin | 0 |
| ldapExpertUUIDGroupAttr | |
| ldapExpertUUIDUserAttr | objectguid |
| ldapExpertUsernameAttr | |
| ldapGroupDisplayName | cn |
| ldapGroupFilter | (|(cn=BriljentEmployees)) |
| ldapGroupFilterGroups | BriljentEmployees |
| ldapGroupFilterMode | 0 |
| ldapGroupFilterObjectclass | |
| ldapGroupMemberAssocAttr | uniqueMember |
| ldapHost | briljentwin13.briljent.local |
| ldapIgnoreNamingRules | |
| ldapLoginFilter | sAMAccountName=%uid |
| ldapLoginFilterAttributes | |
| ldapLoginFilterEmail | 0 |
| ldapLoginFilterMode | 0 |
| ldapLoginFilterUsername | 1 |
| ldapNestedGroups | 0 |
| ldapOverrideMainServer | |
| ldapPagingSize | 500 |
| ldapPort | 389 |
| ldapQuotaAttribute | |
| ldapQuotaDefault | |
| ldapTLS | 0 |
| ldapUserDisplayName | cn |
| ldapUserDisplayName2 | |
| ldapUserFilter | (&(|(objectclass=user))) |
| ldapUserFilterGroups | |
| ldapUserFilterMode | 0 |
| ldapUserFilterObjectclass | user |
| ldapUuidGroupAttribute | auto |
| ldapUuidUserAttribute | auto |
| turnOffCertCheck | 0 |
| useMemberOfToDetectMembership | 1 |
+-------------------------------+-----------------------------------------------------+
### Client configuration
Browser: Chrome and IE
Operating system: Windows 10
ownCloud log (data/owncloud.log)
{"reqId":"WldtKahTaVhoJiqbJkSr4AAAAAg","level":2,"time":"2018-01-11T08:56:57-05:00","remoteAddr":"10.0.6.35","user":"062E32A3-DD22-45B6-8112-A255B8341B7E","app":"core","method":"POST","url":"\/index.php\/apps\/encryption\/ajax\/updatePrivateKeyPassword","message":"Login failed: '062E32A3-DD22-45B6-8112-A255B8341B7E' (Remote IP: '10.0.6.35')"}
{"reqId":"YnveE2rEg6eX4qyLD7Nq","level":3,"time":"2018-01-11T09:00:02-05:00","remoteAddr":"","user":"--","app":"files","method":"--","url":"--","message":" Backends provided no user object for 2D965936-9331-44B1-85E5-1D4BA294663D"}
{"reqId":"YnveE2rEg6eX4qyLD7Nq","level":1,"time":"2018-01-11T09:00:03-05:00","remoteAddr":"","user":"--","app":"cron","method":"--","url":"--","message":"Invalidating tokens older than 2018-01-10T14:00:03+00:00"}
{"reqId":"WldwVC82i4wGxYmxgxHkOAAAAAc","level":3,"time":"2018-01-11T09:10:28-05:00","remoteAddr":"10.0.6.35","user":"37F5785B-8F3D-4617-A50D-FA251E6FB6B5","app":"files","method":"PROPFIND","url":"\/remote.php\/webdav","message":" Backends provided no user object for 2D965936-9331-44B1-85E5-1D4BA294663D"}
{"reqId":"Wldw5XjxpizSKYn7JNxD@AAAAAs","level":3,"time":"2018-01-11T09:12:54-05:00","remoteAddr":"10.0.6.35","user":"37F5785B-8F3D-4617-A50D-FA251E6FB6B5","app":"files","method":"PROPFIND","url":"\/remote.php\/webdav","message":" Backends provided no user object for 2D965936-9331-44B1-85E5-1D4BA294663D"}
{"reqId":"Wldw56hTaVhoJiqbJkSr9QAAAAg","level":3,"time":"2018-01-11T09:12:56-05:00","remoteAddr":"10.0.6.35","user":"37F5785B-8F3D-4617-A50D-FA251E6FB6B5","app":"files","method":"PROPFIND","url":"\/remote.php\/webdav","message":" Backends provided no user object for 2D965936-9331-44B1-85E5-1D4BA294663D"}
{"reqId":"WldxDG@r6i-xOIj6aFWvuQAAAAA","level":3,"time":"2018-01-11T09:13:33-05:00","remoteAddr":"10.0.6.35","user":"37F5785B-8F3D-4617-A50D-FA251E6FB6B5","app":"files","method":"PROPFIND","url":"\/remote.php\/webdav","message":" Backends provided no user object for 2D965936-9331-44B1-85E5-1D4BA294663D"}
{"reqId":"WldxKqGXqWxOxg2JrkDL7wAAAAM","level":3,"time":"2018-01-11T09:14:03-05:00","remoteAddr":"10.0.6.35","user":"37F5785B-8F3D-4617-A50D-FA251E6FB6B5","app":"files","method":"PROPFIND","url":"\/remote.php\/webdav","message":" Backends provided no user object for 2D965936-9331-44B1-85E5-1D4BA294663D"}
{"reqId":"WldxP4x8Ub5WGdV7fUCqmQAAAAw","level":3,"time":"2018-01-11T09:14:24-05:00","remoteAddr":"10.0.6.35","user":"37F5785B-8F3D-4617-A50D-FA251E6FB6B5","app":"files","method":"PROPFIND","url":"\/remote.php\/webdav","message":" Backends provided no user object for 2D965936-9331-44B1-85E5-1D4BA294663D"}
{"reqId":"WldxY6GXqWxOxg2JrkDL8wAAAAM","level":3,"time":"2018-01-11T09:15:00-05:00","remoteAddr":"10.0.6.35","user":"37F5785B-8F3D-4617-A50D-FA251E6FB6B5","app":"files","method":"PROPFIND","url":"\/remote.php\/webdav","message":" Backends provided no user object for 2D965936-9331-44B1-85E5-1D4BA294663D"}
{"reqId":"mBM4AdhzrEQQQOUjTGLN","level":3,"time":"2018-01-11T09:15:01-05:00","remoteAddr":"","user":"--","app":"files","method":"--","url":"--","message":" Backends provided no user object for 2D965936-9331-44B1-85E5-1D4BA294663D"}
{"reqId":"mBM4AdhzrEQQQOUjTGLN","level":1,"time":"2018-01-11T09:15:02-05:00","remoteAddr":"","user":"--","app":"cron","method":"--","url":"--","message":"Invalidating tokens older than 2018-01-10T14:15:02+00:00"}