Nextcloud session / token can timeout without error message or prompt to re-login #320

New issue

Open

opened 2025-03-25 18:27:11 +00:00 by teutat3s · 0 comments

teutat3s commented

2025-03-25 18:27:11 +00:00

Owner

I have noticed this, especially weird behaviour when trying to change personal security settings that suddenly don't take effect.

Logout and re-login is a workaround.

In the server logs, I've found the following error messages in DEBUG mode:

CSRF check failed Code 412

and

No public access to this resource., AppAPIAuth has not passed, No 'Authorization: Basic' header found. Either the client didn't send one, or the server is misconfigured

Maybe related upstream issue: https://github.com/nextcloud/user_oidc/issues/743

I have noticed this, especially weird behaviour when trying to change personal security settings that suddenly don't take effect. Logout and re-login is a workaround. In the server logs, I've found the following error messages in DEBUG mode: ``` CSRF check failed Code 412 ``` and ``` No public access to this resource., AppAPIAuth has not passed, No 'Authorization: Basic' header found. Either the client didn't send one, or the server is misconfigured ``` Maybe related upstream issue: https://github.com/nextcloud/user_oidc/issues/743

teutat3s changed title from ~~Nextcloud token can timeout without error message or prompt to re-login~~ to Nextcloud session / token can timeout without error message or prompt to re-login

2025-03-25 18:27:25 +00:00

teutat3s referenced this issue

2025-04-16 10:36:05 +00:00

modules/nextcloud: PHP's session gc should match nextcloud session_lifetime #342