[Bug]: New login with Android app or Windows client fails.

[Schneehexe]

⚠️ This issue respects the following points: ⚠️

• This is a bug, not a question or a configuration/webserver/proxy issue.
• This issue is not already reported on Github OR Nextcloud Community Forum (I've searched it).
• Nextcloud Server is up to date. See Maintenance and Release Schedule for supported versions.
• I agree to follow Nextcloud's Code of Conduct.

Bug description

After the issue #51066 (Encryption app is enabled, but your keys are not initialized. Please log-out and log-in again), logging in to the browser works again, but newly registered accounts that are supposed to log in to Nextcloud via the Android app or Windows desktop still exhibit the same behavior. What I describe below applies to both the desktop client and the Android app.

The Nextcloud Server is 31.0.2

Steps to reproduce

1. I set up the new user.
2. I log in and out again with the login data in the browser; this works perfectly on Desktop and mobile device.
3. I log in to the client or app and am prompted to enter my login credentials in the browser.
4. The login doesn't work (Encryption App is enabled, but your keys are not initialized. Please log out and log in again.)

Expected behavior

The login works and I can log in to the Windows desktop client and the Android app.

Nextcloud Server version

31

Operating system

None

PHP engine version

PHP 8.4

Web server

Apache (supported)

Database engine version

None

Is this bug present after an update or on a fresh install?

None

Are you using the Nextcloud Server Encryption module?

Encryption is Enabled

What user-backends are you using?

• Default user-backend (database)
• LDAP/ Active Directory
• SSO - SAML
• Other

Configuration report

./occ config:list system
�[?****l
{
    "system": {
        "memcache.local": "\\OC\\Memcache\\APCu",
        "instanceid": "***REMOVED SENSITIVE VALUE***",
        "passwordsalt": "***REMOVED SENSITIVE VALUE***",
        "secret": "***REMOVED SENSITIVE VALUE***",
        "trusted_domains": [
            "********"
        ],
        "datadirectory": "***REMOVED SENSITIVE VALUE***",
        "overwrite.cli.url": "http:\/\/**********",
        "overwriteprotocol": "https",
        "dbtype": "mysql",
        "version": "31.0.2.1",
        "dbname": "***REMOVED SENSITIVE VALUE***",
        "dbhost": "***REMOVED SENSITIVE VALUE***",
        "dbport": "",
        "dbtableprefix": "oc_",
        "dbuser": "***REMOVED SENSITIVE VALUE***",
        "dbpassword": "***REMOVED SENSITIVE VALUE***",
        "default_phone_region": "DE",
        "logtimezone": "UTC",
        "installed": true,
        "maintenance": false,
        "theme": "",
        "loglevel": 0,
        "mail_smtpmode": "smtp",
        "mail_smtpauthtype": "LOGIN",
        "mail_smtpsecure": "ssl",
        "mail_from_address": "***REMOVED SENSITIVE VALUE***",
        "mail_domain": "***REMOVED SENSITIVE VALUE***",
        "mail_smtphost": "***REMOVED SENSITIVE VALUE***",
        "mail_smtpport": "465",
        "mail_smtpauth": 1,
        "trashbin_retention_obligation": "1, 2",
        "updater.release.channel": "stable",
        "app_install_overwrite": [
            "end_to_end_encryption",
            "mindmaps",
            "ocsms",
            "calendar",
            "news"
        ],
        "has_rebuilt_cache": true,
        "encryption.legacy_format_support": false,
        "encryption.key_storage_migrated": false,
        "maintenance_window_start": 1,
        "forbidden_filename_basenames": [
            "con",
            "prn",
            "aux",
            "nul",
            "com0",
            "com1",
            "com2",
            "com3",
            "com4",
            "com5",
            "com6",
            "com7",
            "com8",
            "com9",
            "com\u00b9",
            "com\u00b2",
            "com\u00b3",
            "lpt0",
            "lpt1",
            "lpt2",
            "lpt3",
            "lpt4",
            "lpt5",
            "lpt6",
            "lpt7",
            "lpt8",
            "lpt9",
            "lpt\u00b9",
            "lpt\u00b2",
            "lpt\u00b3"
        ],
        "forbidden_filename_characters": [
            "<",
            ">",
            ":",
            "\"",
            "|",
            "?",
            "*",
            "\\",
            "\/"
        ],
        "forbidden_filename_extensions": [
            " ",
            ".",
            ".filepart",
            ".part"
        ]
    }
}

List of activated Apps

./occ app:list
Enabled:
  - activity: 4.0.0
  - admin_audit: 1.21.0
  - app_api: 5.0.2
  - bookmarks: 15.1.0
  - bruteforcesettings: 4.0.0
  - calendar: 5.2.0
  - cloud_federation_api: 1.14.0
  - contacts: 7.0.4
  - dashboard: 7.11.0
  - dav: 1.33.0
  - encryption: 2.19.0
  - federatedfilesharing: 1.21.0
  - files: 2.3.1
  - files_downloadlimit: 4.0.0
  - files_pdfviewer: 4.0.0
  - files_sharing: 1.23.1
  - files_trashbin: 1.21.0
  - forms: 5.0.4
  - impersonate: 2.0.0
  - logreader: 4.0.0
  - lookup_server_connector: 1.19.0
  - mail: 4.3.1
  - notes: 4.11.0
  - notifications: 4.0.0
  - oauth2: 1.19.1
  - password_policy: 3.0.0
  - privacy: 3.0.0
  - profile: 1.0.0
  - provisioning_api: 1.21.0
  - related_resources: 2.0.0
  - settings: 1.14.0
  - support: 3.0.0
  - suspicious_login: 9.0.1
  - theming: 2.6.1
  - twofactor_backupcodes: 1.20.0
  - twofactor_totp: 13.0.0-dev.0
  - updatenotification: 1.21.0
  - viewer: 4.0.0
  - webhook_listeners: 1.2.0
  - workflowengine: 2.13.0
Disabled:
  - apporder: 0.15.0 (installed 0.15.0)
  - circles: 31.0.0 (installed 29.0.0-dev)
  - comments: 1.21.0 (installed 1.2.0)
  - contactsinteraction: 1.12.0 (installed 1.9.0)
  - end_to_end_encryption: 1.16.2 (installed 1.16.2)
  - federation: 1.21.0 (installed 1.2.0)
  - files_external: 1.23.0
  - files_reminders: 1.4.0 (installed 1.2.0)
  - files_versions: 1.24.0 (installed 1.15.0)
  - firstrunwizard: 4.0.0 (installed 2.1)
  - nextcloud_announcements: 3.0.0 (installed 1.18.0)
  - photos: 4.0.0-dev.1 (installed 2.4.0)
  - recommendations: 4.0.0 (installed 2.1.0)
  - serverinfo: 3.0.0 (installed 1.19.0)
  - sharebymail: 1.21.0 (installed 1.2.0)
  - survey_client: 3.0.0 (installed 1.10.0)
  - systemtags: 1.21.1 (installed 1.6.0)
  - tasks: 0.16.1 (installed 0.16.1)
  - text: 5.0.0 (installed 3.9.1)
  - twofactor_nextcloud_notification: 5.0.0
  - user_ldap: 1.22.0
  - user_status: 1.11.0 (installed 1.2.0)
  - weather_status: 1.11.0 (installed 1.2.0)

Nextcloud Signing status

Nextcloud Logs

{"reqId":"Z91NfI5MQ76-ztnam72zGwAAAAI","level":0,"time":"2025-03-21T11:29:00+00:00","remoteAddr":"195.52.48.181","user":false,"app":"core","method":"PROPFIND","url":"/remote.php/dav/addressbooks/users/hbc66caldav/tt_privat_shared_by_*****/","message":"Session token is invalid because it does not exist","userAgent":"DAVx5/4.4.8-ose (dav4jvm; okhttp/4.12.0) Android/15","version":"31.0.2.1","exception":{"Exception":"OC\\Authentication\\Exceptions\\InvalidTokenException","Message":"Token is too short for a generated token, should be the password during basic auth","Code":0,"Trace":[{"file":"/home/www/nextcloud/lib/private/Authentication/Token/Manager.php","line":118,"function":"getToken","class":"OC\\Authentication\\Token\\PublicKeyTokenProvider","type":"->","args":["*** sensitive parameters replaced ***"]},{"file":"/home/www/nextcloud/lib/private/User/Session.php","line":749,"function":"getToken","class":"OC\\Authentication\\Token\\Manager","type":"->","args":["*** sensitive parameters replaced ***"]},{"file":"/home/www/nextcloud/lib/private/User/Session.php","line":304,"function":"validateToken","class":"OC\\User\\Session","type":"->","args":["*** sensitive parameters replaced ***"]},{"file":"/home/www/nextcloud/lib/private/User/Session.php","line":405,"function":"login","class":"OC\\User\\Session","type":"->","args":["*** sensitive parameters replaced ***"]},{"file":"/home/www/nextcloud/apps/dav/lib/Connector/Sabre/Auth.php","line":80,"function":"logClientIn","class":"OC\\User\\Session","type":"->","args":["*** sensitive parameters replaced ***"]},{"file":"/home/www/nextcloud/3rdparty/sabre/dav/lib/DAV/Auth/Backend/AbstractBasic.php","line":103,"function":"validateUserPass","class":"OCA\\DAV\\Connector\\Sabre\\Auth","type":"->","args":["*** sensitive parameters replaced ***"]},{"file":"/home/www/nextcloud/apps/dav/lib/Connector/Sabre/Auth.php","line":191,"function":"check","class":"Sabre\\DAV\\Auth\\Backend\\AbstractBasic","type":"->","args":[{"__class__":"Sabre\\HTTP\\Request"},{"__class__":"Sabre\\HTTP\\Response"}]},{"file":"/home/www/nextcloud/apps/dav/lib/Connector/Sabre/Auth.php","line":105,"function":"auth","class":"OCA\\DAV\\Connector\\Sabre\\Auth","type":"->","args":[{"__class__":"Sabre\\HTTP\\Request"},{"__class__":"Sabre\\HTTP\\Response"}]},{"file":"/home/www/nextcloud/3rdparty/sabre/dav/lib/DAV/Auth/Plugin.php","line":179,"function":"check","class":"OCA\\DAV\\Connector\\Sabre\\Auth","type":"->","args":[{"__class__":"Sabre\\HTTP\\Request"},{"__class__":"Sabre\\HTTP\\Response"}]},{"file":"/home/www/nextcloud/3rdparty/sabre/dav/lib/DAV/Auth/Plugin.php","line":135,"function":"check","class":"Sabre\\DAV\\Auth\\Plugin","type":"->","args":[{"__class__":"Sabre\\HTTP\\Request"},{"__class__":"Sabre\\HTTP\\Response"}]},{"file":"/home/www/nextcloud/3rdparty/sabre/event/lib/WildcardEmitterTrait.php","line":89,"function":"beforeMethod","class":"Sabre\\DAV\\Auth\\Plugin","type":"->","args":[{"__class__":"Sabre\\HTTP\\Request"},{"__class__":"Sabre\\HTTP\\Response"}]},{"file":"/home/www/nextcloud/3rdparty/sabre/dav/lib/DAV/Server.php","line":456,"function":"emit","class":"Sabre\\DAV\\Server","type":"->","args":["beforeMethod:PROPFIND",[{"__class__":"Sabre\\HTTP\\Request"},{"__class__":"Sabre\\HTTP\\Response"}]]},{"file":"/home/www/nextcloud/apps/dav/lib/Connector/Sabre/Server.php","line":49,"function":"invokeMethod","class":"Sabre\\DAV\\Server","type":"->","args":[{"__class__":"Sabre\\HTTP\\Request"},{"__class__":"Sabre\\HTTP\\Response"}]},{"file":"/home/www/nextcloud/apps/dav/lib/Server.php","line":397,"function":"start","class":"OCA\\DAV\\Connector\\Sabre\\Server","type":"->","args":[]},{"file":"/home/www/nextcloud/apps/dav/appinfo/v2/remote.php","line":21,"function":"exec","class":"OCA\\DAV\\Server","type":"->","args":[]},{"file":"/home/www/nextcloud/remote.php","line":145,"args":["/home/www/nextcloud/apps/dav/appinfo/v2/remote.php"],"function":"require_once"}],"File":"/home/www/nextcloud/lib/private/Authentication/Token/PublicKeyTokenProvider.php","Line":147,"message":"Session token is invalid because it does not exist","user":"hbc66caldav","exception":{},"CustomMessage":"Session token is invalid because it does not exist"}}
{"reqId":"Z91NfI5MQ76-ztnam72zGwAAAAI","level":2,"time":"2025-03-21T11:29:00+00:00","remoteAddr":"195.52.48.181","user":false,"app":"core","method":"PROPFIND","url":"/remote.php/dav/addressbooks/users/hbc66caldav/tt_privat_shared_by_*****/","message":"Login failed: 'hbc66caldav' (Remote IP: '195.52.48.181')","userAgent":"DAVx5/4.4.8-ose (dav4jvm; okhttp/4.12.0) Android/15","version":"31.0.2.1","data":{"app":"core"}}
{"reqId":"Z91NfI5MQ76-ztnam72zGwAAAAI","level":0,"time":"2025-03-21T11:29:00+00:00","remoteAddr":"195.52.48.181","user":false,"app":"webdav","method":"PROPFIND","url":"/remote.php/dav/addressbooks/users/hbc66caldav/tt_privat_shared_by_*****/","message":"No public access to this resource., AppAPIAuth has not passed, No 'Authorization: Bearer' header found. Either the client didn't send one, or the server is mis-configured, Username or password was incorrect","userAgent":"DAVx5/4.4.8-ose (dav4jvm; okhttp/4.12.0) Android/15","version":"31.0.2.1","exception":{"Exception":"Sabre\\DAV\\Exception\\NotAuthenticated","Message":"No public access to this resource., AppAPIAuth has not passed, No 'Authorization: Bearer' header found. Either the client didn't send one, or the server is mis-configured, Username or password was incorrect","Code":0,"Trace":[{"file":"/home/www/nextcloud/3rdparty/sabre/event/lib/WildcardEmitterTrait.php","line":89,"function":"beforeMethod","class":"Sabre\\DAV\\Auth\\Plugin","type":"->","args":[{"__class__":"Sabre\\HTTP\\Request"},{"__class__":"Sabre\\HTTP\\Response"}]},{"file":"/home/www/nextcloud/3rdparty/sabre/dav/lib/DAV/Server.php","line":456,"function":"emit","class":"Sabre\\DAV\\Server","type":"->","args":["beforeMethod:PROPFIND",[{"__class__":"Sabre\\HTTP\\Request"},{"__class__":"Sabre\\HTTP\\Response"}]]},{"file":"/home/www/nextcloud/apps/dav/lib/Connector/Sabre/Server.php","line":49,"function":"invokeMethod","class":"Sabre\\DAV\\Server","type":"->","args":[{"__class__":"Sabre\\HTTP\\Request"},{"__class__":"Sabre\\HTTP\\Response"}]},{"file":"/home/www/nextcloud/apps/dav/lib/Server.php","line":397,"function":"start","class":"OCA\\DAV\\Connector\\Sabre\\Server","type":"->","args":[]},{"file":"/home/www/nextcloud/apps/dav/appinfo/v2/remote.php","line":21,"function":"exec","class":"OCA\\DAV\\Server","type":"->","args":[]},{"file":"/home/www/nextcloud/remote.php","line":145,"args":["/home/www/nextcloud/apps/dav/appinfo/v2/remote.php"],"function":"require_once"}],"File":"/home/www/nextcloud/3rdparty/sabre/dav/lib/DAV/Auth/Plugin.php","Line":152,"message":"No public access to this resource., AppAPIAuth has not passed, No 'Authorization: Bearer' header found. Either the client didn't send one, or the server is mis-configured, Username or password was incorrect","exception":{},"CustomMessage":"No public access to this resource., AppAPIAuth has not passed, No 'Authorization: Bearer' header found. Either the client didn't send one, or the server is mis-configured, Username or password was incorrect"}}
{"reqId":"Z91Ne3eGUbvoaDbMFTyteQAAAAA","level":0,"time":"2025-03-21T11:29:00+00:00","remoteAddr":"195.52.48.181","user":"hbc20","app":"suspicious_login","method":"POST","url":"/index.php/login","message":"Ip 195.52.48.181 for user hbc20 is not suspicious","userAgent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:136.0) Gecko/20100101 Firefox/136.0","version":"31.0.2.1","data":{"app":"suspicious_login"}}
{"reqId":"Z91Nf5hOGPNMJdcI-Nm-dwAAAAM","level":0,"time":"2025-03-21T11:29:03+00:00","remoteAddr":"195.52.48.181","user":"hbc20","app":"core","method":"GET","url":"/index.php/login/v2/grant?direct=0&user=paul-wp&stateToken=yyyTE7jqsxk9U2gs4wcPxs21suLXnYOpU7JJimorfw1qlvV7nFGt7uLrnIDW1sLd","message":"The loading of lazy AppConfig values have been triggered by app \"core\"","userAgent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:136.0) Gecko/20100101 Firefox/136.0","version":"31.0.2.1","exception":{"Exception":"RuntimeException","Message":"The loading of lazy AppConfig values have been triggered by app \"core\"","Code":0,"Trace":[{"file":"/home/www/nextcloud/lib/private/AppConfig.php","line":442,"function":"loadConfig","class":"OC\\AppConfig","type":"->","args":["core",true]},{"file":"/home/www/nextcloud/lib/private/AppConfig.php","line":386,"function":"getTypedValue","class":"OC\\AppConfig","type":"->","args":["core","ocm_signed_request_disabled","false",true,32]},{"file":"/home/www/nextcloud/apps/cloud_federation_api/lib/Capabilities.php","line":77,"function":"getValueBool","class":"OC\\AppConfig","type":"->","args":["core","ocm_signed_request_disabled",false,true]},{"file":"/home/www/nextcloud/lib/private/CapabilitiesManager.php","line":61,"function":"getCapabilities","class":"OCA\\CloudFederationAPI\\Capabilities","type":"->","args":[]},{"file":"/home/www/nextcloud/lib/private/Template/JSConfigHelper.php","line":137,"function":"getCapabilities","class":"OC\\CapabilitiesManager","type":"->","args":[false,true]},{"file":"/home/www/nextcloud/lib/private/TemplateLayout.php","line":239,"function":"getConfig","class":"OC\\Template\\JSConfigHelper","type":"->","args":[]},{"file":"/home/www/nextcloud/lib/private/legacy/OC_Template.php","line":120,"function":"__construct","class":"OC\\TemplateLayout","type":"->","args":["guest","core"]},{"file":"/home/www/nextcloud/lib/public/AppFramework/Http/TemplateResponse.php","line":189,"function":"fetchPage","class":"OC_Template","type":"->","args":[{"userId":"hbc20","userDisplayName":"hbc20","client":"ppanter2 (Desktop Client - Windows)","instanceName":"Herkub\u00e4r Virtimage","urlGenerator":{"__class__":"OC\\URLGenerator","userSession":{"__class__":"OC\\User\\Session"}},"stateToken":"yyyTE7jqsxk9U2gs4wcPxs21suLXnYOpU7JJimorfw1qlvV7nFGt7uLrnIDW1sLd","direct":0}]},{"file":"/home/www/nextcloud/lib/private/AppFramework/Http/Dispatcher.php","line":159,"function":"render","class":"OCP\\AppFramework\\Http\\TemplateResponse","type":"->","args":[]},{"file":"/home/www/nextcloud/lib/private/AppFramework/App.php","line":161,"function":"dispatch","class":"OC\\AppFramework\\Http\\Dispatcher","type":"->","args":[{"__class__":"OC\\Core\\Controller\\ClientFlowLoginV2Controller"},"grantPage"]},{"file":"/home/www/nextcloud/lib/private/Route/Router.php","line":307,"function":"main","class":"OC\\AppFramework\\App","type":"::","args":["OC\\Core\\Controller\\ClientFlowLoginV2Controller","grantPage",{"__class__":"OC\\AppFramework\\DependencyInjection\\DIContainer"},{"_route":"core.clientflowloginv2.grantpage"}]},{"file":"/home/www/nextcloud/lib/base.php","line":1025,"function":"match","class":"OC\\Route\\Router","type":"->","args":["/login/v2/grant"]},{"file":"/home/www/nextcloud/index.php","line":24,"function":"handleRequest","class":"OC","type":"::","args":[]}],"File":"/home/www/nextcloud/lib/private/AppConfig.php","Line":1208,"message":"The loading of lazy AppConfig values have been triggered by app \"core\"","exception":{},"CustomMessage":"The loading of lazy AppConfig values have been triggered by app \"core\""}}
{"reqId":"Z91NfxWchmbVvxYD8clWEAAAAAE","level":0,"time":"2025-03-21T11:29:04+00:00","remoteAddr":"195.52.48.181","user":"hbc20","app":"core","method":"GET","url":"/index.php/apps/theming/image/background?v=8","message":"The loading of lazy AppConfig values have been triggered by app \"core\"","userAgent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:136.0) Gecko/20100101 Firefox/136.0","version":"31.0.2.1","exception":{"Exception":"RuntimeException","Message":"The loading of lazy AppConfig values have been triggered by app \"core\"","Code":0,"Trace":[{"file":"/home/www/nextcloud/lib/private/AppConfig.php","line":442,"function":"loadConfig","class":"OC\\AppConfig","type":"->","args":["core",true]},{"file":"/home/www/nextcloud/lib/private/AppConfig.php","line":386,"function":"getTypedValue","class":"OC\\AppConfig","type":"->","args":["core","ocm_signed_request_disabled","false",true,32]},{"file":"/home/www/nextcloud/apps/cloud_federation_api/lib/Capabilities.php","line":77,"function":"getValueBool","class":"OC\\AppConfig","type":"->","args":["core","ocm_signed_request_disabled",false,true]},{"file":"/home/www/nextcloud/lib/private/CapabilitiesManager.php","line":61,"function":"getCapabilities","class":"OCA\\CloudFederationAPI\\Capabilities","type":"->","args":[]},{"file":"/home/www/nextcloud/lib/private/Template/JSConfigHelper.php","line":137,"function":"getCapabilities","class":"OC\\CapabilitiesManager","type":"->","args":[false,true]},{"file":"/home/www/nextcloud/lib/private/TemplateLayout.php","line":239,"function":"getConfig","class":"OC\\Template\\JSConfigHelper","type":"->","args":[]},{"file":"/home/www/nextcloud/lib/private/legacy/OC_Template.php","line":120,"function":"__construct","class":"OC\\TemplateLayout","type":"->","args":["guest","core"]},{"file":"/home/www/nextcloud/lib/public/AppFramework/Http/TemplateResponse.php","line":189,"function":"fetchPage","class":"OC_Template","type":"->","args":[[]]},{"file":"/home/www/nextcloud/lib/private/AppFramework/Http/Dispatcher.php","line":159,"function":"render","class":"OCP\\AppFramework\\Http\\TemplateResponse","type":"->","args":[]},{"file":"/home/www/nextcloud/lib/private/AppFramework/App.php","line":161,"function":"dispatch","class":"OC\\AppFramework\\Http\\Dispatcher","type":"->","args":[{"__class__":"OCA\\Theming\\Controller\\ThemingController"},"getImage"]},{"file":"/home/www/nextcloud/lib/private/Route/Router.php","line":307,"function":"main","class":"OC\\AppFramework\\App","type":"::","args":["OCA\\Theming\\Controller\\ThemingController","getImage",{"__class__":"OC\\AppFramework\\DependencyInjection\\DIContainer"},{"key":"background","_route":"theming.theming.getimage"}]},{"file":"/home/www/nextcloud/lib/base.php","line":1025,"function":"match","class":"OC\\Route\\Router","type":"->","args":["/apps/theming/image/background"]},{"file":"/home/www/nextcloud/index.php","line":24,"function":"handleRequest","class":"OC","type":"::","args":[]}],"File":"/home/www/nextcloud/lib/private/AppConfig.php","Line":1208,"message":"The loading of lazy AppConfig values have been triggered by app \"core\"","exception":{},"CustomMessage":"The loading of lazy AppConfig values have been triggered by app \"core\""}}
{"reqId":"Z91NgA5bLTirz0P3eeyP4AAAAAU","level":0,"time":"2025-03-21T11:29:04+00:00","remoteAddr":"195.52.48.181","user":"hbc20","app":"core","method":"GET","url":"/index.php/apps/theming/image/background?v=8","message":"The loading of lazy AppConfig values have been triggered by app \"core\"","userAgent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:136.0) Gecko/20100101 Firefox/136.0","version":"31.0.2.1","exception":{"Exception":"RuntimeException","Message":"The loading of lazy AppConfig values have been triggered by app \"core\"","Code":0,"Trace":[{"file":"/home/www/nextcloud/lib/private/AppConfig.php","line":442,"function":"loadConfig","class":"OC\\AppConfig","type":"->","args":["core",true]},{"file":"/home/www/nextcloud/lib/private/AppConfig.php","line":386,"function":"getTypedValue","class":"OC\\AppConfig","type":"->","args":["core","ocm_signed_request_disabled","false",true,32]},{"file":"/home/www/nextcloud/apps/cloud_federation_api/lib/Capabilities.php","line":77,"function":"getValueBool","class":"OC\\AppConfig","type":"->","args":["core","ocm_signed_request_disabled",false,true]},{"file":"/home/www/nextcloud/lib/private/CapabilitiesManager.php","line":61,"function":"getCapabilities","class":"OCA\\CloudFederationAPI\\Capabilities","type":"->","args":[]},{"file":"/home/www/nextcloud/lib/private/Template/JSConfigHelper.php","line":137,"function":"getCapabilities","class":"OC\\CapabilitiesManager","type":"->","args":[false,true]},{"file":"/home/www/nextcloud/lib/private/TemplateLayout.php","line":239,"function":"getConfig","class":"OC\\Template\\JSConfigHelper","type":"->","args":[]},{"file":"/home/www/nextcloud/lib/private/legacy/OC_Template.php","line":120,"function":"__construct","class":"OC\\TemplateLayout","type":"->","args":["guest","core"]},{"file":"/home/www/nextcloud/lib/public/AppFramework/Http/TemplateResponse.php","line":189,"function":"fetchPage","class":"OC_Template","type":"->","args":[[]]},{"file":"/home/www/nextcloud/lib/private/AppFramework/Http/Dispatcher.php","line":159,"function":"render","class":"OCP\\AppFramework\\Http\\TemplateResponse","type":"->","args":[]},{"file":"/home/www/nextcloud/lib/private/AppFramework/App.php","line":161,"function":"dispatch","class":"OC\\AppFramework\\Http\\Dispatcher","type":"->","args":[{"__class__":"OCA\\Theming\\Controller\\ThemingController"},"getImage"]},{"file":"/home/www/nextcloud/lib/private/Route/Router.php","line":307,"function":"main","class":"OC\\AppFramework\\App","type":"::","args":["OCA\\Theming\\Controller\\ThemingController","getImage",{"__class__":"OC\\AppFramework\\DependencyInjection\\DIContainer"},{"key":"background","_route":"theming.theming.getimage"}]},{"file":"/home/www/nextcloud/lib/base.php","line":1025,"function":"match","class":"OC\\Route\\Router","type":"->","args":["/apps/theming/image/background"]},{"file":"/home/www/nextcloud/index.php","line":24,"function":"handleRequest","class":"OC","type":"::","args":[]}],"File":"/home/www/nextcloud/lib/private/AppConfig.php","Line":1208,"message":"The loading of lazy AppConfig values have been triggered by app \"core\"","exception":{},"CustomMessage":"The loading of lazy AppConfig values have been triggered by app \"core\""}}
{"reqId":"Z91NgI5MQ76-ztnam72zHAAAAAI","level":0,"time":"2025-03-21T11:29:04+00:00","remoteAddr":"195.52.48.181","user":"hbc20","app":"no app in context","method":"GET","url":"/index.php/apps/encryption/ajax/getStatus","message":"Session token invalidated before logout","userAgent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:136.0) Gecko/20100101 Firefox/136.0","version":"31.0.2.1","data":{"user":"hbc20"}}
{"reqId":"Z91NgI5MQ76-ztnam72zHAAAAAI","level":0,"time":"2025-03-21T11:29:04+00:00","remoteAddr":"195.52.48.181","user":"hbc20","app":"no app in context","method":"GET","url":"/index.php/apps/encryption/ajax/getStatus","message":"Logging out","userAgent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:136.0) Gecko/20100101 Firefox/136.0","version":"31.0.2.1","data":{"user":"hbc20"}}
{"reqId":"Z91NhJhOGPNMJdcI-Nm-eAAAAAM","level":0,"time":"2025-03-21T11:29:08+00:00","remoteAddr":"195.52.48.181","user":false,"app":"no app in context","method":"POST","url":"/index.php/login/v2/grant","message":"Current user is not logged in","userAgent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:136.0) Gecko/20100101 Firefox/136.0","version":"31.0.2.1","exception":{"Exception":"OC\\AppFramework\\Middleware\\Security\\Exceptions\\NotLoggedInException","Message":"Current user is not logged in","Code":401,"Trace":[{"file":"/home/www/nextcloud/lib/private/AppFramework/Middleware/MiddlewareDispatcher.php","line":73,"function":"beforeController","class":"OC\\AppFramework\\Middleware\\Security\\SecurityMiddleware","type":"->","args":[{"__class__":"OC\\Core\\Controller\\ClientFlowLoginV2Controller"},"generateAppPassword"]},{"file":"/home/www/nextcloud/lib/private/AppFramework/Http/Dispatcher.php","line":106,"function":"beforeController","class":"OC\\AppFramework\\Middleware\\MiddlewareDispatcher","type":"->","args":[{"__class__":"OC\\Core\\Controller\\ClientFlowLoginV2Controller"},"generateAppPassword"]},{"file":"/home/www/nextcloud/lib/private/AppFramework/App.php","line":161,"function":"dispatch","class":"OC\\AppFramework\\Http\\Dispatcher","type":"->","args":[{"__class__":"OC\\Core\\Controller\\ClientFlowLoginV2Controller"},"generateAppPassword"]},{"file":"/home/www/nextcloud/lib/private/Route/Router.php","line":307,"function":"main","class":"OC\\AppFramework\\App","type":"::","args":["OC\\Core\\Controller\\ClientFlowLoginV2Controller","generateAppPassword",{"__class__":"OC\\AppFramework\\DependencyInjection\\DIContainer"},{"_route":"core.clientflowloginv2.generateapppassword"}]},{"file":"/home/www/nextcloud/lib/base.php","line":1025,"function":"match","class":"OC\\Route\\Router","type":"->","args":["/login/v2/grant"]},{"file":"/home/www/nextcloud/index.php","line":24,"function":"handleRequest","class":"OC","type":"::","args":[]}],"File":"/home/www/nextcloud/lib/private/AppFramework/Middleware/Security/SecurityMiddleware.php","Line":134,"message":"Current user is not logged in","exception":{},"CustomMessage":"Current user is not logged in"}}
{"reqId":"Z91NhA5bLTirz0P3eeyP4QAAAAU","level":0,"time":"2025-03-21T11:29:08+00:00","remoteAddr":"195.52.48.181","user":false,"app":"bruteForce","method":"GET","url":"/index.php/login?redirect_url=/index.php/login/v2/grant","message":"The loading of lazy AppConfig values have been triggered by app \"bruteForce\"","userAgent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:136.0) Gecko/20100101 Firefox/136.0","version":"31.0.2.1","exception":{"Exception":"RuntimeException","Message":"The loading of lazy AppConfig values have been triggered by app \"bruteForce\"","Code":0,"Trace":[{"file":"/home/www/nextcloud/lib/private/AppConfig.php","line":1193,"function":"loadConfig","class":"OC\\AppConfig","type":"->","args":["bruteForce",null]},{"file":"/home/www/nextcloud/lib/private/AppConfig.php","line":106,"function":"loadConfigAll","class":"OC\\AppConfig","type":"->","args":["bruteForce"]},{"file":"/home/www/nextcloud/lib/private/Security/Ip/BruteforceAllowList.php","line":39,"function":"getKeys","class":"OC\\AppConfig","type":"->","args":["bruteForce"]},{"file":"/home/www/nextcloud/lib/private/Security/Bruteforce/Throttler.php","line":86,"function":"isBypassListed","class":"OC\\Security\\Ip\\BruteforceAllowList","type":"->","args":["195.52.48.181"]},{"file":"/home/www/nextcloud/lib/private/Security/Bruteforce/Throttler.php","line":112,"function":"isBypassListed","class":"OC\\Security\\Bruteforce\\Throttler","type":"->","args":["195.52.48.181"]},{"file":"/home/www/nextcloud/lib/private/Security/Bruteforce/Throttler.php","line":129,"function":"getAttempts","class":"OC\\Security\\Bruteforce\\Throttler","type":"->","args":["195.52.48.181",""]},{"file":"/home/www/nextcloud/core/Controller/LoginController.php","line":153,"function":"getDelay","class":"OC\\Security\\Bruteforce\\Throttler","type":"->","args":["195.52.48.181"]},{"file":"/home/www/nextcloud/lib/private/AppFramework/Http/Dispatcher.php","line":200,"function":"showLoginForm","class":"OC\\Core\\Controller\\LoginController","type":"->","args":[null,"/index.php/login/v2/grant"]},{"file":"/home/www/nextcloud/lib/private/AppFramework/Http/Dispatcher.php","line":114,"function":"executeController","class":"OC\\AppFramework\\Http\\Dispatcher","type":"->","args":[{"__class__":"OC\\Core\\Controller\\LoginController"},"showLoginForm"]},{"file":"/home/www/nextcloud/lib/private/AppFramework/App.php","line":161,"function":"dispatch","class":"OC\\AppFramework\\Http\\Dispatcher","type":"->","args":[{"__class__":"OC\\Core\\Controller\\LoginController"},"showLoginForm"]},{"file":"/home/www/nextcloud/lib/private/Route/Router.php","line":307,"function":"main","class":"OC\\AppFramework\\App","type":"::","args":["OC\\Core\\Controller\\LoginController","showLoginForm",{"__class__":"OC\\AppFramework\\DependencyInjection\\DIContainer"},{"_route":"core.login.showloginform"}]},{"file":"/home/www/nextcloud/lib/base.php","line":1025,"function":"match","class":"OC\\Route\\Router","type":"->","args":["/login"]},{"file":"/home/www/nextcloud/index.php","line":24,"function":"handleRequest","class":"OC","type":"::","args":[]}],"File":"/home/www/nextcloud/lib/private/AppConfig.php","Line":1208,"message":"The loading of lazy AppConfig values have been triggered by app \"bruteForce\"","exception":{},"CustomMessage":"The loading of lazy AppConfig values have been triggered by app \"bruteForce\""}}
{"reqId":"Z91NhI5MQ76-ztnam72zHQAAAAI","level":0,"time":"2025-03-21T11:29:08+00:00","remoteAddr":"195.52.48.181","user":false,"app":"core","method":"GET","url":"/index.php/apps/theming/image/background?v=8","message":"The loading of lazy AppConfig values have been triggered by app \"core\"","userAgent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:136.0) Gecko/20100101 Firefox/136.0","version":"31.0.2.1","exception":{"Exception":"RuntimeException","Message":"The loading of lazy AppConfig values have been triggered by app \"core\"","Code":0,"Trace":[{"file":"/home/www/nextcloud/lib/private/AppConfig.php","line":442,"function":"loadConfig","class":"OC\\AppConfig","type":"->","args":["core",true]},{"file":"/home/www/nextcloud/lib/private/AppConfig.php","line":386,"function":"getTypedValue","class":"OC\\AppConfig","type":"->","args":["core","ocm_signed_request_disabled","false",true,32]},{"file":"/home/www/nextcloud/apps/cloud_federation_api/lib/Capabilities.php","line":77,"function":"getValueBool","class":"OC\\AppConfig","type":"->","args":["core","ocm_signed_request_disabled",false,true]},{"file":"/home/www/nextcloud/lib/private/CapabilitiesManager.php","line":61,"function":"getCapabilities","class":"OCA\\CloudFederationAPI\\Capabilities","type":"->","args":[]},{"file":"/home/www/nextcloud/lib/private/Template/JSConfigHelper.php","line":137,"function":"getCapabilities","class":"OC\\CapabilitiesManager","type":"->","args":[false,true]},{"file":"/home/www/nextcloud/lib/private/TemplateLayout.php","line":239,"function":"getConfig","class":"OC\\Template\\JSConfigHelper","type":"->","args":[]},{"file":"/home/www/nextcloud/lib/private/legacy/OC_Template.php","line":120,"function":"__construct","class":"OC\\TemplateLayout","type":"->","args":["guest","core"]},{"file":"/home/www/nextcloud/lib/public/AppFramework/Http/TemplateResponse.php","line":189,"function":"fetchPage","class":"OC_Template","type":"->","args":[[]]},{"file":"/home/www/nextcloud/lib/private/AppFramework/Http/Dispatcher.php","line":159,"function":"render","class":"OCP\\AppFramework\\Http\\TemplateResponse","type":"->","args":[]},{"file":"/home/www/nextcloud/lib/private/AppFramework/App.php","line":161,"function":"dispatch","class":"OC\\AppFramework\\Http\\Dispatcher","type":"->","args":[{"__class__":"OCA\\Theming\\Controller\\ThemingController"},"getImage"]},{"file":"/home/www/nextcloud/lib/private/Route/Router.php","line":307,"function":"main","class":"OC\\AppFramework\\App","type":"::","args":["OCA\\Theming\\Controller\\ThemingController","getImage",{"__class__":"OC\\AppFramework\\DependencyInjection\\DIContainer"},{"key":"background","_route":"theming.theming.getimage"}]},{"file":"/home/www/nextcloud/lib/base.php","line":1025,"function":"match","class":"OC\\Route\\Router","type":"->","args":["/apps/theming/image/background"]},{"file":"/home/www/nextcloud/index.php","line":24,"function":"handleRequest","class":"OC","type":"::","args":[]}],"File":"/home/www/nextcloud/lib/private/AppConfig.php","Line":1208,"message":"The loading of lazy AppConfig values have been triggered by app \"core\"","exception":{},"CustomMessage":"The loading of lazy AppConfig values have been triggered by app \"core\""}}
{"reqId":"Z91NhHeGUbvoaDbMFTytewAAAAA","level":0,"time":"2025-03-21T11:29:09+00:00","remoteAddr":"195.52.48.181","user":false,"app":"core","method":"GET","url":"/index.php/apps/theming/image/background?v=8","message":"The loading of lazy AppConfig values have been triggered by app \"core\"","userAgent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:136.0) Gecko/20100101 Firefox/136.0","version":"31.0.2.1","exception":{"Exception":"RuntimeException","Message":"The loading of lazy AppConfig values have been triggered by app \"core\"","Code":0,"Trace":[{"file":"/home/www/nextcloud/lib/private/AppConfig.php","line":442,"function":"loadConfig","class":"OC\\AppConfig","type":"->","args":["core",true]},{"file":"/home/www/nextcloud/lib/private/AppConfig.php","line":386,"function":"getTypedValue","class":"OC\\AppConfig","type":"->","args":["core","ocm_signed_request_disabled","false",true,32]},{"file":"/home/www/nextcloud/apps/cloud_federation_api/lib/Capabilities.php","line":77,"function":"getValueBool","class":"OC\\AppConfig","type":"->","args":["core","ocm_signed_request_disabled",false,true]},{"file":"/home/www/nextcloud/lib/private/CapabilitiesManager.php","line":61,"function":"getCapabilities","class":"OCA\\CloudFederationAPI\\Capabilities","type":"->","args":[]},{"file":"/home/www/nextcloud/lib/private/Template/JSConfigHelper.php","line":137,"function":"getCapabilities","class":"OC\\CapabilitiesManager","type":"->","args":[false,true]},{"file":"/home/www/nextcloud/lib/private/TemplateLayout.php","line":239,"function":"getConfig","class":"OC\\Template\\JSConfigHelper","type":"->","args":[]},{"file":"/home/www/nextcloud/lib/private/legacy/OC_Template.php","line":120,"function":"__construct","class":"OC\\TemplateLayout","type":"->","args":["guest","core"]},{"file":"/home/www/nextcloud/lib/public/AppFramework/Http/TemplateResponse.php","line":189,"function":"fetchPage","class":"OC_Template","type":"->","args":[[]]},{"file":"/home/www/nextcloud/lib/private/AppFramework/Http/Dispatcher.php","line":159,"function":"render","class":"OCP\\AppFramework\\Http\\TemplateResponse","type":"->","args":[]},{"file":"/home/www/nextcloud/lib/private/AppFramework/App.php","line":161,"function":"dispatch","class":"OC\\AppFramework\\Http\\Dispatcher","type":"->","args":[{"__class__":"OCA\\Theming\\Controller\\ThemingController"},"getImage"]},{"file":"/home/www/nextcloud/lib/private/Route/Router.php","line":307,"function":"main","class":"OC\\AppFramework\\App","type":"::","args":["OCA\\Theming\\Controller\\ThemingController","getImage",{"__class__":"OC\\AppFramework\\DependencyInjection\\DIContainer"},{"key":"background","_route":"theming.theming.getimage"}]},{"file":"/home/www/nextcloud/lib/base.php","line":1025,"function":"match","class":"OC\\Route\\Router","type":"->","args":["/apps/theming/image/background"]},{"file":"/home/www/nextcloud/index.php","line":24,"function":"handleRequest","class":"OC","type":"::","args":[]}],"File":"/home/www/nextcloud/lib/private/AppConfig.php","Line":1208,"message":"The loading of lazy AppConfig values have been triggered by app \"core\"","exception":{},"CustomMessage":"The loading of lazy AppConfig values have been triggered by app \"core\""}}
{"reqId":"Z91NixWchmbVvxYD8clWEgAAAAE","level":0,"time":"2025-03-21T11:29:15+00:00","remoteAddr":"195.52.48.181","user":"*****","app":"app_api","method":"GET","url":"/ocs/v2.php/apps/notifications/api/v2/notifications","message":"ExApp \"dav\" not found.","userAgent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36","version":"31.0.2.1","data":{"app":"app_api"}}
{"reqId":"Z91NixWchmbVvxYD8clWEgAAAAE","level":0,"time":"2025-03-21T11:29:15+00:00","remoteAddr":"195.52.48.181","user":"*****","app":"app_api","method":"GET","url":"/ocs/v2.php/apps/notifications/api/v2/notifications","message":"ExApp \"dav\" not found.","userAgent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36","version":"31.0.2.1","data":{"app":"app_api"}}
{"reqId":"Z91NixWchmbVvxYD8clWEgAAAAE","level":0,"time":"2025-03-21T11:29:15+00:00","remoteAddr":"195.52.48.181","user":"*****","app":"app_api","method":"GET","url":"/ocs/v2.php/apps/notifications/api/v2/notifications","message":"ExApp \"dav\" not found.","userAgent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36","version":"31.0.2.1","data":{"app":"app_api"}}
{"reqId":"Z91NixWchmbVvxYD8clWEgAAAAE","level":0,"time":"2025-03-21T11:29:15+00:00","remoteAddr":"195.52.48.181","user":"*****","app":"app_api","method":"GET","url":"/ocs/v2.php/apps/notifications/api/v2/notifications","message":"ExApp \"suspicious_login\" not found.","userAgent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36","version":"31.0.2.1","data":{"app":"app_api"}}
{"reqId":"Z91NixWchmbVvxYD8clWEgAAAAE","level":0,"time":"2025-03-21T11:29:15+00:00","remoteAddr":"195.52.48.181","user":"*****","app":"app_api","method":"GET","url":"/ocs/v2.php/apps/notifications/api/v2/notifications","message":"ExApp \"suspicious_login\" not found.","userAgent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36","version":"31.0.2.1","data":{"app":"app_api"}}

Additional info

Android, Pixel7 pro, Android 15, Nextcloud App 3.31.0
Windows Client 3.16.2, Windows10

[c-jung-kanhaeuser]

I have exactly the same issue with the Nextcloud Apps on MacOS (App Version: 3.16.2) and iOS (App Version: 6.4.0).
Nextcloud Server version: 31.0.2. Server side encryption is activated.

If I login a user with the web front end reachable via https://mydomain.tld/index.php/login
-> I can login all users. No error.

But when I try to add an account to the Nextcloud apps (iOS or MacOS does not matter) following happens:

1. Press Login and enter the server address
2. a website is opened in the browser where you can only press login (URL now is different with a V2 in the address https://mydomain.tld/index.php/login/v2/flow?user=&direct=0
3. Enter account name and password
4. The "Account access" page appears with the "Grant Access" button but the warning in the top right banner with: "Encryption App is enabled, but your keys are not initialized. Please log-out and log-in again."
5. Press "Grant access" -> again a login page is shown (https://mydomain.tld/index.php/login?redirect_url=/index.php/login/v2/grant
6. Add account name and password again and login
7. Error message: "Access forbidden - State token missing" and again the warning in the top right with "Encryption App is enabled, but your keys are not initialized. Please log-out and log-in again."

So the access for the app cannot be granted.

I also created a new test user. Same behavior. Can login via webpage but does not get the login granted via the nextcloud app login workflow.

[SystemKeeper]

• @susnux Is it possible that fix(encryption): Listen for user login and logout to set encryption key #51310 does not account for login via loginflow?

[Schneehexe]

Do we know a workaround? I'm running out of memory on my devices because I can't log in and synchronize them.

[tobiasKaminsky]

@Schneehexe a workaround that I tested during debugging is

• log in with your system default browser on your client (e.g. Firefox on Win or Chrome on Android)
• then open client (Desktop, Android)
• set up server url
• click "grant access" -> you should directly see it, as you are already logged in
  --> client work

Another workaround is:

• log in with any browser
• go to top left user icon -> personal settings -> security
• add an app token under "devices & sessions"
  --> click QR code to scan it via Mobile
  --> on Desktop on first login page you can select "login with app generated password"

[Schneehexe]

Hello Tobias. Did the first of your Workarounds persist about the next update? Greetings. Am 24. März 2025 18:48:19 MEZ schrieb Tobias Kaminsky ***@***.***>:

tobiasKaminsky left a comment (nextcloud/server#51627) @Schneehexe a workaround that I tested during debugging is - log in with your system default browser on your client (e.g. Firefox on Win or Chrome on Android) - then open client (Desktop, Android) - set up server url - click "grant access" -> you should directly see it, as you are already logged in --> client work Another workaround is: - log in with any browser - go to top left user icon -> personal settings -> security - add an app token under "devices & sessions" --> click QR code to scan it via Mobile --> on Desktop on first login page you can select "login with app generated password" -- Reply to this email directly or view it on GitHub: #51627 (comment) You are receiving this because you were mentioned. Message ID: ***@***.***>

-- Diese Nachricht wurde von meinem Android-Gerät mit K-9 Mail gesendet.

[tobiasKaminsky]

As soon as your client is logged in, it will stay logged in, I think.
I do not remember any way how the server can terminate an existing app token.
So "yes should work".