LDAP quota-sync does not work anymore #11026
Comments
just the nextcloud.log.
Initially, on login, and regularly per background job
Nope, only by logging in. |
|
What I did not know is, that the users have to log in to see their synced/correct ldap-quota as admin on the user-site. So the sync of ldap-quota works correctly - sorry... But another problem - situation:
--> Will the new quota for this user be synced without logging into nextcloud-website - just by using the sync-client? |
|
The sync client also needs to login. The question is how regularly this happens. Latest with the background job this would be synced. However, on initial fetch this should be picked up, too. But there were other reports about the email not being available after first sync. Might be connected, still need to look into it. |
MorrisJobke
added
bug
0. Needs triage
|
Hi @mayerthomas |
Hey @skjnldsv |
|
cc @blizzz :) |
for verification you can check indirectly on the users page as admin. |
Thats right, but only after the quota is updated on the users page. This only happens when the corresponding users logs in. |
|
@mayerthomas there's a sync in a background happening that attempts to update every user twice a day |
|
This does not seem to happen in my case. Is there a possibility to log the results of the background-job? |
|
Is the background job set to cron or ajax? |
|
It is set to cron and seems to be working. (Last time run 7 minutes ago ;-) ) |
|
If anything is written then to the regular log file, nextcloud.log. Setting the loglevel to 0 (=debug) in the config.php increases verbosity. |
|
This issue has been automatically marked as stale because it has not had recent activity and seems to be missing some essential information. It will be closed if no further activity occurs. Thank you for your contributions. |
ghost
added
the
Steps to reproduce
Expected behaviour
User gets the 1 GB as quota-limit
Actual behaviour
Everything works as expected (log in, group-association, ...) but when I look at the users as admin in nextcloud i can not see the quota from samba-server. This had been working for a long time but now seems to be broken.
Questions on that:
Server configuration
Operating system: Debian 9
Web server: Apache
Database: MariaDB
PHP version: 7
Nextcloud version: 13.0.6
Updated from an older Nextcloud/ownCloud or fresh install: updated
Where did you install Nextcloud from: original files from nextcloud.com
Signing status:
Signing status
No errors have been found.List of activated apps:
App list
Enabled:
Disabled:
Nextcloud configuration:
Config report
{
"system": {
"passwordsalt": "REMOVED SENSITIVE VALUE",
"secret": "REMOVED SENSITIVE VALUE",
"trusted_domains": [
"nextcloud.rsarnstorf.de",
"www.nextcloud.rsarnstorf.de",
"10.1.1.6"
],
"datadirectory": "REMOVED SENSITIVE VALUE",
"overwrite.cli.url": "https://nextcloud.rsarnstorf.de",
"dbtype": "mysql",
"version": "13.0.6.1",
"dbname": "REMOVED SENSITIVE VALUE",
"dbhost": "REMOVED SENSITIVE VALUE",
"dbport": "",
"dbtableprefix": "oc_",
"dbuser": "REMOVED SENSITIVE VALUE",
"dbpassword": "REMOVED SENSITIVE VALUE",
"installed": true,
"htaccess.RewriteBase": "/",
"ldapUserCleanupInterval": 15,
"memcache.local": "\OC\Memcache\APCu",
"share_folder": "/Mit mir geteilt",
"ldapIgnoreNamingRules": false,
"ldapProviderFactory": "\OCA\User_LDAP\LDAPProviderFactory",
"loglevel": 2,
"maintenance": false,
"instanceid": "REMOVED SENSITIVE VALUE",
"mail_from_address": "REMOVED SENSITIVE VALUE",
"mail_smtpmode": "php",
"mail_smtpauthtype": "LOGIN",
"mail_domain": "REMOVED SENSITIVE VALUE",
"updater.release.channel": "stable",
"trusted_proxies": "REMOVED SENSITIVE VALUE",
"forwarded_for_headers": [
"HTTP_X_FORWARDED_FOR"
],
"updater.secret": "REMOVED SENSITIVE VALUE"
}
}
Are you using external storage, if yes which one: local/smb/sftp/...
no
Are you using encryption: yes/no
no
Are you using an external user-backend, if yes which one: LDAP/ActiveDirectory/Webdav/...
ldap / samba 4
LDAP configuration (delete this part if not used)
LDAP config
+-------------------------------+---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+ | Configuration | s01 | +-------------------------------+---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+ | hasMemberOfFilterSupport | 1 | | hasPagedResultSupport | | | homeFolderNamingRule | | | lastJpegPhotoLookup | 0 | | ldapAgentName | CN=Administrator,CN=Users,DC=XXX,DC=intra | | ldapAgentPassword | *** | | ldapAttributesForGroupSearch | | | ldapAttributesForUserSearch | | | ldapBackupHost | | | ldapBackupPort | | | ldapBase | DC=XXX,DC=intra | | ldapBaseGroups | OU=Groups,OU=School,DC=XXX,DC=intra | | ldapBaseUsers | OU=Users,OU=School,DC=XXX,DC=intra | | ldapCacheTTL | 600 | | ldapConfigurationActive | 1 | | ldapDefaultPPolicyDN | | | ldapDynamicGroupMemberURL | | | ldapEmailAttribute | mail | | ldapExperiencedAdmin | 1 | | ldapExpertUUIDGroupAttr | | | ldapExpertUUIDUserAttr | | | ldapExpertUsernameAttr | userPrincipalName | | ldapGidNumber | gidNumber | | ldapGroupDisplayName | cn | | ldapGroupFilter | (&(|(objectclass=group))(|(cn=5a)(cn=5b)(cn=5c)(cn=5d)(cn=5e)(cn=5f)(cn=6a)(cn=6b)(cn=6c)(cn=6d)(cn=6e)(cn=6f)(cn=7a)(cn=7b)(cn=7c)(cn=7d)(cn=7e)(cn=7f)(cn=8a)(cn=8b)(cn=8c)(cn=8d)(cn=8e)(cn=8f)(cn=9a)(cn=9b)(cn=9c)(cn=9d)(cn=9e)(cn=9f)(cn=10a)(cn=10b)(cn=10c)(cn=10d)(cn=10e)(cn=10f)(cn=lehrer)(cn=schueler)(cn=schulleitung)(cn=erweiterte-schulleitung))) | | ldapGroupFilterGroups | 5a;5b;5c;5d;5e;5f;6a;6b;6c;6d;6e;6f;7a;7b;7c;7d;7e;7f;8a;8b;8c;8d;8e;8f;9a;9b;9c;9d;9e;9f;10a;10b;10c;10d;10e;10f;lehrer;schueler;schulleitung;erweiterte-schulleitung | | ldapGroupFilterMode | 0 | | ldapGroupFilterObjectclass | group | | ldapGroupMemberAssocAttr | member | | ldapHost | 10.1.1.5 | | ldapIgnoreNamingRules | | | ldapLoginFilter | (&(&(|(objectclass=person)))(samaccountname=%uid)) | | ldapLoginFilterAttributes | | | ldapLoginFilterEmail | 0 | | ldapLoginFilterMode | 0 | | ldapLoginFilterUsername | 1 | | ldapNestedGroups | 0 | | ldapOverrideMainServer | | | ldapPagingSize | 0 | | ldapPort | 389 | | ldapQuotaAttribute | postOfficeBox | | ldapQuotaDefault | 500 MB | | ldapTLS | 0 | | ldapUserAvatarRule | default | | ldapUserDisplayName | displayname | | ldapUserDisplayName2 | | | ldapUserFilter | (&(|(objectclass=person))) | | ldapUserFilterGroups | | | ldapUserFilterMode | 0 | | ldapUserFilterObjectclass | person | | ldapUuidGroupAttribute | auto | | ldapUuidUserAttribute | auto | | turnOffCertCheck | 0 | | turnOnPasswordChange | 0 | | useMemberOfToDetectMembership | 1 | +-------------------------------+---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+The text was updated successfully, but these errors were encountered: