-
-
Notifications
You must be signed in to change notification settings - Fork 4k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
'Encryption App is enabled, but your keys are not initialized. Please log-out and log-in again.' #4797
Comments
Right. We encrypt and save the password now: #2044. |
I can confirm the warning showing up as soon as the original session is replaced by the remembered one. My reproduction steps were
|
I think the issue here is that the encryption app relies on the server/lib/private/User/Session.php Line 795 in 9ad57ca
|
Possible fixes:
|
On a second thought, the encryption app could just use the login credential store. That should™️ fix the issue. |
cc @nextcloud/encryption if someone could give me some pointers I can try to fix it. As far as I can see, the current implementation initializes keys right when the user logs in. With the credential store we could delay this and only decrypt on demand (because we can retrieve the password at any time). Not sure where to add that though. |
I noticed with the Nextcloud 12 beta that I had a "stay logged in" button again, despite my instance having encryption enabled. Figuring there must have been a change to preserve my keys without needing to log in every session, I clicked it and logged in. When I opened my instance roughly 12 hours later, I saw this notification:
It doesn't seem to actually prevent me from interacting with most of my files and data, however, so I'm a bit confused. However, when opening Notes, this screen appears:
I'm also not sure what's going on with the logo stacking on that page; on my login page it doesn't have the smaller logo overlaid on the larger one.
Steps to reproduce
Expected behaviour
Either this button shouldn't be exposed on instances with encryption enabled (which was the previous solution) or if private keys can be otherwise locally stored, the warning message should not be shown.
Actual behaviour
Users are prompted with 'Encryption App is enabled, but your keys are not initialized. Please log-out and log-in again.'
Server configuration
Operating system:
Gentoo Linux
Web server:
Nginx
Database:
PostgreSQL
PHP version:
7.1.4
Nextcloud version: (see Nextcloud admin page)
12.0 beta 2
Updated from an older Nextcloud/ownCloud or fresh install:
Updated from Nextcloud 11
Where did you install Nextcloud from:
The built-in updater
Signing status:
Signing status
List of activated apps:
App list
Nextcloud configuration:
Config report
Are you using external storage, if yes which one: no
Are you using encryption: yes
Are you using an external user-backend, if yes which one: no
Client configuration
Browser:
Chromium
Operating system:
Gentoo Linux
The text was updated successfully, but these errors were encountered: