I can register the device but not authenticat

[hschraep]

Steps to reproduce

1. get register the u2f device
2. logging out and try to log in with u2f
3. insert the u2f device if it is requested and press the button but nothing happens

Iuse this device nRF52 FIDO U2F Security Key the usb dongle version

I suppect that i can register the device with the button but not during the login.

JQMIGRATE: Migrate is installed, version 1.4.0 core.js:7:552
Loaded initial state of the u2f challenge page 
Array [ {…} ]
main-challenge.js:32:8
Starting u2f.sign 
Array [ {…} ]

this errors comming up if i press on abort.

Challenge.vue:95
could not sign u2f challenge 
Object { type: "OTHER_ERROR", code: 1 }
Challenge.vue:108
Error: "Sign failed"
    u u2f-api.js:71
    sign u2f-api.js:135

Starting u2f.sign 
Array [ {…} ]
Challenge.vue:95
could not sign u2f challenge 
Object { type: "OTHER_ERROR", code: 1 }
Challenge.vue:108
    sign Challenge.vue:108
Error: "Sign failed"
    u u2f-api.js:71
    sign u2f-api.js:135
vue.runtime.esm.js:1888
    VueJS 4

Expected behaviour

When i press the button the device should me autentiucate

Actual behaviour

nothing

Server configuration

Operating system: Ubuntu 18.04.3 LTS

Web server: Abpace

Database: Mysql

PHP version: PHP 7.3.9-1+ubuntu18.04.1+deb.sury.org+1

Version: Nextcloud 15.0.11

Updated from an older version or fresh install: no

List of activated apps:
$ sudo -u www-data php occ app:list
Enabled:

• accessibility: 1.1.0
• activity: 2.8.2
• calendar: 1.6.6
• cloud_federation_api: 0.1.0
• comments: 1.5.0
• contacts: 3.1.6
• dav: 1.8.2
• federatedfilesharing: 1.5.0
• federation: 1.5.0
• files: 1.10.0
• files_external: 1.6.0
• files_pdfviewer: 1.4.0
• files_sharing: 1.7.0
• files_texteditor: 2.7.0
• files_trashbin: 1.5.0
• files_versions: 1.8.0
• files_videoplayer: 1.4.0
• firstrunwizard: 2.4.0
• gallery: 18.2.0
• logreader: 2.0.0
• lookup_server_connector: 1.3.0
• nextcloud_announcements: 1.4.0
• notifications: 2.3.0
• oauth2: 1.3.0
• password_policy: 1.5.0
• polls: 0.10.2
• provisioning_api: 1.5.0
• serverinfo: 1.5.0
• sharebymail: 1.5.0
• spreed: 5.0.4
• support: 1.0.0
• survey_client: 1.3.0
• systemtags: 1.5.0
• tasks: 0.11.3
• theming: 1.6.0
• twofactor_backupcodes: 1.4.1
• twofactor_totp: 2.1.2
• twofactor_u2f: 2.1.3
• updatenotification: 1.5.0
• workflowengine: 1.5.0
  Disabled:
• admin_audit
• encryption
• user_ldap

$ sudo -u www-data php occ config:list system
{
"system": {
"instanceid": "REMOVED SENSITIVE VALUE",
"passwordsalt": "REMOVED SENSITIVE VALUE",
"secret": "REMOVED SENSITIVE VALUE",
"trusted_domains": [
"nextc.goip.de"
],
"datadirectory": "REMOVED SENSITIVE VALUE",
"overwrite.cli.url": "https://mydomain.de",
"dbtype": "mysql",
"version": "15.0.10.0",
"dbname": "REMOVED SENSITIVE VALUE",
"dbhost": "REMOVED SENSITIVE VALUE",
"dbport": "",
"dbtableprefix": "oc_",
"mysql.utf8mb4": true,
"dbuser": "REMOVED SENSITIVE VALUE",
"dbpassword": "REMOVED SENSITIVE VALUE",
"installed": true,
"mail_smtpmode": "smtp",
"mail_smtpauthtype": "LOGIN",
"mail_smtpsecure": "ssl",
"mail_from_address": "REMOVED SENSITIVE VALUE",
"mail_domain": "REMOVED SENSITIVE VALUE",
"updater.release.channel": "production",
"maintenance": false,
"theme": "",
"loglevel": 2,
"mail_smtphost": "REMOVED SENSITIVE VALUE",
"mail_smtpport": "465",
"mail_smtpauth": 1,
"mail_smtpname": "REMOVED SENSITIVE VALUE",
"mail_smtppassword": "REMOVED SENSITIVE VALUE",
"memcache.local": "\OC\Memcache\APCu"
}
}

If you have access to your command line run e.g.:
sudo -u www-data php occ app:list
from within your server installation folder

The content of config/config.php:

If you have access to your command line run e.g.:
sudo -u www-data php occ config:list system
from within your Nextcloud installation folder

or

Insert your config.php content here
Make sure to remove all sensitive content such as passwords. (e.g. database password, passwordsalt, secret, smtp password, …)

Client configuration

Browser: Firefox 69.0.2 and Chrome

**Operating system: win10

Logs

Web server error log

Insert your webserver log here

Server log (data/nextcloud.log)

Insert your server log here

Browser log

Insert your browser log here, this could for example include:

a) The javascript console log
b) The network log

[ChristophWurst]

I've never seen code 1. Looks like this is out of scope for this app: https://developers.yubico.com/U2F/Libraries/Client_error_codes.html

[hschraep]

this error code comes up if i press cancel. If i do pressing the button on the device it appens nothin, no error comes up. Only if i press cancel this error comes up and this is normel i think.
The questioin is why the configuation works if i press the button on the device and not if i would authenticate after the configuration of the u2f device.
The code i use on the device ist this: https://github.com/makerdiary/nrf52-u2f

I have open also there a issus:
makerdiary/nrf52-u2f#15

[ChristophWurst]

https://nextc.goip.de

Is this the hostname you access the cloud with?

[hschraep]

yes it is.

[ChristophWurst]

I just realized you're using an older version of Nextcloud and this app. You might have better luck with Nextcloud 16 or 17 and https://github.com/nextcloud/twofactor_u2f/releases/tag/v4.0.0

[hschraep]

Ok, i have updated to 16.0.5 but twofactor_u2f 4.0 was only available for 17.x.x For 16.x.x it is now installed 3.0.1. And the problem is the same.

[hschraep]

update now to 17.0.1 and twofactor_u2f 4.0 but same problem.

[hschraep]

Update to 17.0.3 and twofactor_u2f 5.0.2 but same problem.