Install NextCloud 11.0.2 on CentOS 7 with PHP 7.1 from Remi



  • 1_1489607043027_2017-03-15 21_43_30-77.245.14.252 - vSphere Client.png 0_1489607043026_2017-03-15 21_43_42-77.245.14.252 - vSphere Client.png

    Hi,

    I did the above steps starting from Centos 7 1611 minimal updated.

    Got the above results ... 😞

    I tried disabling selinux
    Changing permissions to 0777 on /var/www/html/nextcloud
    disabling the firewalld
    same results

    I made sure that I am doing everything as above

    Thank you for your hard work, and guide. I prefer using it cause your are using PHP7 unlike the rest.



  • Do a netstat -tulpn to see what it is listening for.



  • @msff-amman-Itofficer also double check the firewall 😉



  • @msff-amman-Itofficer at what point in the guide are you?



  • @aaronstuder said in Install NextCloud 11.0.2 on CentOS 7 with PHP 7.1 from Remi:

    @msff-amman-Itofficer also double check the firewall 😉

    The forbidden error means that the firewall is open.



  • The default log file is nextcloud.log located in /var/www/html/nextcloud/data.

    tail /var/www/html/nextcloud/data/nextcloud.log


  • Here is what my systemlooks like:

    ls -lZ /var/www/html
    drwxr-xr-x. root apache unconfined_u:object_r:httpd_sys_content_t:s0 nextcloud
    
    ls -lZ /var/www/html/nextcloud/
    drwxr-x---. root   apache unconfined_u:object_r:httpd_sys_content_t:s0 3rdparty
    drwxr-x---. apache apache unconfined_u:object_r:httpd_sys_rw_content_t:s0 apps
    drwxr-x---. apache apache unconfined_u:object_r:httpd_sys_content_t:s0 assets
    -rw-r-----. root   apache unconfined_u:object_r:httpd_sys_content_t:s0 AUTHORS
    drwxr-xr-x. apache apache unconfined_u:object_r:httpd_sys_rw_content_t:s0 config
    -rw-r-----. root   apache unconfined_u:object_r:httpd_sys_content_t:s0 console.php
    drwxr-x---. root   apache unconfined_u:object_r:httpd_sys_content_t:s0 core
    -rw-r-----. root   apache unconfined_u:object_r:httpd_sys_content_t:s0 cron.php
    lrwxrwxrwx. apache apache unconfined_u:object_r:httpd_sys_content_t:s0 data -> /home/nc_data
    -rw-r-----. root   apache unconfined_u:object_r:httpd_sys_content_t:s0 db_structure.xml
    drwxr-x---. root   apache unconfined_u:object_r:httpd_sys_content_t:s0 etc
    -rw-r-----. root   apache unconfined_u:object_r:httpd_sys_content_t:s0 index.html
    -rw-r-----. root   apache unconfined_u:object_r:httpd_sys_content_t:s0 index.php
    drwxr-x---. root   apache unconfined_u:object_r:httpd_sys_content_t:s0 l10n
    drwxr-x---. root   apache unconfined_u:object_r:httpd_sys_content_t:s0 lib
    -rwxr-xr-x. apache apache unconfined_u:object_r:httpd_sys_content_t:s0 occ
    drwxr-x---. root   apache unconfined_u:object_r:httpd_sys_content_t:s0 ocs
    drwxr-x---. root   apache unconfined_u:object_r:httpd_sys_content_t:s0 ocs-provider
    -rw-r-----. root   apache unconfined_u:object_r:httpd_sys_content_t:s0 public.php
    -rw-r-----. root   apache unconfined_u:object_r:httpd_sys_content_t:s0 remote.php
    drwxr-x---. root   apache unconfined_u:object_r:httpd_sys_content_t:s0 resources
    -rw-r-----. root   apache unconfined_u:object_r:httpd_sys_content_t:s0 robots.txt
    drwxr-x---. root   apache unconfined_u:object_r:httpd_sys_content_t:s0 settings
    -rw-r-----. root   apache unconfined_u:object_r:httpd_sys_content_t:s0 status.php
    drwxr-x---. root   apache unconfined_u:object_r:httpd_sys_content_t:s0 themes
    drwxr-x---. apache apache unconfined_u:object_r:httpd_sys_content_t:s0 updater
    -rw-r-----. root   apache unconfined_u:object_r:httpd_sys_content_t:s0 version.php
    

    Since I made a symlink to my data directory I had to deviate a bit from the guide personally.

    ls -lZ /home/
    drwxrwx---. root apache unconfined_u:object_r:httpd_sys_rw_content_t:s0 nc_data
    
    ls -lZ /home/nc_data/
    drwxr-xr-x. apache apache system_u:object_r:httpd_sys_rw_content_t:s0 appdata_ocuy4ccap2ee
    drwxr-xr-x. apache apache system_u:object_r:httpd_sys_rw_content_t:s0 files_external
    -rw-r--r--. apache apache system_u:object_r:httpd_sys_rw_content_t:s0 index.html
    drwxr-xr-x. apache apache system_u:object_r:httpd_sys_rw_content_t:s0 jbusch
    -rw-r-----. apache apache system_u:object_r:httpd_sys_rw_content_t:s0 nextcloud.log
    -rw-r--r--. apache apache system_u:object_r:httpd_sys_rw_content_t:s0 themedinstancelogo
    


  • @JaredBusch @scottalanmiller

    0_1489610289562_2017-03-15 22_37_47-77.245.14.252 - vSphere Client.png

    Log have not been created



  • @JaredBusch said in Install NextCloud 11.0.2 on CentOS 7 with PHP 7.1 from Remi:

    ide are you?

    Finished it completely.



  • @JaredBusch

    Thanks this will help, will give it a detailed look but since its nearing night time where I live, I might try that tomorrow.



  • @msff-amman-Itofficer said in Install NextCloud 11.0.2 on CentOS 7 with PHP 7.1 from Remi:

    @JaredBusch said in Install NextCloud 11.0.2 on CentOS 7 with PHP 7.1 from Remi:

    ide are you?

    Finished it completely without any errors.

    Obviously not. List out our directory structure as I showed and compare what your permissions look like to what I listed



  • @JaredBusch

    I think its something related to HTTPS at this moment.

    1_1489611100139_2017-03-15 22_49_40-77.245.14.252 - vSphere Client.png 0_1489611100138_2017-03-15 22_49_23-77.245.14.252 - vSphere Client.png



  • @msff-amman-Itofficer said in Install NextCloud 11.0.2 on CentOS 7 with PHP 7.1 from Remi:

    @JaredBusch

    I think its something related to HTTPS at this moment.

    that is way beyond the first part of the guide.



  • If you got to the HTTPS setup, then you also did the section to complete the setup first? So this means it should have already been working.

    But that is not the case because there is no log file.



  • @msff-amman-Itofficer Your SELinux contexts are wrong.

    The config, data, and apps direcotry need RW access

    httpd_sys_rw_content_t



  • Guide updated to add allow for Redis network connect from HTTPD

    setsebool -P httpd_can_network_connect 1
    


  • @JaredBusch

    But i disabled selinux and the same issue occurred...

    I tried more with HTTPS self signed and also enabled SElinux and did your desired changes but same thing.

    I highly believe that if you start from fresh centos and did the above the same scenario will occur.



  • @msff-amman-Itofficer while that is of course possible those post instructions were posted after I had done a new install to verify my instructions from the first install so while possible I find it unlikely. Also I've already shown that you've got SE Lenix settings incorrect so you might also have other mistakes. Why don't you start over?



  • @msff-amman-Itofficer I am sitting down to lunch and spinning up a new instance on Vultr to test.



  • @JaredBusch I'll do the same right now 🙂



  • @JaredBusch I get the same error 403 Forbidden



  • @aaronstuder @JaredBusch

    Looks like it is time to Q.A all the other articles at this site and start testing them as well !!!

    I'm joking, I love this site/forum and the users that are interactive and supportive.

    All the thanks to you Jared for the huge effort, and putting this guide/article that got me motivated to deploy and test, I'm certain you will find out what is wrong and it will something silly.



  • ok just completed and http://nctest.bundystl.com/nextcloud is forbidden but the http://nctest.bundystl.com serves.

    log has this.

    [Thu Mar 16 14:11:38.044903 2017] [autoindex:error] [pid 29289] [client 47.50.171.66:58578] AH01276: Cannot serve directory /var/www/html/: No matching DirectoryIndex (index.html,index.php) found, and server-generated directory index forbidden by Options directive
    

    Testing shows the above is generated by browsing to the root (no /nextcloud) so we can ignore.

    This is then the problem.

    [Thu Mar 16 14:11:42.891781 2017] [authz_core:error] [pid 29289] [client 47.50.171.66:58578] AH01630: client denied by server configuration: /usr/share/nextcloud
    

    Let's look at the nextcloud.conf vhost file that was downloaded.



  • @JaredBusch said in [Install NextCloud 11.0.2 on CentOS 7 with PHP 7.1

    Let's look at the nextcloud.conf vhost file that was downloaded.

    Yup, that is the problem.

    ProxyPassMatch ^/nextcloud/(.*\.php(/.*)?)$ fcgi://127.0.0.1:9000/usr/share/nextcloud/$1
    
    Alias /nextcloud "/usr/share/nextcloud/"
    <Directory "/usr/share/nextcloud">
      Options +FollowSymLinks
      AllowOverride All
      Require all granted
    
      <IfModule mod_dav.c>
            Dav off
      </IfModule>
    
      SetEnv HOME /usr/share/nextcloud
      SetEnv HTTP_HOME /usr/share/nextcloud
    </Directory>
    
    <Directory "/usr/share/nextcloud/data/">
      # just in case if .htaccess gets disabled
        Require all denied
    </Directory>
    

    Let me go look at the system I installed a couple days before I made the guide and see what is in that one.



  • unrelated, but the redis memcache and locking stuff cannot be set where currently specifed. I'll fix that once this is resolved.





  • but the official manual install guide (ubuntu example) specifically states to use the webroot still.
    https://docs.nextcloud.com/server/11/admin_manual/installation/source_installation.html#example-installation-on-ubuntu-16-04-lts-server



  • Opened an issue on github and posted on the NC forums. in the mean time, give me a few and I will get a valid file setup.



  • This is the original nextcloud.conf file.
    3 days ago he added some proxy info to it. that caused the service unavailable error. 1 day ago he changed the damned directory. that caused the permissions error.

    wget -O /etc/httpd/conf.d/nextcloud.conf https://raw.githubusercontent.com/nextcloud/server-packages/18f3837752589739b53bc62705c45a54faddbb4a/centos/nextcloud.conf



  • @msff-amman-Itofficer instructions updated and pictures made with the initial web gui setup also.