[GH-ISSUE #130] Webdav sync fails: "password login forbidden" #40

New issue

Closed

opened 2026-02-26 05:32:38 +03:00 by kerem · 1 comment

kerem commented 2026-02-26 05:32:38 +03:00

Owner

Copy link

Originally created by @onny on GitHub (Oct 5, 2018).
Original GitHub issue: https://github.com/nextcloud/twofactor_gateway/issues/130

Hey,
thank you for this nice app, it is already working great with the Signal gateway on my server.
After enabling 2FA I noticed that my Android phone stopped syncing contacts and calendar events with Nextcloud. I'm using Davdroid for this which relies on Webdav.
So somehow the username + password authentication doesn't work anymore. Which does makes sense but maybe we can add an exception to disable 2FA on Webdav so that the syncing clients still can do their job.

So the relevant part of the debug log looks like this:

2018-10-04 21:44:40 2781 [HttpClient] <?xml version="1.0" encoding="utf-8"?>
<d:error xmlns:d="DAV:" xmlns:s="http://sabredav.org/ns" xmlns:o="http://owncloud.org/ns">
  <s:exception>OCA\DAV\Connector\Sabre\Exception\PasswordLoginForbidden</s:exception>
  <s:message/>
  <o:hint xmlns:o="o:">password login forbidden</o:hint>
</d:error>

2018-10-04 21:44:40 2781 [HttpClient] <-- END HTTP (299-byte body)
2018-10-04 21:44:40 2796 [okhttp3.internal.http2.Http2Writer] >> 0x00000000     8 GOAWAY        
2018-10-04 21:44:40 2781 [syncadapter.SyncManager] Not authorized anymore
EXCEPTION at.bitfire.dav4android.exception.UnauthorizedException: HTTP 401 

Here's the full log: https://git.project-insanity.org/snippets/44

Best regards,
Jonas

Originally created by @onny on GitHub (Oct 5, 2018). Original GitHub issue: https://github.com/nextcloud/twofactor_gateway/issues/130 Hey, thank you for this nice app, it is already working great with the Signal gateway on my server. After enabling 2FA I noticed that my Android phone stopped syncing contacts and calendar events with Nextcloud. I'm using Davdroid for this which relies on Webdav. So somehow the username + password authentication doesn't work anymore. Which does makes sense but maybe we can add an exception to disable 2FA on Webdav so that the syncing clients still can do their job. So the relevant part of the debug log looks like this: ``` 2018-10-04 21:44:40 2781 [HttpClient] <?xml version="1.0" encoding="utf-8"?> <d:error xmlns:d="DAV:" xmlns:s="http://sabredav.org/ns" xmlns:o="http://owncloud.org/ns"> <s:exception>OCA\DAV\Connector\Sabre\Exception\PasswordLoginForbidden</s:exception> <s:message/> <o:hint xmlns:o="o:">password login forbidden</o:hint> </d:error> 2018-10-04 21:44:40 2781 [HttpClient] <-- END HTTP (299-byte body) 2018-10-04 21:44:40 2796 [okhttp3.internal.http2.Http2Writer] >> 0x00000000 8 GOAWAY 2018-10-04 21:44:40 2781 [syncadapter.SyncManager] Not authorized anymore EXCEPTION at.bitfire.dav4android.exception.UnauthorizedException: HTTP 401 ``` Here's the full log: https://git.project-insanity.org/snippets/44 Best regards, Jonas

kerem closed this issue 2026-02-26 05:32:38 +03:00

kerem commented 2026-02-26 05:32:39 +03:00

Author

Owner

Copy link

@ChristophWurst commented on GitHub (Oct 5, 2018):

So somehow the username + password authentication doesn't work anymore.

It's not a bug but a feature 😉

2FA would be quite useless if it just made logging in harder for you while an attacker could still access the data via the API, wouldn't it?

Just create app password: https://docs.nextcloud.com/server/14/user_manual/user_2fa.html#using-client-applications-with-two-factor-authentication

<!-- gh-comment-id:427396819 --> @ChristophWurst commented on GitHub (Oct 5, 2018): > So somehow the username + password authentication doesn't work anymore. It's not a bug but a feature :wink: 2FA would be quite useless if it just made logging in harder for you while an attacker could still access the data via the API, wouldn't it? Just create app password: https://docs.nextcloud.com/server/14/user_manual/user_2fa.html#using-client-applications-with-two-factor-authentication

kerem referenced this issue 2026-02-26 05:33:46 +03:00

[PR #40] [MERGED] Add Krankerl support #162

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

master

stable32

stable33

dependabot/npm_and_yarn/vue/test-utils-2.4.8

dependabot/npm_and_yarn/vue-3.5.33

dependabot/npm_and_yarn/vitest-4.1.5

dependabot/npm_and_yarn/nextcloud/axios-2.6.0

dependabot/npm_and_yarn/dompurify-3.4.1

feat/whatsapp-business-driver

stable31

v3.2.0

v2.4.0

v3.1.0

v2.3.0

v2.2.2

v3.0.2

v3.0.1

v2.2.1

v1.2.1

v3.0.0

v1.2.0

v2.2.0

v1.0.0

v2.0.0

v0.20.0

v0.19.0

v0.17.0

v0.16.0

v0.15.1

v0.15.0

v0.14.1

v0.14.0

v0.13.0

v0.13

v0.12.0

v0.11.0

v0.11.0-beta1

v0.10.1

v0.10.1-beta1

v0.10.0

v0.10.0-beta1

v0.9.0

v0.9.0-beta1

v0.8.0

v0.8.0-beta1

v0.7.0

v0.7.0-beta2

v0.7.0-beta1

v0.6.1

v0.6.0

v0.5.0

v0.2.0

v0.2

Labels

Clear labels   

0. to triage

  

1. to develop

  

3. to review

  

blocked

  

bug

  

discussion

  

duplicate

  

enhancement

  

enhancement

  

gateway:signal

  

gateway:signal

  

gateway:signal

  

gateway:sms

  

gateway:telegram

  

hacktoberfest

  

help wanted

  

invalid

  

needs info

  

php

  

pull-request

Mirrored from GitHub Pull Request

  

question

  

technical debt

No labels

0. to triage

1. to develop

3. to review

blocked

bug

discussion

duplicate

enhancement

enhancement

gateway:signal

gateway:signal

gateway:signal

gateway:sms

gateway:telegram

hacktoberfest

help wanted

invalid

needs info

php

pull-request

question

technical debt

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

starred/twofactor_gateway-nextcloud#40

No description provided.