iOS app 9.2 breaks WebDAV/Nextcloud support!

andrewhotlab · 30 December 2025 16:56

I just narrowed the issue that persists with NC 31 and OO 9.2.1: now it seems to happen only with LDAP backed accounts. Here is the log from an LDAP user, whose displayName differs from its samAccountname (no log with any user in NC database):

{"reqId":"1WRCCK9bQ0R9FL39k6jS","level":3,"time":"2025-12-30T16:38:12+00:00","remoteAddr":"172.21.3.251","user":"--","app":"core","method":"GET","url":"/ocs/v2.php/cloud/user","message":"Renewing session token failed: Token does not exist: token does not exist","userAgent":"Documents/9.2.1 (com.onlyoffice.Documents; build:1173; iOS 18.7.2) Alamofire/5.10.2","version":"31.0.12.3","exception":{"Exception":"OC\\Authentication\\Exceptions\\InvalidTokenException","Message":"Token does not exist: token does not exist","Code":0,"Trace":[{"file":"/usr/local/www/apache24/data/box/lib/private/Authentication/Token/PublicKeyTokenProvider.php","line":232,"function":"getToken","class":"OC\\Authentication\\Token\\PublicKeyTokenProvider","type":"->","args":["*** sensitive parameters replaced ***"]},{"file":"/usr/local/www/apache24/data/box/lib/public/AppFramework/Db/TTransactional.php","line":45,"function":"OC\\Authentication\\Token\\{closure}","class":"OC\\Authentication\\Token\\PublicKeyTokenProvider","type":"->","args":["*** sensitive parameters replaced ***"]},{"file":"/usr/local/www/apache24/data/box/lib/private/Authentication/Token/PublicKeyTokenProvider.php","line":231,"function":"atomic","class":"OC\\Authentication\\Token\\PublicKeyTokenProvider","type":"->"},{"file":"/usr/local/www/apache24/data/box/lib/private/Authentication/Token/Manager.php","line":158,"function":"renewSessionToken","class":"OC\\Authentication\\Token\\PublicKeyTokenProvider","type":"->"},{"file":"/usr/local/www/apache24/data/box/lib/private/User/Session.php","line":883,"function":"renewSessionToken","class":"OC\\Authentication\\Token\\Manager","type":"->"},{"file":"/usr/local/www/apache24/data/box/lib/base.php","line":1145,"function":"loginWithCookie","class":"OC\\User\\Session","type":"->","args":["*** sensitive parameters replaced ***"]},{"file":"/usr/local/www/apache24/data/box/ocs/v1.php","line":46,"function":"handleLogin","class":"OC","type":"::"},{"file":"/usr/local/www/apache24/data/box/ocs/v2.php","line":7,"args":["/usr/local/www/apache24/data/box/ocs/v1.php"],"function":"require_once"}],"File":"/usr/local/www/apache24/data/box/lib/private/Authentication/Token/PublicKeyTokenProvider.php","Line":165,"Previous":{"Exception":"OCP\\AppFramework\\Db\\DoesNotExistException","Message":"token does not exist","Code":0,"Trace":[{"file":"/usr/local/www/apache24/data/box/lib/private/Authentication/Token/PublicKeyTokenProvider.php","line":157,"function":"getToken","class":"OC\\Authentication\\Token\\PublicKeyTokenMapper","type":"->","args":["*** sensitive parameters replaced ***"]},{"file":"/usr/local/www/apache24/data/box/lib/private/Authentication/Token/PublicKeyTokenProvider.php","line":232,"function":"getToken","class":"OC\\Authentication\\Token\\PublicKeyTokenProvider","type":"->","args":["*** sensitive parameters replaced ***"]},{"file":"/usr/local/www/apache24/data/box/lib/public/AppFramework/Db/TTransactional.php","line":45,"function":"OC\\Authentication\\Token\\{closure}","class":"OC\\Authentication\\Token\\PublicKeyTokenProvider","type":"->","args":["*** sensitive parameters replaced ***"]},{"file":"/usr/local/www/apache24/data/box/lib/private/Authentication/Token/PublicKeyTokenProvider.php","line":231,"function":"atomic","class":"OC\\Authentication\\Token\\PublicKeyTokenProvider","type":"->"},{"file":"/usr/local/www/apache24/data/box/lib/private/Authentication/Token/Manager.php","line":158,"function":"renewSessionToken","class":"OC\\Authentication\\Token\\PublicKeyTokenProvider","type":"->"},{"file":"/usr/local/www/apache24/data/box/lib/private/User/Session.php","line":883,"function":"renewSessionToken","class":"OC\\Authentication\\Token\\Manager","type":"->"},{"file":"/usr/local/www/apache24/data/box/lib/base.php","line":1145,"function":"loginWithCookie","class":"OC\\User\\Session","type":"->","args":["*** sensitive parameters replaced ***"]},{"file":"/usr/local/www/apache24/data/box/ocs/v1.php","line":46,"function":"handleLogin","class":"OC","type":"::"},{"file":"/usr/local/www/apache24/data/box/ocs/v2.php","line":7,"args":["/usr/local/www/apache24/data/box/ocs/v1.php"],"function":"require_once"}],"File":"/usr/local/www/apache24/data/box/lib/private/Authentication/Token/PublicKeyTokenMapper.php","Line":81},"message":"Renewing session token failed: Token does not exist: token does not exist","user":"demo","exception":{},"CustomMessage":"Renewing session token failed: Token does not exist: token does not exist"}}
{"reqId":"6n4H4rzHNl2ipzjaUhpZ","level":3,"time":"2025-12-30T16:38:32+00:00","remoteAddr":"172.21.3.251","user":"--","app":"core","method":"PROPFIND","url":"/remote.php/dav/files/demo/Documents","message":"App token login name does not match","userAgent":"Documents/1173 CFNetwork/3826.600.41 Darwin/24.6.0","version":"31.0.12.3","data":{"tokenLoginName":"demo","sessionLoginName":"Demo User","app":"core","user":"demo"}}
{"reqId":"6n4H4rzHNl2ipzjaUhpZ","level":2,"time":"2025-12-30T16:38:32+00:00","remoteAddr":"172.21.3.251","user":"--","app":"core","method":"PROPFIND","url":"/remote.php/dav/files/demo/Documents","message":"Login failed: 'Demo User' (Remote IP: '172.21.3.251')","userAgent":"Documents/1173 CFNetwork/3826.600.41 Darwin/24.6.0","version":"31.0.12.3","data":{"app":"core"}}

And thanks for your support!

Alexandre · 12 January 2026 08:01

Thank you! We’re looking into it.

Alexandre · 13 January 2026 11:13

Dear @andrewhotlab
It seems that the situation is related to Nextcloud logic of work with LDAP:

The internal username must match the entry used to log in to the service, either the login or the email address.
Please make sure it’s set up correctly. Please bear in mind that changes will likely apply only to new users, not existing ones.

andrewhotlab · 13 January 2026 13:58

Well, thanks… but no: obviously our LDAP connectors are all configured to use the sAMAccountname attribute as internal Nextcloud user id. If it wasn’t so, the ONLYOFFICE app (and any other WebDAV client) would have had that problem far before the latest update of yours to the 9.2 branch.

Alexandre · 19 January 2026 08:37

Understood, we’re checking the situation, I will contact you shortly.

Alexandre · 12 February 2026 10:21

Dear @andrewhotlab
We tried to reproduce the issue on the latest versions, but without success. Since the fix was placed in version 9.2.1, we have not been able to reproduce it. The lack of similar reports from other users make us to believe that the situation is unique, and we need to take a closer look at it
We need your assistance in this matter. Would it be possible for you to provide us with two accounts for your portal? one local account and one LDAP account where the issue occurs? This would help us to investigate the situation on the spot.

If so, please contact me via PM.

andrewhotlab · 12 February 2026 19:27

Thank you @Alexandre , I just tried again on a couple of LDAP connected NC 31 instances and with both of them the iOS app v9.2.1 returns the same error, so I’m pretty confident it’s easily reproducible.

I’m sorry but I can’t find the way to write you directly in this Discourse instance… maybe if you are able to see the email address in my profile you can drop me a line?

Alexandre · 20 February 2026 07:49

Thank you! I’ve got PM.

Alexandre · 20 February 2026 09:26

Dear @andrewhotlab
we have re-opened bug, and we’re working on it.
Thank you for the provided data!

Alexandre · 25 February 2026 09:29

Dear @andrewhotlab
We have implemented necessary changes, the issue will be fixed in the upcoming v.9.3 for iOS.
Thank you for the provided data!

andrewhotlab · 12 March 2026 18:34

Wonderful: today we’ve installed the just released 9.3.1 version for iOS, and it works.

Thank you very much @Alexandre, and keep up the good work with ONLYOFFICE!

kerion · 15 March 2026 22:54

I’m experiencing the same issue with my Nextcloud instance.

The exact error in the Nextcloud log is:

"App token login name does not match"

My setup uses local Nextcloud users only (no LDAP, LDAP/AD integration is disabled). I only have a few accounts (around 4).

I updated the iOS app to 9.3.1 and I’m running iOS 26.3.1, but the issue still persists.

Details of my environment:

Nextcloud: Nextcloud Hub 26 Winter (33.0.0)

ONLYOFFICE iOS app: 9.3.1

Authentication: local Nextcloud users, LDAP disabled

Because of this, it doesn’t seem to be related to LDAP. It looks like the app is still sending a login name that doesn’t match the username expected by Nextcloud when authenticating via WebDAV/app tokens.

Has anyone else experienced the same behavior even after updating to 9.3.1?

Nikolas · 24 March 2026 09:00

Hey @kerion,

Thanks for the update and for sharing the screenshot.

Quick questions to help us narrow it down:

Did you have the same issue on the previous version 9.2.1?
After a complete uninstall (including clearing all app data/cache) and a fresh install of 9.3.1, does the problem still occur?

If the issue persists, could you please do the following:

Go to Settings → About and tap the ONLYOFFICE logo 10 times until you feel a vibration. This will unlock the Developer menu in Settings.
Clear the logs in the Developer menu.
Try to add your Nextcloud again and reproduce the error.
Send me the logs via private message (so they don’t stay publicly visible).

This will help us see exactly what’s happening on your side.

Thanks in advance!