Server: occ user:delete does not remove storage and files where using Swift as primary store
Steps to reproduce
- Set up Nextcloud using Swift as a primary storage
- Login as admin and create user (e.g. tester)
- Login as tester and add some files (for sure, there are the default ones)
- As www-data user run cmd: php occ user:delete tester
Expected behaviour
The user and its oc_storage and oc_filecache should be deleted
Actual behaviour
The users is deleted, however the oc_storages and oc_filecache stil remain, together with files in the object storage.
Pre conditions:
MySQL [nextcloud_v13]> select * from oc_storages;
+------------+---------------------------------------------------+-----------+--------------+
| numeric_id | id | available | last_checked |
+------------+---------------------------------------------------+-----------+--------------+
| 1 | object::store:nc0 | 1 | NULL |
| 2 | object::user:admin | 1 | NULL |
| 4 | object::user:775DA7E6-9157-48EE-92AD-DE87D45E22F1 | 1 | NULL |
| 5 | object::user:tester | 1 | NULL |
+------------+---------------------------------------------------+-----------+--------------+
5 rows in set (0.01 sec)
Delete user:
www-data@9264da61a860:/www/nextcloud$ php occ user:delete tester
The specified user was deleted
After delete:
MySQL [nextcloud_v13]> select * from oc_storages;
+------------+---------------------------------------------------+-----------+--------------+
| numeric_id | id | available | last_checked |
+------------+---------------------------------------------------+-----------+--------------+
| 1 | object::store:nc0 | 1 | NULL |
| 2 | object::user:admin | 1 | NULL |
| 4 | object::user:775DA7E6-9157-48EE-92AD-DE87D45E22F1 | 1 | NULL |
| 5 | object::user:tester | 1 | NULL |
+------------+---------------------------------------------------+-----------+--------------+
5 rows in set (0.00 sec)
MySQL [nextcloud_v13]> select count(*) from oc_filecache where storage=5;
+----------+
| count(*) |
+----------+
| 22 |
+----------+
1 row in set (0.00 sec)
Server configuration
Operating system: Linux Debian 9.4
Web server: Nginx 1.10.3
Database: MySQL
PHP version: 7.0
Nextcloud version: (see Nextcloud admin page) 13.0.1.1
Updated from an older Nextcloud/ownCloud or fresh install: either
Where did you install Nextcloud from: tarfile from nextcloud.com
Are you using external storage, if yes which one: Swift as primary
Are you using encryption: no
Are you using an external user-backend, if yes which one: LDAP but same problem with local user
Nextcloud log (data/nextcloud.log)
Nextcloud log
{"reqId":"6RvewTtNcUFNNlCSEPaR","level":3,"time":"2018-05-28T14:35:45+00:00","remoteAddr":"","user":"--","app":"PHP","method":"--","url":"--","message":"Undefined offset: 1 at \/www\/nextcloud\/apps\/admin_audit\/lib\/Actions\/Console.php#32","userAgent":"--","version":"13.0.1.1"}
vpecinka
All 22 comments
Well, when removing record from oc_storage for the given numeric_id to make stubs in the oc_filecache, and running php occ files:cleanup, I sucessfuly delete oc_filecache entries. However, the file objects remain in the Swift storage...
MySQL [nextcloud_v13]> select *from oc_storages where numeric_id=11986;
+------------+---------------------------------------------------+-----------+--------------+
| numeric_id | id | available | last_checked |
+------------+---------------------------------------------------+-----------+--------------+
| 11986 | object::user:00A4CC06-1CA0-49C5-96AC-45CB77035129 | 1 | NULL |
+------------+---------------------------------------------------+-----------+--------------+
1 row in set (0.00 sec)
MySQL [nextcloud_v13]> select * from oc_ldap_user_mapping where owncloud_name="00A4CC06-1CA0-49C5-96AC-45CB77035129";
Empty set (0.00 sec)
MySQL [nextcloud_v13]> select * from oc_filecache where storage=11986 limit 5;
+----------+---------+-------------------------------------------------+----------------------------------+----------+-------------------------------+----------+----------+------------+------------+---------------+-----------+------------------+----------------------------------+-------------+----------+
| fileid | storage | path | path_hash | parent | name | mimetype | mimepart | size | mtime | storage_mtime | encrypted | unencrypted_size | etag | permissions | checksum |
+----------+---------+-------------------------------------------------+----------------------------------+----------+-------------------------------+----------+----------+------------+------------+---------------+-----------+------------------+----------------------------------+-------------+----------+
| 5275256 | 11986 | files/Documents | 0ad78ba05b6961d92f7970b2b3922eca | 5275251 | Documents | 2 | 1 | 36227 | 1462869856 | 1462869856 | 0 | 0 | 57319f60813a3 | 31 | NULL |
| 17091289 | 11986 | files/Krasty-data/url-to-product-structure.json | 140b3fb419e3481f5ffa1513dd598de7 | 17089329 | url-to-product-structure.json | 56 | 3 | 15146492 | 1496658351 | 1496658351 | 0 | 0 | df0474aa3511ac8bc1ea9571f0a1625e | 27 | |
| 17089334 | 11986 | files/Krasty-data/products.json | 306a7f2e0a4413e0704300ef97addeb8 | 17089329 | products.json | 56 | 3 | 281641 | 1496649090 | 1496649090 | 0 | 0 | fb67da264ebc8f43a5f91447d47fcd97 | 27 | |
| 17089437 | 11986 | files/Krasty-data/get-offers.json | 454308e8d65561c0b41747219536befe | 17089329 | get-offers.json | 56 | 3 | 2862520434 | 1496649525 | 1496649525 | 0 | 0 | 172548f93ab1b69c2ec7bfe21fc4504c | 27 | |
| 5275251 | 11986 | files | 45b963397aa40d4a0063e0d85e4fe7a1 | 5275249 | files | 2 | 1 | 2882299436 | 1496658394 | 1496649162 | 0 | 0 | 593531da9bf1c | 31 | NULL |
+----------+---------+-------------------------------------------------+----------------------------------+----------+-------------------------------+----------+----------+------------+------------+---------------+-----------+------------------+----------------------------------+-------------+----------+
5 rows in set (0.00 sec)
MySQL [nextcloud_v13]> delete from oc_storages where numeric_id=11986;
Query OK, 1 row affected (0.02 sec)
then
www-data@nextcloud-web-5864c5968c-zhx4p:/www/nextcloud$ php occ files:cleanup -vvv
13 orphaned file cache entries deleted
MySQL [nextcloud_v13]> select * from oc_filecache where storage=11986;
Empty set (0.01 sec)
md5-0d369eb586ff0d918a2f73b42a5a6abe
# swift -Axxx -U xxx -K xxx stat nc_19 id:17091289
Account: AUTH_s_64
Container: nc_19
Object: id:17091289
Content Type: application/octet-stream
Content Length: 15146492
Last Modified: Mon, 14 May 2018 19:29:54 GMT
ETag: 14dab0a0ea48c076ceae7438eaa8f266
Accept-Ranges: bytes
Server: nginx
Connection: keep-alive
X-Timestamp: 1526326193.63821
X-Trans-Id: txc61f79f4f5ee4a2fbe8d8-005b0e971c
Set up Nextcloud using Swift as a primary storage
I guess that is missing some parts.
The user and its oc_storage and oc_filecache should be deleted
Usually not.
This is how to set up a Nextcloud instance with object storage:
- add a second config file (only needs to end in
.config.phpsos3.config.php) - put in there the normal config for the object storage:
<?php
$CONFIG = [
'objectstore' =>
array (
'class' => 'OC\\Files\\ObjectStore\\S3',
'arguments' =>
array (
'bucket' => 'abc',
'key' => '123',
'secret' => 'abc',
'hostname' => '127.0.0.1',
'port' => '4567',
'use_ssl' => false,
'use_path_style' => true,
),
),
];
- then run the installation (either via
occ maintenance:installor via the web UI) - then you should have a working Nextcloud with the object storage as primary storage
I hope this helps to resolve your issues.
MorrisJobke
on 28 Jun 2018
I`m not sure if we understand each other. The Swift (not S3) object primary storage works fine. Until user deletion. The problem is that Nextcloud leaves object in database and storage as well.
During normal life cycle, when user creates or deletes files, everything is ok - in the database and in the swift storage (=object are created and deleted as well). Only when I delete user (via php occ user:delete), the user disappears, but the object in storage and database not.
I do not understand the code to easily find the bug but I think there is something wrong with deleting user when having object storage.... Because user is removed e.g. from oc_users or oc_preferences but not from oc_storages and oc_filecache tables.
vpecinka
on 28 Jun 2018
I`m not sure if we understand each other. The Swift (not S3) object primary storage works fine. Until user deletion. The problem is that Nextcloud leaves object in database and storage as well.
During normal life cycle, when user creates or deletes files, everything is ok - in the database and in the swift storage (=object are created and deleted as well). Only when I delete user (via php occ user:delete), the user disappears, but the object in storage and database not.
I do not understand the code to easily find the bug but I think there is something wrong with deleting user when having object storage.... Because user is removed e.g. from oc_users or oc_preferences but not from oc_storages and oc_filecache tables.
Okay - that one I clearly misunderstood.
@icewind1991 @rullzer Does this ring a bell for you?
MorrisJobke
on 28 Jun 2018
The bug is in OC\User::delete line 229:
// Delete user files in /data/
if ($homePath !== false) {
// FIXME: this operates directly on FS, should use View instead...
// also this is not testable/mockable...
\OC_Helper::rmdirr($homePath);
}
Looks like files are only actually removed when using local storage(!)
fdoumet
on 4 Sep 2018
Looks like files are only actually removed when using local storage(!)
cc @icewind1991 @rullzer @blizzz
MorrisJobke
on 27 Sep 2018
cc @icewind1991 @rullzer
MorrisJobke
on 20 Feb 2019
How could this possibly not be fixed, or at least in progress? I'm in no position to say this is bad, but I just recovered my own data just by recreating an old username on my personal nextcloud server. This data is very old but was still recoverable without the use of my original password. I think object storage users should at least know there is a major security flaw in Nextcloud when they don't use encryption, which is not completely supported by Nextcloud on object storage.
MarcoStuurman
on 15 Apr 2019
I dont know if this is the same issue, but i currently notice the same behaviour with s3 primary storage with Nextcloud 17.0.1
JUVOJustin
on 18 Nov 2019
Same issue with s3 primary storage with nextcloud v18.0.0
Shyndard
on 31 Jan 2020
Is there any info about the priority? In my opinion this is a very critical bug. It is currently possible to get access to files from previously deleted users. This is a vulnerability!
JUVOJustin
on 3 Feb 2020
Also observing this bug with 18.0.1. It's strange that this is not being dealt with. For now, it seems that we have to settle with mounting the bucket directly.
rlSimonLi
on 16 Feb 2020
This really should be fixed. It's a show stopper for my S3 primary storage plans. I must be able to delete users files. Any ideas on a work-around?
mkauttu
on 5 Mar 2020
Came here looking for the same thing as everyone. I've around 9GB of used storage on the WebUI but my S3 Bucket is using 64GB! Which means the files haven't been deleted. I believe this should be dealt with as it is a huge deal breaker for Nextcloud + S3 storage.
Rapsoulis
on 8 Apr 2020
I am on Nextcloud 18.0.3 and deleting the data (not even user) doesn't delete/empty the S3 storage (it has been set as primary storage)
cinghaman
on 8 Apr 2020
I tried a workaround on this issue and it seems to work at some level. You need to install Impersonate -app for this to work. When user is to be deleted do following:
- Impersonate the user to be deleted
- Get rid of the shares so that you do not delete other users data.
- Delete all users files and folders
- Empty recycle bin
- Log out from the impersonate -session
- Delete user
mkauttu
on 9 Apr 2020
I tried a workaround on this issue and it seems to work at some level. You need to install Impersonate -app for this to work. When user is to be deleted do following:
- Impersonate the user to be deleted
- Get rid of the shares so that you do not delete other users data.
- Delete all users files and folders
- Empty recycle bin
- Log out from the impersonate -session
- Delete user
My issue is mostly on the S3 side where the deleted files don't get removed.
cinghaman
on 9 Apr 2020
I tried a workaround on this issue and it seems to work at some level. You need to install Impersonate -app for this to work. When user is to be deleted do following:
- Impersonate the user to be deleted
- Get rid of the shares so that you do not delete other users data.
- Delete all users files and folders
- Empty recycle bin
- Log out from the impersonate -session
- Delete user
My issue is mostly on the S3 side where the deleted files don't get removed.
@cinghaman I was referring to the original issue. Yours seems to be something else.
mkauttu
on 9 Apr 2020
Same problem for Nextcloud 18.0.4.2 with \OC\Files\ObjectStore\S3 External storage support version 1.9.0
When user removed all users files still present on storage forever.
suslikas
on 2 Jun 2020
I am still experiencing this for Nextcloud 19.0.4 with OC\Files\ObjectStore\S3 as primary storage, no experience with external storage on Nextcloud.
Deleted users still all appear for me in oc_storages, I had never seen that before this thread.
If a _username_ is deleted from the webui the files remain in object storage forever. If a user registers an account later, with the same _username_, that user is granted access to the first user's files immediately.
I feel there should be more than username alone to a user account, a truly unique identifier should be used, even just a unique 'userid'. If users are never removed from oc_storages, if the plan was to allow 'recovery' of user accounts then administrators could simply write the original userid to the 'current iteration' of that username.
I thought I had problems with versioning and lifecycle policies but I verified some days ago that versions have all finally been actually deleted after marking them so a week ago. I have now migrated everything off this instance, emptying it totally. s3 standard is not cheap. I have another instance identical to the first that uses s3 compatible object storage at Linode where my experience is identical, just cheaper.
su-do-systems
on 22 Oct 2020
I have the same issue, even if you remove it directly via the web interface it does the same thing.
Can anyone look to fix that? It's really a security issue...
IIPoliII
on 2 Nov 2020
@rullzer Is there any possibilites that you look at that issue. It's still the case in NextCloud 20, and I think it's really an important security breach.
IIPoliII
on 2 Nov 2020
Related issues
dl5rcw
路
3Comments
juliushaertl
路
3Comments
MariusBluem
路
3Comments
mfechner
路
3Comments
e-alfred
路
3Comments
Most helpful comment
Same issue with s3 primary storage with nextcloud v18.0.0