Everything that journalctl spat out token, names ommitted:
Jan 01 12:43:44 (Server’s internal name) coolwsd[6974]: wsd-06974-06987 2025-01-01 12:43:44.862985 -0500 [ websrv_poll ] ERR #33: Unknown resource: /cool/https:%2F%2F(nextcloud domain)%2Findex.php%2Fapps%2Frichdocuments%2Fwopi%2Ffiles%2F378553_oco78dqqgihn?access_token=(token)&access_token_ttl=0/ws GWebSocket, host: (collabora domain), path: 4
Jan 01 12:43:44 (Server’s internal name) coolwsd[6974]: [0] ‘cool’
Jan 01 12:43:44 (Server’s internal name) coolwsd[6974]: [1] ‘https:%2F%2F(nextcloud domain)%2Findex.php%2Fapps%2Frichdocuments%2Fwopi%2Ffiles%2F378553_oco78dqqgihn’
Jan 01 12:43:44 (Server’s internal name) coolwsd[6974]: [2] ‘access_token=(token)&access_token_ttl=0’
Jan 01 12:43:44 (Server’s internal name) coolwsd[6974]: [3] ‘ws’
Jan 01 12:43:44 (Server’s internal name) coolwsd[6974]: full URI: /cool/https:%2F%2F(nextcloud domain)%2Findex.php%2Fapps%2Frichdocuments%2Fwopi%2Ffiles%2F378553_oco78dqqgihn?access_token=(token)&access_token_ttl=0/ws| wsd/ClientRequestDispatcher.cpp:925
Jan 01 12:43:45 (Server’s internal name) coolwsd[6974]: wsd-06974-06987 2025-01-01 12:43:45.181804 -0500 [ websrv_poll ] ERR #33: Unknown resource: /cool/https:%2F%2F(nextcloud domain)%2Findex.php%2Fapps%2Frichdocuments%2Fwopi%2Ffiles%2F378553_oco78dqqgihn?access_token=(token)&access_token_ttl=0&permission=edit/ws GWebSocket, host: (collabora domain), path: 4
Jan 01 12:43:45 (Server’s internal name) coolwsd[6974]: [0] ‘cool’
Jan 01 12:43:45 (Server’s internal name) coolwsd[6974]: [1] ‘https:%2F%2F(nextcloud domain)%2Findex.php%2Fapps%2Frichdocuments%2Fwopi%2Ffiles%2F378553_oco78dqqgihn’
Jan 01 12:43:45 (Server’s internal name) coolwsd[6974]: [2] ‘access_token=(token)&access_token_ttl=0&permission=edit’
Jan 01 12:43:45 (Server’s internal name) coolwsd[6974]: [3] ‘ws’
Jan 01 12:43:45 (Server’s internal name) coolwsd[6974]: full URI: /cool/https:%2F%2F(nextcloud domain)%2Findex.php%2Fapps%2Frichdocuments%2Fwopi%2Ffiles%2F378553_oco78dqqgihn?access_token=(token)&access_token_ttl=0&permission=edit/ws| wsd/ClientRequestDispatcher.cpp:925
current virtual server config, excluding ssl directives and domain directives
# Encoded slashes need to be allowed
AllowEncodedSlashes NoDecode
# Container uses a unique non-signed certificate
SSLProxyEngine on
SSLProxyVerify None
SSLProxyCheckPeerCN Off
SSLProxyCheckPeerName Off
# keep the host
ProxyPreserveHost On
ProxyPass / http://127.0.0.1:9980/ retry=0
ProxyPassReverse / http://127.0.0.1:9980/
# static html, js, images, etc. served from coolwsd
# (broswer is the client part of Collabora Online)
ProxyPass /browser http://127.0.0.1:9980/browser retry=0
ProxyPassReverse /browser http://127.0.0.1:9980/browser
# WOPI discovery URL
ProxyPass /hosting/discovery http://127.0.0.1:9980/hosting/discovery retry=0
ProxyPassReverse /hosting/discovery http://127.0.0.1:9980/hosting/discovery
# Capabilities
ProxyPass /hosting/capabilities http://127.0.0.1:9980/hosting/capabilities retry=0
ProxyPassReverse /hosting/capabilities http://127.0.0.1:9980/hosting/capabilities
# Main websocket
ProxyPassMatch "/cool/(.*)/ws$" ws://127.0.0.1:9980/cool/$1/ws nocanon
# Admin Console websocket
ProxyPass /cool/adminws ws://127.0.0.1:9980/cool/adminws
# Download as, Fullscreen presentation and Image upload operations
ProxyPass /cool/ http://127.0.0.1:9980/ retry=0
ProxyPassReverse /cool/ http://127.0.0.1:9980/
ProxyPass /lool http://127.0.0.1:9980/cool
ProxyPassReverse /lool http://127.0.0.1:9980/cool
RewriteEngine on
RewriteCond %{HTTP:Upgrade} =websocket [NC]
RewriteRule /(.*) ws://127.0.0.1:9980/$1 [P,L,UnsafeAllow3F]
RewriteCond %{HTTP:Upgrade} !=websocket [NC]
RewriteRule /(.*) http://127.0.0.1:9980/$1 [P,L,UnsafeAllow3F]
main config area:
<server_name default=“” desc=“External hostname:port of the server running coolwsd. If empty, it’s derived from the request (please set it if this doesn’t work). May be specified when behind a reverse-proxy or when the hostname is not reachable directly.” type=“string”>(collabora domain):443</server_name>
backend storage:
<max_file_size desc=“Maximum document size in bytes to load. 0 for unlimited.” type=“uint”>0</max_file_size>
900
<alias_groups desc=“default mode is ‘first’ it allows only the first host when groups are not defined. set mode to ‘groups’ and define group to allow multiple host and its aliases” mode=“groups”>
(nextcloud domain)
(nextcloud domain)
</alias_groups>
<is_legacy_server default=“false” desc=“Set to true for legacy server that need deprecated headers.” type=“bool”>false</is_legacy_server>
Please let me know if there are other sections you need, I didn’t find/replace the entire thing at once, so it may not be entirely consistant.
I did not notice any errors from nextcloud, but it was complaining that there is a new way to handle this,
From nextcloud.log:
{“reqId”:“Z3V-0I_YMV6DFRkHBFzUOAAAAYk”,“level”:0,“time”:“2025-01-01T17:43:45+00:00”,“remoteAddr”:“127.0.0.1”,“user”:“–”,“app”:“no app in context”,“method”:“GET”,“url”:“/index.php/apps/richdocuments/wopi/files/378553_oco78dqqgihn?access_token=accesstoken&access_token_ttl=0”,“message”:“OC_App::registerLogIn() is deprecated, please register your alternative login option using the registerAlternativeLogin() on the RegistrationContext in your Application class implementing the OCP\Authentication\IAlternativeLogin interface”,“userAgent”:“COOLWSD HTTP Agent 24.04.11.1”,“version”:“30.0.4.1”,“data”:}
{“reqId”:“Z3V-0I_YMV6DFRkHBFzUOAAAAYk”,“level”:0,“time”:“2025-01-01T17:43:45+00:00”,“remoteAddr”:“127.0.0.1”,“user”:“–”,“app”:“user_oidc”,“method”:“GET”,“url”:“/index.php/apps/richdocuments/wopi/files/378553_oco78dqqgihn?access_token=accesstoken&access_token_ttl=0”,“message”:“Could not find unique token validation”,“userAgent”:“COOLWSD HTTP Agent 24.04.11.1”,“version”:“30.0.4.1”,“data”:{“app”:“user_oidc”}}
{“reqId”:“Z3V-0I_YMV6DFRkHBFzUOAAAAYk”,“level”:0,“time”:“2025-01-01T17:43:45+00:00”,“remoteAddr”:“127.0.0.1”,“user”:“–”,“app”:“no app in context”,“method”:“GET”,“url”:“/index.php/apps/richdocuments/wopi/files/378553_oco78dqqgihn?access_token=accesstoken&access_token_ttl=0”,“message”:“OCA\Richdocuments\Controller\WopiController::checkFileInfo uses the @PublicPage annotation and should use the #[OCP\AppFramework\Http\Attribute\PublicPage] attribute instead”,“userAgent”:“COOLWSD HTTP Agent 24.04.11.1”,“version”:“30.0.4.1”,“data”:}
{“reqId”:“Z3V-0I_YMV6DFRkHBFzUOAAAAYk”,“level”:0,“time”:“2025-01-01T17:43:45+00:00”,“remoteAddr”:“127.0.0.1”,“user”:“–”,“app”:“no app in context”,“method”:“GET”,“url”:“/index.php/apps/richdocuments/wopi/files/378553_oco78dqqgihn?access_token=accesstoken&access_token_ttl=0”,“message”:“OCA\Richdocuments\Controller\WopiController::checkFileInfo uses the @NoCSRFRequired annotation and should use the #[OCP\AppFramework\Http\Attribute\NoCSRFRequired] attribute instead”,“userAgent”:“COOLWSD HTTP Agent 24.04.11.1”,“version”:“30.0.4.1”,“data”:}
{“reqId”:“Z3V-0I_YMV6DFRkHBFzUOAAAAYk”,“level”:0,“time”:“2025-01-01T17:43:45+00:00”,“remoteAddr”:“127.0.0.1”,“user”:“–”,“app”:“no app in context”,“method”:“GET”,“url”:“/index.php/apps/richdocuments/wopi/files/378553_oco78dqqgihn?access_token=accesstoken&access_token_ttl=0”,“message”:“OCA\Richdocuments\Controller\WopiController::checkFileInfo uses the @NoCSRFRequired annotation and should use the #[OCP\AppFramework\Http\Attribute\NoCSRFRequired] attribute instead”,“userAgent”:“COOLWSD HTTP Agent 24.04.11.1”,“version”:“30.0.4.1”,“data”:}
{“reqId”:“Z3V-0I_YMV6DFRkHBFzUOAAAAYk”,“level”:0,“time”:“2025-01-01T17:43:45+00:00”,“remoteAddr”:“127.0.0.1”,“user”:“–”,“app”:“richdocuments”,“method”:“GET”,“url”:“/index.php/apps/richdocuments/wopi/files/378553_oco78dqqgihn?access_token=accesstoken&access_token_ttl=0”,“message”:“Loaded WOPI Token record: {"id":815,"owner_uid":"Famous","editor_uid":"Famous","guest_displayname":null,"fileid":378553,"version":0,"canwrite":1,"server_host":"https://domain/\“,\“token\”:\“accesstoken\”,\“expiry\”:1735789382,\“template_destination\”:null,\“hide_download\”:0,\“direct\”:0,\“remote_server\”:\”\“,\“remote_server_token\”:\”\“,\“template_id\”:0,\“share\”:null,\“token_type\”:0}.”,“userAgent”:“COOLWSD HTTP Agent 24.04.11.1”,“version”:“30.0.4.1”,“data”:{“app”:“richdocuments”}}
{“reqId”:“Z3V-0I_YMV6DFRkHBFzUOAAAAYk”,“level”:0,“time”:“2025-01-01T17:43:45+00:00”,“remoteAddr”:“127.0.0.1”,“user”:”–“,“app”:“richdocuments”,“method”:“GET”,“url”:”/index.php/apps/richdocuments/wopi/files/378553_oco78dqqgihn?access_token=accesstoken&access_token_ttl=0",“message”:"Loaded WOPI Token record: {"id":815,"owner_uid":"Famous","editor_uid":"Famous","guest_displayname":null,"fileid":378553,"version":0,"canwrite":1,"server_host":"https://domain/\“,\“token\”:\“accesstoken\”,\“expiry\”:1735789382,\“template_destination\”:null,\“hide_download\”:0,\“direct\”:0,\“remote_server\”:\”\“,\“remote_server_token\”:\”\“,\“template_id\”:0,\“share\”:null,\“token_type\”:0}.”,“userAgent”:“COOLWSD HTTP Agent 24.04.11.1”,“version”:“30.0.4.1”,“data”:{“app”:“richdocuments”}}